Dario Weisser

**Name of the Vulnerable Software and Affected Versions** curl versions 7.54.1 through 7.59.0 **Description** The issue is caused by a heap-based buffer overflow when closing an FTP connection with very long server command replies. This can allow a remote attacker to execute arbitrary code or cause a denial of service. The vulnerability is triggered when the FTP server response data exceeds the default buffer size of 16 KB allocated in the closure handle, leading to a buffer overwrite. The contents and size of the overwrite are controllable by the server. **Recommendations** For curl versions 7.54.1 through 7.59.0, update to a version prior to 7.54.1 or version 7.60.0 and later to resolve the issue. As a temporary workaround, consider restricting the use of FTP connections with long server command replies until a patch is available. Avoid using the `closure handle` internally when an FTP connection gets shut down, as this can lead to a buffer overwrite.

Name of the Vulnerable Software and Affected Versions: curl versions 7.21.0 through 7.58.0 Description: A NULL pointer dereference issue exists in the LDAP code, allowing an attacker to cause a denial of service. The `ldap get attribute ber()` function can return a `NULL` pointer in the result pointer when getting a particularly crafted response, which can cause libcurl-using applications to crash. This issue affects applications that allow LDAP URLs or redirects to LDAP URLs. Recommendations: For curl versions 7.21.0 through 7.58.0, consider disabling LDAP URL support as a temporary workaround until a patch is available. Restrict access to LDAP URLs to minimize the risk of exploitation. Avoid using the `ldap get attribute ber()` function until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** NVIDIA display driver R352 versions prior to 353.82 NVIDIA display driver R340 versions prior to 341.81 NVIDIA display driver R304 versions prior to 304.128 NVIDIA display driver R340 versions prior to 340.93 NVIDIA display driver R352 versions prior to 352.41 NVIDIA display driver R352 versions prior to 352.46 on GRID vGPU and vSGA **Description** The issue allows local users to write to an arbitrary kernel memory location, which can lead to gaining privileges via a crafted ioctl call. **Recommendations** For NVIDIA display driver R352 versions prior to 353.82, update to version 353.82 or later. For NVIDIA display driver R340 versions prior to 341.81, update to version 341.81 or later. For NVIDIA display driver R304 versions prior to 304.128, update to version 304.128 or later. For NVIDIA display driver R340 versions prior to 340.93, update to version 340.93 or later. For NVIDIA display driver R352 versions prior to 352.41, update to version 352.41 or later. For NVIDIA display driver R352 versions prior to 352.46 on GRID vGPU and vSGA, update to version 352.46 or later.