Home > Vulnerability Database > CVE-2018-16840

Mend.io Vulnerability Database

CVE-2018-16840

Date: October 31, 2018

A heap use-after-free flaw was found in curl versions from 7.59.0 through 7.61.1 in the code related to closing an easy handle. When closing and cleaning up an 'easy' handle in the "Curl_close()" function, the library code first frees a struct (without nulling the pointer) and might then subsequently erroneously write to a struct field within that already freed struct.

Language: C

Severity Score

9.8

Related Resources (11)

Url: https://github.com/curl/curl/commit/81d135d67155c5295b1033679c606165d4e28f3f

Url: https://people.canonical.com/~ubuntu-security/cve/CVE-2018-16840

Url: https://nvd.nist.gov/vuln/detail/CVE-2018-16840

Url: https://usn.ubuntu.com/3805-1/

Url: http://www.securitytracker.com/id/1042013

Url: https://security-tracker.debian.org/tracker/CVE-2018-16840

Url: https://security.alpinelinux.org/vuln/CVE-2018-16840

Url: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16840

Url: https://curl.haxx.se/docs/CVE-2018-16840.html

Url: https://security.gentoo.org/glsa/201903-03

Url: https://www.mend.io/vulnerability-database/CVE-2018-16840

Severity Score

9.8

Weakness Type (CWE)

Use After Free

CWE-416

CVSS v3.1

Base Score:	9.8
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	HIGH
Integrity (I):	HIGH
Availability (A):	HIGH

CVSS v2

Base Score:	7.5
Access Vector (AV):	NETWORK
Access Complexity (AC):	LOW
Authentication (AU):	NONE
Confidentiality (C):	PARTIAL
Integrity (I):	PARTIAL
Availability (A):	PARTIAL
Additional information:

Mend.io Vulnerability Database

We found results for “”

CVE-2018-16840

Date: October 31, 2018

Language: C

Severity Score

Related Resources (11)

Severity Score

Weakness Type (CWE)

CVSS v3.1

CVSS v2

Do you need more information?