curl vulnerabilities

Known vulnerabilities in the curl package. This does not include vulnerabilities belonging to this package’s dependencies.

Vulnerability	Vulnerable Version
M Misinterpretation of Input	<0:8.3.0-1.amzn2.0.7
M Information Exposure	<0:8.3.0-1.amzn2.0.6
M Missing Release of Resource after Effective Lifetime	<0:8.3.0-1.amzn2.0.7
L ALAS2-2024-2490	<0:8.3.0-1.amzn2.0.6
M Information Exposure	<0:8.3.0-1.amzn2.0.5
L Missing Encryption of Sensitive Data	<0:8.3.0-1.amzn2.0.5
H External Control of File Name or Path	<0:8.3.0-1.amzn2.0.4
H Out-of-Bounds	<0:8.3.0-1.amzn2.0.4
H Allocation of Resources Without Limits or Throttling	<0:8.3.0-1.amzn2.0.1
M Expected Behavior Violation	<0:8.2.1-1.amzn2.0.2
M Use After Free	<0:8.2.1-1.amzn2.0.2
M Improper Certificate Validation	<0:8.2.1-1.amzn2.0.2
M Integer Overflow or Wraparound	<0:8.2.1-1.amzn2.0.2
M Authentication Bypass by Primary Weakness	<0:8.0.1-1.amzn2.0.1
M Special Element Injection	<0:8.0.1-1.amzn2.0.1
M Double Free	<0:8.0.1-1.amzn2.0.1
M Authentication Bypass by Primary Weakness	<0:8.0.1-1.amzn2.0.1
M Directory Traversal	<0:8.0.1-1.amzn2.0.1
M Authentication Bypass by Primary Weakness	<0:8.0.1-1.amzn2.0.1
M Allocation of Resources Without Limits or Throttling	<0:7.88.0-1.amzn2.0.1
M Cleartext Transmission of Sensitive Information	<0:7.88.0-1.amzn2.0.1
M Cleartext Transmission of Sensitive Information	<0:7.88.0-1.amzn2.0.1
M Use After Free	<0:7.87.0-2.amzn2.0.1
M Cleartext Transmission of Sensitive Information	<0:7.87.0-2.amzn2.0.1
M Loop with Unreachable Exit Condition ('Infinite Loop')	<0:7.87.0-2.amzn2.0.1
M Expected Behavior Violation	<0:7.79.1-7.amzn2.0.1
M Double Free	<0:7.79.1-7.amzn2.0.1
M Cleartext Transmission of Sensitive Information	<0:7.79.1-7.amzn2.0.1
M Stack-based Buffer Overflow	<0:7.79.1-7.amzn2.0.1
M Allocation of Resources Without Limits or Throttling	<0:7.79.1-6.amzn2.0.1
M Improper Preservation of Permissions	<0:7.79.1-6.amzn2.0.1
M Improper Enforcement of Message Integrity During Transmission in a Communication Channel	<0:7.79.1-6.amzn2.0.1
M Improper Validation of Syntactic Correctness of Input	<0:7.79.1-6.amzn2.0.1
M Allocation of Resources Without Limits or Throttling	<0:7.79.1-6.amzn2.0.1
M Improper Certificate Validation	<0:7.79.1-4.amzn2.0.1
M Insufficiently Protected Credentials	<0:7.79.1-2.amzn2.0.1
M Improper Authentication	<0:7.79.1-2.amzn2.0.1
M Information Exposure	<0:7.79.1-2.amzn2.0.1
M Insufficiently Protected Credentials	<0:7.79.1-2.amzn2.0.1
M Insufficient Verification of Data Authenticity	<0:7.79.1-1.amzn2.0.1
M Double Free	<0:7.79.1-1.amzn2.0.1
M Cleartext Transmission of Sensitive Information	<0:7.79.1-1.amzn2.0.1
M Use of Incorrectly-Resolved Name or Reference	<0:7.76.1-7.amzn2.0.2
M Use of Uninitialized Resource	<0:7.76.1-7.amzn2.0.2
M Insufficiently Protected Credentials	<0:7.76.1-7.amzn2.0.2
M Improper Validation of Integrity Check Value	<0:7.76.1-7.amzn2.0.2
M Missing Initialization of Resource	<0:7.76.1-7.amzn2.0.2
M Uncontrolled Recursion	<0:7.76.1-4.amzn2.0.1
M Untrusted Pointer Dereference	<0:7.76.1-4.amzn2.0.1
M Improper Certificate Validation	<0:7.76.1-4.amzn2.0.1
M Information Exposure	<0:7.76.1-4.amzn2.0.1
M Information Exposure	<0:7.61.1-12.amzn2.0.4
M Use of Uninitialized Resource	<0:7.61.1-12.amzn2.0.4
M Arbitrary Code Injection	<0:7.61.1-12.amzn2.0.2
M Buffer Overflow	<0:7.61.1-12.amzn2.0.1
M Double Free	<0:7.61.1-12.amzn2.0.1
L Integer Overflow or Wraparound	<0:7.61.1-11.amzn2.0.2
L Out-of-bounds Write	<0:7.61.1-11.amzn2.0.2
M Out-of-bounds Read	<0:7.61.1-9.amzn2.0.1
M Out-of-bounds Write	<0:7.61.1-9.amzn2.0.1
M Information Exposure	<0:7.61.1-9.amzn2.0.1
M Out-of-Bounds	<0:7.61.1-9.amzn2.0.1
M Use After Free	<0:7.61.1-9.amzn2.0.1
M Out-of-bounds Read	<0:7.61.1-9.amzn2.0.1
M Out-of-bounds Read	<0:7.61.1-9.amzn2.0.1
M Out-of-bounds Read	<0:7.61.1-9.amzn2.0.1
M Out-of-Bounds	<0:7.61.1-9.amzn2.0.1
M Integer Overflow or Wraparound	<0:7.61.1-9.amzn2.0.1
M Out-of-Bounds	<0:7.61.1-9.amzn2.0.1
M Out-of-Bounds	<0:7.61.1-9.amzn2.0.1
L Integer Overflow or Wraparound	<0:7.55.1-12.amzn2.0.7
M Out-of-bounds Write	<0:7.55.1-12.amzn2.0.5
H Out-of-bounds Write	<0:7.55.1-12.amzn2.0.1
H Out-of-bounds Read	<0:7.55.1-12.amzn2.0.1
M Out-of-bounds Write	<0:7.55.1-10.amzn2.0.1
M NULL Pointer Dereference	<0:7.55.1-10.amzn2.0.1
M Out-of-bounds Read	<0:7.55.1-10.amzn2.0.1
H Information Exposure	<0:7.55.1-9.amzn2.0.1
H Out-of-bounds Read	<0:7.55.1-9.amzn2.0.1

Vulnerability

Vulnerable Version

Misinterpretation of Input

<0:8.3.0-1.amzn2.0.7

Information Exposure

<0:8.3.0-1.amzn2.0.6

Missing Release of Resource after Effective Lifetime

<0:8.3.0-1.amzn2.0.7

ALAS2-2024-2490

<0:8.3.0-1.amzn2.0.6

Information Exposure

<0:8.3.0-1.amzn2.0.5