libcurl vulnerabilities

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the libcurl package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free

Vulnerability	Vulnerable Version
M Information Exposure	<0:8.3.0-1.amzn2.0.6
M Misinterpretation of Input	<0:8.3.0-1.amzn2.0.7
M Missing Release of Resource after Effective Lifetime	<0:8.3.0-1.amzn2.0.7
L ALAS2-2024-2490	<0:8.3.0-1.amzn2.0.6
M Information Exposure	<0:8.3.0-1.amzn2.0.5
L Missing Encryption of Sensitive Data	<0:8.3.0-1.amzn2.0.5
H External Control of File Name or Path	<0:8.3.0-1.amzn2.0.4
H Out-of-Bounds	<0:8.3.0-1.amzn2.0.4
H Allocation of Resources Without Limits or Throttling	<0:8.3.0-1.amzn2.0.1
M Expected Behavior Violation	<0:8.2.1-1.amzn2.0.2
M Use After Free	<0:8.2.1-1.amzn2.0.2
M Improper Certificate Validation	<0:8.2.1-1.amzn2.0.2
M Integer Overflow or Wraparound	<0:8.2.1-1.amzn2.0.2
M Authentication Bypass by Primary Weakness	<0:8.0.1-1.amzn2.0.1
M Special Element Injection	<0:8.0.1-1.amzn2.0.1
M Double Free	<0:8.0.1-1.amzn2.0.1
M Authentication Bypass by Primary Weakness	<0:8.0.1-1.amzn2.0.1
M Directory Traversal	<0:8.0.1-1.amzn2.0.1
M Authentication Bypass by Primary Weakness	<0:8.0.1-1.amzn2.0.1
M Allocation of Resources Without Limits or Throttling	<0:7.88.0-1.amzn2.0.1
M Cleartext Transmission of Sensitive Information	<0:7.88.0-1.amzn2.0.1
M Cleartext Transmission of Sensitive Information	<0:7.88.0-1.amzn2.0.1
M Use After Free	<0:7.87.0-2.amzn2.0.1
M Cleartext Transmission of Sensitive Information	<0:7.87.0-2.amzn2.0.1
M Loop with Unreachable Exit Condition ('Infinite Loop')	<0:7.87.0-2.amzn2.0.1
M Expected Behavior Violation	<0:7.79.1-7.amzn2.0.1
M Double Free	<0:7.79.1-7.amzn2.0.1
M Cleartext Transmission of Sensitive Information	<0:7.79.1-7.amzn2.0.1
M Stack-based Buffer Overflow	<0:7.79.1-7.amzn2.0.1
M Allocation of Resources Without Limits or Throttling	<0:7.79.1-6.amzn2.0.1
M Improper Preservation of Permissions	<0:7.79.1-6.amzn2.0.1
M Improper Enforcement of Message Integrity During Transmission in a Communication Channel	<0:7.79.1-6.amzn2.0.1
M Improper Validation of Syntactic Correctness of Input	<0:7.79.1-6.amzn2.0.1
M Allocation of Resources Without Limits or Throttling	<0:7.79.1-6.amzn2.0.1
M Improper Certificate Validation	<0:7.79.1-4.amzn2.0.1
M Insufficiently Protected Credentials	<0:7.79.1-2.amzn2.0.1
M Improper Authentication	<0:7.79.1-2.amzn2.0.1
M Information Exposure	<0:7.79.1-2.amzn2.0.1
M Insufficiently Protected Credentials	<0:7.79.1-2.amzn2.0.1
M Insufficient Verification of Data Authenticity	<0:7.79.1-1.amzn2.0.1
M Double Free	<0:7.79.1-1.amzn2.0.1
M Cleartext Transmission of Sensitive Information	<0:7.79.1-1.amzn2.0.1
M Use of Incorrectly-Resolved Name or Reference	<0:7.76.1-7.amzn2.0.2
M Use of Uninitialized Resource	<0:7.76.1-7.amzn2.0.2
M Insufficiently Protected Credentials	<0:7.76.1-7.amzn2.0.2
M Improper Validation of Integrity Check Value	<0:7.76.1-7.amzn2.0.2
M Missing Initialization of Resource	<0:7.76.1-7.amzn2.0.2
M Uncontrolled Recursion	<0:7.76.1-4.amzn2.0.1
M Untrusted Pointer Dereference	<0:7.76.1-4.amzn2.0.1
M Improper Certificate Validation	<0:7.76.1-4.amzn2.0.1
M Information Exposure	<0:7.76.1-4.amzn2.0.1
M Information Exposure	<0:7.61.1-12.amzn2.0.4
M Use of Uninitialized Resource	<0:7.61.1-12.amzn2.0.4
M Arbitrary Code Injection	<0:7.61.1-12.amzn2.0.2
M Buffer Overflow	<0:7.61.1-12.amzn2.0.1
M Double Free	<0:7.61.1-12.amzn2.0.1
L Integer Overflow or Wraparound	<0:7.61.1-11.amzn2.0.2
L Out-of-bounds Write	<0:7.61.1-11.amzn2.0.2
M Out-of-bounds Read	<0:7.61.1-9.amzn2.0.1
M Out-of-bounds Write	<0:7.61.1-9.amzn2.0.1
M Information Exposure	<0:7.61.1-9.amzn2.0.1
M Out-of-Bounds	<0:7.61.1-9.amzn2.0.1
M Use After Free	<0:7.61.1-9.amzn2.0.1
M Out-of-bounds Read	<0:7.61.1-9.amzn2.0.1
M Out-of-bounds Read	<0:7.61.1-9.amzn2.0.1
M Out-of-bounds Read	<0:7.61.1-9.amzn2.0.1
M Out-of-Bounds	<0:7.61.1-9.amzn2.0.1
M Integer Overflow or Wraparound	<0:7.61.1-9.amzn2.0.1
M Out-of-Bounds	<0:7.61.1-9.amzn2.0.1
M Out-of-Bounds	<0:7.61.1-9.amzn2.0.1
L Integer Overflow or Wraparound	<0:7.55.1-12.amzn2.0.7
M Out-of-bounds Write	<0:7.55.1-12.amzn2.0.5
H Out-of-bounds Write	<0:7.55.1-12.amzn2.0.1
H Out-of-bounds Read	<0:7.55.1-12.amzn2.0.1
M Out-of-bounds Write	<0:7.55.1-10.amzn2.0.1
M NULL Pointer Dereference	<0:7.55.1-10.amzn2.0.1
M Out-of-bounds Read	<0:7.55.1-10.amzn2.0.1
H Information Exposure	<0:7.55.1-9.amzn2.0.1
H Out-of-bounds Read	<0:7.55.1-9.amzn2.0.1