A path traversal vulnerability exists in curl <8.0.0 SFTP implementation causes the tilde (~) character to be wrongly replaced when used as a prefix in the first path element, in addition to its intended use as the first element to indicate a path relative to the user's home directory. Attackers can exploit this flaw to bypass filtering or execute arbitrary code by crafting a path like /~2/foo while accessing a server with a specific user.
{ "availability": "No subscription required", "ubuntu_priority": "low", "binaries": [ { "curl-dbgsym": "7.58.0-2ubuntu3.24", "curl": "7.58.0-2ubuntu3.24", "libcurl4": "7.58.0-2ubuntu3.24", "libcurl4-gnutls-dev": "7.58.0-2ubuntu3.24", "libcurl4-dbgsym": "7.58.0-2ubuntu3.24", "libcurl3-nss": "7.58.0-2ubuntu3.24", "libcurl4-doc": "7.58.0-2ubuntu3.24", "libcurl3-nss-dbgsym": "7.58.0-2ubuntu3.24", "libcurl3-gnutls": "7.58.0-2ubuntu3.24", "libcurl3-gnutls-dbgsym": "7.58.0-2ubuntu3.24", "libcurl4-openssl-dev": "7.58.0-2ubuntu3.24", "libcurl4-nss-dev": "7.58.0-2ubuntu3.24" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "low", "binaries": [ { "curl-dbgsym": "7.68.0-1ubuntu2.18", "curl": "7.68.0-1ubuntu2.18", "libcurl4": "7.68.0-1ubuntu2.18", "libcurl4-gnutls-dev": "7.68.0-1ubuntu2.18", "libcurl4-dbgsym": "7.68.0-1ubuntu2.18", "libcurl3-nss": "7.68.0-1ubuntu2.18", "libcurl4-doc": "7.68.0-1ubuntu2.18", "libcurl3-nss-dbgsym": "7.68.0-1ubuntu2.18", "libcurl3-gnutls": "7.68.0-1ubuntu2.18", "libcurl3-gnutls-dbgsym": "7.68.0-1ubuntu2.18", "libcurl4-openssl-dev": "7.68.0-1ubuntu2.18", "libcurl4-nss-dev": "7.68.0-1ubuntu2.18" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "low", "binaries": [ { "curl-dbgsym": "7.81.0-1ubuntu1.10", "curl": "7.81.0-1ubuntu1.10", "libcurl4": "7.81.0-1ubuntu1.10", "libcurl4-gnutls-dev": "7.81.0-1ubuntu1.10", "libcurl4-dbgsym": "7.81.0-1ubuntu1.10", "libcurl3-nss": "7.81.0-1ubuntu1.10", "libcurl4-doc": "7.81.0-1ubuntu1.10", "libcurl3-nss-dbgsym": "7.81.0-1ubuntu1.10", "libcurl3-gnutls": "7.81.0-1ubuntu1.10", "libcurl3-gnutls-dbgsym": "7.81.0-1ubuntu1.10", "libcurl4-openssl-dev": "7.81.0-1ubuntu1.10", "libcurl4-nss-dev": "7.81.0-1ubuntu1.10" } ] }