Rapid7 Vulnerability & Exploit Database

RHSA-2009:0341: curl security update

Back to Search

RHSA-2009:0341: curl security update

Severity
7
CVSS
(AV:N/AC:M/Au:N/C:P/I:P/A:P)
Published
03/04/2009
Created
07/25/2018
Added
09/12/2009
Modified
07/04/2017

Description

cURL is a tool for getting files from FTP, HTTP, Gopher, Telnet, and Dictservers, using any of the supported protocols. cURL is designed to workwithout user interaction or any kind of interactivity.David Kierznowski discovered a flaw in libcurl where it would notdifferentiate between different target URLs when handling automaticredirects. This caused libcurl to follow any new URL that it understood,including the "file://" URL type. This could allow a remote server to forcea local libcurl-using application to read a local file instead of theremote one, possibly exposing local files that were not meant to beexposed. (CVE-2009-0037)Note: Applications using libcurl that are expected to follow redirects to"file://" protocol must now explicitly call curl_easy_setopt(3) and set thenewly introduced CURLOPT_REDIR_PROTOCOLS option as required.cURL users should upgrade to these updated packages, which containbackported patches to correct these issues. All running applications usinglibcurl must be restarted for the update to take effect.

Solution(s)

  • redhat-upgrade-curl
  • redhat-upgrade-curl-devel

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;