|Category:||Huawei EulerOS Local Security Checks|
|Title:||Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2020-2337)|
|Summary:||The remote host is missing an update for the Huawei EulerOS; 'curl' package(s) announced via the EulerOS-SA-2020-2337 advisory.|
The remote host is missing an update for the Huawei EulerOS
'curl' package(s) announced via the EulerOS-SA-2020-2337 advisory.
A flaw was found in libcurl from versions 7.29.0 through 7.71.1. An application that performs multiple requests with libcurl's multi API, and sets the `CURLOPT_CONNECT_ONLY` option, might experience libcurl using the wrong connection. The highest threat from this vulnerability is to data confidentiality.(CVE-2020-8231)
A flaw was found in curl. Overwriting local files is possible when using a certain combination of command line options. Requesting content from a malicious server could lead to overwriting local files with compromised files leading to unknown effects. The highest threat from this vulnerability is to file integrity.(CVE-2020-8177)
'curl' package(s) on Huawei EulerOS V2.0SP2.
Please install the updated package(s).
Common Vulnerability Exposure (CVE) ID: CVE-2020-8177|
Common Vulnerability Exposure (CVE) ID: CVE-2020-8231
|Copyright||Copyright (C) 2020 Greenbone Networks GmbH|
|This is only one of 86218 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.