| Errata ID | 641 |
|---|---|
| Date | 2020-03-11 |
| Source package | curl |
| Fixed in version | 7.52.1-5+deb9u10 |
| Description | This update addresses the following issues: * TFTP receive heap buffer overflow in tftp_receive_packet() function (CVE-2019-5436) * Double free due to subsequent call of realloc() (CVE-2019-5481) * Heap buffer overflow in function tftp_receive_packet() (CVE-2019-5482) |
| Additional notes | |
| CVE ID | CVE-2019-5436 CVE-2019-5481 CVE-2019-5482 |
| UCS Bug number | #50926 |
