Posted on

libcURL up to 7.30.0 on WinCE lib/vtls/schannel.c verify_certificate Certificate memory corruption

A vulnerability was found in libcURL up to 7.30.0 on WinCE (Network Utility Software) and classified as critical. Affected by this issue is the function verify_certificate in the library lib/vtls/schannel.c. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.