cURL: Multiple vulnerabilities Multiple vulnerabilities have been found in cURL, the worst of which could result in a Denial of Service condition. curl 2019-03-10 2019-03-10 665292 670026 677346 remote 7.64.0 7.64.0

A command line tool and library for transferring data with URLs.

Multiple vulnerabilities have been discovered in cURL. Please review the CVE identifiers referenced below for details.

Remote attackers could cause a Denial of Service condition.

There is no known workaround at this time.

All cURL users should upgrade to the latest version:

# emerge --sync # emerge --ask --oneshot --verbose ">=net-misc/curl-7.64.0" CVE-2018-14618 CVE-2018-16839 CVE-2018-16840 CVE-2018-16842 CVE-2019-3822 CVE-2019-3823 b-man b-man