cURL: Multiple vulnerabilities Multiple vulnerabilities have been found in cURL, the worst of which could result in a Denial of Service condition. curl 2018-04-08 2018-04-08 645698 650056 remote 7.59.0 7.59.0

A command line tool and library for transferring data with URLs.

Multiple vulnerabilities have been discovered in cURL. Please review the CVE identifiers referenced below for details.

Remote attackers could cause a Denial of Service condition, obtain sensitive information, or have other unspecified impacts.

There is no known workaround at this time.

All cURL users should upgrade to the latest version:

# emerge --sync # emerge --ask --oneshot --verbose ">=net-misc/curl-7.59.0" CVE-2018-1000005 CVE-2018-1000007 CVE-2018-1000120 CVE-2018-1000121 CVE-2018-1000122 b-man b-man