Synopsis: Moderate: curl security update Advisory ID: SLSA-2017:3263-1 Issue Date: 2017-11-27 CVE Numbers: CVE-2017-1000257 -- Security Fix(es): * A buffer overrun flaw was found in the IMAP handler of libcurl. By tricking an unsuspecting user into connecting to a malicious IMAP server, an attacker could exploit this flaw to potentially cause information disclosure or crash the application. (CVE-2017-1000257) -- SL7 x86_64 curl-7.29.0-42.el7_4.1.x86_64.rpm curl-debuginfo-7.29.0-42.el7_4.1.i686.rpm curl-debuginfo-7.29.0-42.el7_4.1.x86_64.rpm libcurl-7.29.0-42.el7_4.1.i686.rpm libcurl-7.29.0-42.el7_4.1.x86_64.rpm libcurl-devel-7.29.0-42.el7_4.1.i686.rpm libcurl-devel-7.29.0-42.el7_4.1.x86_64.rpm - Scientific Linux Development Team