CVE-2020-19909

Name	CVE-2020-19909
Description	Integer overflow vulnerability in tool_operate.c in curl 7.65.2 via a large value as the retry delay. NOTE: many parties report that this has no direct security impact on the curl user; however, it may (in theory) cause a denial of service to associated systems or networks if, for example, --retry-delay is misinterpreted as a value much smaller than what was intended. This is not especially plausible because the overflow only happens if the user was trying to specify that curl should wait weeks (or longer) before trying to recover from a transient error.
Source	CVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)

Vulnerable and fixed packages

The table below lists information on source packages.

Source Package	Release	Version	Status
curl (PTS)	buster	7.64.0-4+deb10u2	vulnerable
	buster (security)	7.64.0-4+deb10u9	vulnerable
	bullseye (security), bullseye	7.74.0-1.3+deb11u11	fixed
	bookworm, bookworm (security)	7.88.1-10+deb12u5	fixed
	trixie, sid	8.7.1-3	fixed

The information below is based on the following data on fixed versions.

Package	Type	Release	Fixed Version	Urgency	Origin	Debian Bugs
curl	source	(unstable)	7.66.0-1	unimportant

Notes

https://github.com/curl/curl/pull/4166
Fixed by: https://github.com/curl/curl/commit/db0a0dfb0eb41d39273b0590b992df58f38b9a4d (curl-7_66_0)
Crash in CLI tool, no security impact