Your submission was sent successfully! Close

CVE-2020-8231

Published: 19 August 2020

Due to use of a dangling pointer, libcurl 7.29.0 through 7.71.1 can use the wrong connection when sending data.

Priority

Low

CVSS 3 base score: 7.5

Status

Package Release Status
curl
Launchpad, Ubuntu, Debian
bionic
Released (7.58.0-2ubuntu3.10)
focal
Released (7.68.0-1ubuntu2.2)
groovy
Released (7.68.0-1ubuntu4.2)
hirsute Not vulnerable
(7.72.0-1ubuntu1)
precise Ignored
(end of ESM support, was needed)
trusty
Released (7.35.0-1ubuntu2.20+esm5)
upstream Pending
(7.72.0)
xenial
Released (7.47.0-1ubuntu2.16)