csaf_opensuse - opensuse-su-2024:12735-1

opensuse-su-2024:12735-1

Vulnerability from csaf_opensuse

Published

2024-06-15 00:00

Modified

2024-06-15 00:00

Summary

curl-7.88.1-1.1 on GA media

Notes

Title of the patch

curl-7.88.1-1.1 on GA media

Description of the patch

These are all security issues fixed in the curl-7.88.1-1.1 package on the GA media of openSUSE Tumbleweed.

Patchnames

openSUSE-Tumbleweed-2024-12735

CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "curl-7.88.1-1.1 on GA media",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "These are all security issues fixed in the curl-7.88.1-1.1 package on the GA media of openSUSE Tumbleweed.",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "openSUSE-Tumbleweed-2024-12735",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_12735-1.json"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-23914 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-23914/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-23915 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-23915/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-23916 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-23916/"
      }
    ],
    "title": "curl-7.88.1-1.1 on GA media",
    "tracking": {
      "current_release_date": "2024-06-15T00:00:00Z",
      "generator": {
        "date": "2024-06-15T00:00:00Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "openSUSE-SU-2024:12735-1",
      "initial_release_date": "2024-06-15T00:00:00Z",
      "revision_history": [
        {
          "date": "2024-06-15T00:00:00Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "curl-7.88.1-1.1.aarch64",
                "product": {
                  "name": "curl-7.88.1-1.1.aarch64",
                  "product_id": "curl-7.88.1-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "libcurl-devel-7.88.1-1.1.aarch64",
                "product": {
                  "name": "libcurl-devel-7.88.1-1.1.aarch64",
                  "product_id": "libcurl-devel-7.88.1-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "libcurl-devel-32bit-7.88.1-1.1.aarch64",
                "product": {
                  "name": "libcurl-devel-32bit-7.88.1-1.1.aarch64",
                  "product_id": "libcurl-devel-32bit-7.88.1-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "libcurl4-7.88.1-1.1.aarch64",
                "product": {
                  "name": "libcurl4-7.88.1-1.1.aarch64",
                  "product_id": "libcurl4-7.88.1-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "libcurl4-32bit-7.88.1-1.1.aarch64",
                "product": {
                  "name": "libcurl4-32bit-7.88.1-1.1.aarch64",
                  "product_id": "libcurl4-32bit-7.88.1-1.1.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "curl-7.88.1-1.1.ppc64le",
                "product": {
                  "name": "curl-7.88.1-1.1.ppc64le",
                  "product_id": "curl-7.88.1-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "libcurl-devel-7.88.1-1.1.ppc64le",
                "product": {
                  "name": "libcurl-devel-7.88.1-1.1.ppc64le",
                  "product_id": "libcurl-devel-7.88.1-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "libcurl-devel-32bit-7.88.1-1.1.ppc64le",
                "product": {
                  "name": "libcurl-devel-32bit-7.88.1-1.1.ppc64le",
                  "product_id": "libcurl-devel-32bit-7.88.1-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "libcurl4-7.88.1-1.1.ppc64le",
                "product": {
                  "name": "libcurl4-7.88.1-1.1.ppc64le",
                  "product_id": "libcurl4-7.88.1-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "libcurl4-32bit-7.88.1-1.1.ppc64le",
                "product": {
                  "name": "libcurl4-32bit-7.88.1-1.1.ppc64le",
                  "product_id": "libcurl4-32bit-7.88.1-1.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "curl-7.88.1-1.1.s390x",
                "product": {
                  "name": "curl-7.88.1-1.1.s390x",
