Heap Out-of-Bounds Read in libcurl SMTP Handling
CVE-2019-3823

4.3MEDIUM

Key Information:

Vendor: The Curl Project
Status: Curl
Vendor: CVE Published:; 6 February 2019

What is CVE-2019-3823?

This vulnerability in libcurl allows for a heap out-of-bounds read due to improper handling of the end-of-response for SMTP interactions. If the buffer provided to the smtp_endofresp function lacks a NUL termination and does not contain a character indicating the end of the parsed number, coupled with len set to 5, this results in the strtol function reading beyond the allocated memory. The implications can lead to undefined behavior, data leaks, and potential exploitation by a malicious entity. It is crucial for system administrators and developers to ensure that their applications utilizing affected versions of libcurl are updated to maintain security.

Affected Version(s)

curl 7.64.0

References

https://security.gentoo.org/glsa/201903-03

vendor-advisoryx_refsource_GENTOO

https://www.debian.org/security/2019/dsa-4386

vendor-advisoryx_refsource_DEBIAN

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3823

x_refsource_CONFIRM

CVSS V3.1

Score:

4.3

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Feb 6, 2019
Vulnerability Reserved
Jan 3, 2019

The Curl Project

What is CVE-2019-3823?

Affected Version(s)

References

CVSS V3.1

Timeline