CVE-2019-5482

Published: 11 September 2019

Heap buffer overflow in the TFTP protocol handler in cURL 7.19.4 to 7.65.3.

Priority

CVSS 3 base score: 9.8

Status

Package	Release	Status
curl Launchpad, Ubuntu, Debian	bionic	Released (7.58.0-2ubuntu3.8)
	disco	Released (7.64.0-2ubuntu1.2)
	precise	Released (7.22.0-3ubuntu4.27)
	trusty	Released (7.35.0-1ubuntu2.20+esm3)
	upstream	Needs triage
	xenial	Released (7.47.0-1ubuntu2.14)

Canonical is offering Ubuntu Extended Security Maintenance (ESM) for security fixes and essential packages.