NetApp Clustered Data ONTAP 9.8 Patch 7

CPE Details

NetApp Clustered Data ONTAP 9.8 Patch 7
netapp
clustered_data_ontap
9.8
2021-10-19
17h23 +00:00
2021-10-20
15h59 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:o:netapp:clustered_data_ontap:9.8:p7:*:*:*:*:*:*

Informations

Vendor

netapp

Product

clustered_data_ontap

Version

9.8

Update

p7

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2018-16890 2019-02-06 19h00 +00:00 libcurl versions from 7.36.0 to before 7.64.0 is vulnerable to a heap buffer out-of-bounds read. The function handling incoming NTLM type-2 messages (`lib/vauth/ntlm.c:ntlm_decode_type2_target`) does not validate incoming data correctly and is subject to an integer overflow vulnerability. Using that overflow, a malicious or broken NTLM server could trick libcurl to accept a bad length + offset combination that would lead to a buffer read out-of-bounds.
7.5
High
CVE-2019-3823 2019-02-06 19h00 +00:00 libcurl versions from 7.34.0 to before 7.64.0 are vulnerable to a heap out-of-bounds read in the code handling the end-of-response for SMTP. If the buffer passed to `smtp_endofresp()` isn't NUL terminated and contains no character ending the parsed number, and `len` is set to 5, then the `strtol()` call reads beyond the allocated buffer. The read contents will not be returned to the caller.
7.5
High