                  "product_id": "curl-7.88.1-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "libcurl-devel-7.88.1-1.1.s390x",
                "product": {
                  "name": "libcurl-devel-7.88.1-1.1.s390x",
                  "product_id": "libcurl-devel-7.88.1-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "libcurl-devel-32bit-7.88.1-1.1.s390x",
                "product": {
                  "name": "libcurl-devel-32bit-7.88.1-1.1.s390x",
                  "product_id": "libcurl-devel-32bit-7.88.1-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "libcurl4-7.88.1-1.1.s390x",
                "product": {
                  "name": "libcurl4-7.88.1-1.1.s390x",
                  "product_id": "libcurl4-7.88.1-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "libcurl4-32bit-7.88.1-1.1.s390x",
                "product": {
                  "name": "libcurl4-32bit-7.88.1-1.1.s390x",
                  "product_id": "libcurl4-32bit-7.88.1-1.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "curl-7.88.1-1.1.x86_64",
                "product": {
                  "name": "curl-7.88.1-1.1.x86_64",
                  "product_id": "curl-7.88.1-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "libcurl-devel-7.88.1-1.1.x86_64",
                "product": {
                  "name": "libcurl-devel-7.88.1-1.1.x86_64",
                  "product_id": "libcurl-devel-7.88.1-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "libcurl-devel-32bit-7.88.1-1.1.x86_64",
                "product": {
                  "name": "libcurl-devel-32bit-7.88.1-1.1.x86_64",
                  "product_id": "libcurl-devel-32bit-7.88.1-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "libcurl4-7.88.1-1.1.x86_64",
                "product": {
                  "name": "libcurl4-7.88.1-1.1.x86_64",
                  "product_id": "libcurl4-7.88.1-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "libcurl4-32bit-7.88.1-1.1.x86_64",
                "product": {
                  "name": "libcurl4-32bit-7.88.1-1.1.x86_64",
                  "product_id": "libcurl4-32bit-7.88.1-1.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "openSUSE Tumbleweed",
                "product": {
                  "name": "openSUSE Tumbleweed",
                  "product_id": "openSUSE Tumbleweed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:tumbleweed"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "curl-7.88.1-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:curl-7.88.1-1.1.aarch64"
        },
        "product_reference": "curl-7.88.1-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "curl-7.88.1-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:curl-7.88.1-1.1.ppc64le"
        },
        "product_reference": "curl-7.88.1-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "curl-7.88.1-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:curl-7.88.1-1.1.s390x"
        },
        "product_reference": "curl-7.88.1-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "curl-7.88.1-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:curl-7.88.1-1.1.x86_64"
        },
        "product_reference": "curl-7.88.1-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libcurl-devel-7.88.1-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libcurl-devel-7.88.1-1.1.aarch64"
        },
        "product_reference": "libcurl-devel-7.88.1-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libcurl-devel-7.88.1-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libcurl-devel-7.88.1-1.1.ppc64le"
        },
        "product_reference": "libcurl-devel-7.88.1-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libcurl-devel-7.88.1-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libcurl-devel-7.88.1-1.1.s390x"
        },
        "product_reference": "libcurl-devel-7.88.1-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libcurl-devel-7.88.1-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libcurl-devel-7.88.1-1.1.x86_64"
        },
