Red Hat Security Advisory 2017-3263-01

Red Hat Security Advisory 2017-3263-01 – The curl packages provide the libcurl library and the curl utility for downloading files from servers using various protocols, including HTTP, FTP, and LDAP. Security Fix: A buffer overrun flaw was found in the IMAP handler of libcurl. By tricking an unsuspecting user into connecting to a malicious IMAP server, an attacker could exploit this flaw to potentially cause information disclosure or crash the application.

Link: https://packetstormsecurity.com/files/145112/RHSA-2017-3263-01.txt