        "product_reference": "libcurl-devel-7.88.1-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libcurl-devel-32bit-7.88.1-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libcurl-devel-32bit-7.88.1-1.1.aarch64"
        },
        "product_reference": "libcurl-devel-32bit-7.88.1-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libcurl-devel-32bit-7.88.1-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libcurl-devel-32bit-7.88.1-1.1.ppc64le"
        },
        "product_reference": "libcurl-devel-32bit-7.88.1-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libcurl-devel-32bit-7.88.1-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libcurl-devel-32bit-7.88.1-1.1.s390x"
        },
        "product_reference": "libcurl-devel-32bit-7.88.1-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libcurl-devel-32bit-7.88.1-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libcurl-devel-32bit-7.88.1-1.1.x86_64"
        },
        "product_reference": "libcurl-devel-32bit-7.88.1-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libcurl4-7.88.1-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libcurl4-7.88.1-1.1.aarch64"
        },
        "product_reference": "libcurl4-7.88.1-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libcurl4-7.88.1-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libcurl4-7.88.1-1.1.ppc64le"
        },
        "product_reference": "libcurl4-7.88.1-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libcurl4-7.88.1-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libcurl4-7.88.1-1.1.s390x"
        },
        "product_reference": "libcurl4-7.88.1-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libcurl4-7.88.1-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libcurl4-7.88.1-1.1.x86_64"
        },
        "product_reference": "libcurl4-7.88.1-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libcurl4-32bit-7.88.1-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libcurl4-32bit-7.88.1-1.1.aarch64"
        },
        "product_reference": "libcurl4-32bit-7.88.1-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libcurl4-32bit-7.88.1-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libcurl4-32bit-7.88.1-1.1.ppc64le"
        },
        "product_reference": "libcurl4-32bit-7.88.1-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libcurl4-32bit-7.88.1-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libcurl4-32bit-7.88.1-1.1.s390x"
        },
        "product_reference": "libcurl4-32bit-7.88.1-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libcurl4-32bit-7.88.1-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libcurl4-32bit-7.88.1-1.1.x86_64"
        },
        "product_reference": "libcurl4-32bit-7.88.1-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2023-23914",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-23914"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A cleartext transmission of sensitive information vulnerability exists in curl \u003cv7.88.0 that could cause HSTS functionality fail when multiple URLs are requested serially. Using its HSTS support, curl can be instructed to use HTTPS instead of usingan insecure clear-text HTTP step even when HTTP is provided in the URL. ThisHSTS mechanism would however surprisingly be ignored by subsequent transferswhen done on the same command line because the state would not be properlycarried on.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:curl-7.88.1-1.1.aarch64",
          "openSUSE Tumbleweed:curl-7.88.1-1.1.ppc64le",
          "openSUSE Tumbleweed:curl-7.88.1-1.1.s390x",
          "openSUSE Tumbleweed:curl-7.88.1-1.1.x86_64",
          "openSUSE Tumbleweed:libcurl-devel-32bit-7.88.1-1.1.aarch64",
          "openSUSE Tumbleweed:libcurl-devel-32bit-7.88.1-1.1.ppc64le",
          "openSUSE Tumbleweed:libcurl-devel-32bit-7.88.1-1.1.s390x",
          "openSUSE Tumbleweed:libcurl-devel-32bit-7.88.1-1.1.x86_64",
          "openSUSE Tumbleweed:libcurl-devel-7.88.1-1.1.aarch64",
          "openSUSE Tumbleweed:libcurl-devel-7.88.1-1.1.ppc64le",
          "openSUSE Tumbleweed:libcurl-devel-7.88.1-1.1.s390x",
          "openSUSE Tumbleweed:libcurl-devel-7.88.1-1.1.x86_64",
          "openSUSE Tumbleweed:libcurl4-32bit-7.88.1-1.1.aarch64",
          "openSUSE Tumbleweed:libcurl4-32bit-7.88.1-1.1.ppc64le",
          "openSUSE Tumbleweed:libcurl4-32bit-7.88.1-1.1.s390x",
          "openSUSE Tumbleweed:libcurl4-32bit-7.88.1-1.1.x86_64",
          "openSUSE Tumbleweed:libcurl4-7.88.1-1.1.aarch64",
          "openSUSE Tumbleweed:libcurl4-7.88.1-1.1.ppc64le",
          "openSUSE Tumbleweed:libcurl4-7.88.1-1.1.s390x",
          "openSUSE Tumbleweed:libcurl4-7.88.1-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-23914",
          "url": "https://www.suse.com/security/cve/CVE-2023-23914"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1207990 for CVE-2023-23914",
          "url": "https://bugzilla.suse.com/1207990"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1207991 for CVE-2023-23914",
          "url": "https://bugzilla.suse.com/1207991"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:curl-7.88.1-1.1.aarch64",
            "openSUSE Tumbleweed:curl-7.88.1-1.1.ppc64le",
            "openSUSE Tumbleweed:curl-7.88.1-1.1.s390x",
            "openSUSE Tumbleweed:curl-7.88.1-1.1.x86_64",
            "openSUSE Tumbleweed:libcurl-devel-32bit-7.88.1-1.1.aarch64",
            "openSUSE Tumbleweed:libcurl-devel-32bit-7.88.1-1.1.ppc64le",
            "openSUSE Tumbleweed:libcurl-devel-32bit-7.88.1-1.1.s390x",
            "openSUSE Tumbleweed:libcurl-devel-32bit-7.88.1-1.1.x86_64",
            "openSUSE Tumbleweed:libcurl-devel-7.88.1-1.1.aarch64",
            "openSUSE Tumbleweed:libcurl-devel-7.88.1-1.1.ppc64le",
            "openSUSE Tumbleweed:libcurl-devel-7.88.1-1.1.s390x",
            "openSUSE Tumbleweed:libcurl-devel-7.88.1-1.1.x86_64",
            "openSUSE Tumbleweed:libcurl4-32bit-7.88.1-1.1.aarch64",
            "openSUSE Tumbleweed:libcurl4-32bit-7.88.1-1.1.ppc64le",
            "openSUSE Tumbleweed:libcurl4-32bit-7.88.1-1.1.s390x",
            "openSUSE Tumbleweed:libcurl4-32bit-7.88.1-1.1.x86_64",
            "openSUSE Tumbleweed:libcurl4-7.88.1-1.1.aarch64",
            "openSUSE Tumbleweed:libcurl4-7.88.1-1.1.ppc64le",
            "openSUSE Tumbleweed:libcurl4-7.88.1-1.1.s390x",
            "openSUSE Tumbleweed:libcurl4-7.88.1-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:curl-7.88.1-1.1.aarch64",
            "openSUSE Tumbleweed:curl-7.88.1-1.1.ppc64le",
            "openSUSE Tumbleweed:curl-7.88.1-1.1.s390x",
            "openSUSE Tumbleweed:curl-7.88.1-1.1.x86_64",
            "openSUSE Tumbleweed:libcurl-devel-32bit-7.88.1-1.1.aarch64",
            "openSUSE Tumbleweed:libcurl-devel-32bit-7.88.1-1.1.ppc64le",
            "openSUSE Tumbleweed:libcurl-devel-32bit-7.88.1-1.1.s390x",
            "openSUSE Tumbleweed:libcurl-devel-32bit-7.88.1-1.1.x86_64",
            "openSUSE Tumbleweed:libcurl-devel-7.88.1-1.1.aarch64",
            "openSUSE Tumbleweed:libcurl-devel-7.88.1-1.1.ppc64le",
            "openSUSE Tumbleweed:libcurl-devel-7.88.1-1.1.s390x",
            "openSUSE Tumbleweed:libcurl-devel-7.88.1-1.1.x86_64",
            "openSUSE Tumbleweed:libcurl4-32bit-7.88.1-1.1.aarch64",
            "openSUSE Tumbleweed:libcurl4-32bit-7.88.1-1.1.ppc64le",
            "openSUSE Tumbleweed:libcurl4-32bit-7.88.1-1.1.s390x",
            "openSUSE Tumbleweed:libcurl4-32bit-7.88.1-1.1.x86_64",
            "openSUSE Tumbleweed:libcurl4-7.88.1-1.1.aarch64",
            "openSUSE Tumbleweed:libcurl4-7.88.1-1.1.ppc64le",
            "openSUSE Tumbleweed:libcurl4-7.88.1-1.1.s390x",
            "openSUSE Tumbleweed:libcurl4-7.88.1-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2023-23914"
    },
    {
      "cve": "CVE-2023-23915",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-23915"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A cleartext transmission of sensitive information vulnerability exists in curl \u003cv7.88.0 that could cause HSTS functionality to behave incorrectly when multiple URLs are requested in parallel. Using its HSTS support, curl can be instructed to use HTTPS instead of using an insecure clear-text HTTP step even when HTTP is provided in the URL. This HSTS mechanism would however surprisingly fail when multiple transfers are done in parallel as the HSTS cache file gets overwritten by the most recentlycompleted transfer. A later HTTP-only transfer to the earlier host name would then *not* get upgraded properly to HSTS.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:curl-7.88.1-1.1.aarch64",
          "openSUSE Tumbleweed:curl-7.88.1-1.1.ppc64le",
          "openSUSE Tumbleweed:curl-7.88.1-1.1.s390x",
          "openSUSE Tumbleweed:curl-7.88.1-1.1.x86_64",
          "openSUSE Tumbleweed:libcurl-devel-32bit-7.88.1-1.1.aarch64",
          "openSUSE Tumbleweed:libcurl-devel-32bit-7.88.1-1.1.ppc64le",
          "openSUSE Tumbleweed:libcurl-devel-32bit-7.88.1-1.1.s390x",
          "openSUSE Tumbleweed:libcurl-devel-32bit-7.88.1-1.1.x86_64",
          "openSUSE Tumbleweed:libcurl-devel-7.88.1-1.1.aarch64",
          "openSUSE Tumbleweed:libcurl-devel-7.88.1-1.1.ppc64le",
          "openSUSE Tumbleweed:libcurl-devel-7.88.1-1.1.s390x",
          "openSUSE Tumbleweed:libcurl-devel-7.88.1-1.1.x86_64",
          "openSUSE Tumbleweed:libcurl4-32bit-7.88.1-1.1.aarch64",
          "openSUSE Tumbleweed:libcurl4-32bit-7.88.1-1.1.ppc64le",
          "openSUSE Tumbleweed:libcurl4-32bit-7.88.1-1.1.s390x",
          "openSUSE Tumbleweed:libcurl4-32bit-7.88.1-1.1.x86_64",
          "openSUSE Tumbleweed:libcurl4-7.88.1-1.1.aarch64",
          "openSUSE Tumbleweed:libcurl4-7.88.1-1.1.ppc64le",
          "openSUSE Tumbleweed:libcurl4-7.88.1-1.1.s390x",
          "openSUSE Tumbleweed:libcurl4-7.88.1-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-23915",
          "url": "https://www.suse.com/security/cve/CVE-2023-23915"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1207991 for CVE-2023-23915",
          "url": "https://bugzilla.suse.com/1207991"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:curl-7.88.1-1.1.aarch64",
            "openSUSE Tumbleweed:curl-7.88.1-1.1.ppc64le",
            "openSUSE Tumbleweed:curl-7.88.1-1.1.s390x",
            "openSUSE Tumbleweed:curl-7.88.1-1.1.x86_64",
            "openSUSE Tumbleweed:libcurl-devel-32bit-7.88.1-1.1.aarch64",
            "openSUSE Tumbleweed:libcurl-devel-32bit-7.88.1-1.1.ppc64le",
            "openSUSE Tumbleweed:libcurl-devel-32bit-7.88.1-1.1.s390x",
            "openSUSE Tumbleweed:libcurl-devel-32bit-7.88.1-1.1.x86_64",
            "openSUSE Tumbleweed:libcurl-devel-7.88.1-1.1.aarch64",
            "openSUSE Tumbleweed:libcurl-devel-7.88.1-1.1.ppc64le",
            "openSUSE Tumbleweed:libcurl-devel-7.88.1-1.1.s390x",
            "openSUSE Tumbleweed:libcurl-devel-7.88.1-1.1.x86_64",
            "openSUSE Tumbleweed:libcurl4-32bit-7.88.1-1.1.aarch64",
            "openSUSE Tumbleweed:libcurl4-32bit-7.88.1-1.1.ppc64le",
            "openSUSE Tumbleweed:libcurl4-32bit-7.88.1-1.1.s390x",
            "openSUSE Tumbleweed:libcurl4-32bit-7.88.1-1.1.x86_64",
            "openSUSE Tumbleweed:libcurl4-7.88.1-1.1.aarch64",
            "openSUSE Tumbleweed:libcurl4-7.88.1-1.1.ppc64le",
            "openSUSE Tumbleweed:libcurl4-7.88.1-1.1.s390x",
            "openSUSE Tumbleweed:libcurl4-7.88.1-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:curl-7.88.1-1.1.aarch64",
            "openSUSE Tumbleweed:curl-7.88.1-1.1.ppc64le",
            "openSUSE Tumbleweed:curl-7.88.1-1.1.s390x",
            "openSUSE Tumbleweed:curl-7.88.1-1.1.x86_64",
            "openSUSE Tumbleweed:libcurl-devel-32bit-7.88.1-1.1.aarch64",
            "openSUSE Tumbleweed:libcurl-devel-32bit-7.88.1-1.1.ppc64le",
            "openSUSE Tumbleweed:libcurl-devel-32bit-7.88.1-1.1.s390x",
            "openSUSE Tumbleweed:libcurl-devel-32bit-7.88.1-1.1.x86_64",
            "openSUSE Tumbleweed:libcurl-devel-7.88.1-1.1.aarch64",
            "openSUSE Tumbleweed:libcurl-devel-7.88.1-1.1.ppc64le",
            "openSUSE Tumbleweed:libcurl-devel-7.88.1-1.1.s390x",
            "openSUSE Tumbleweed:libcurl-devel-7.88.1-1.1.x86_64",
            "openSUSE Tumbleweed:libcurl4-32bit-7.88.1-1.1.aarch64",
            "openSUSE Tumbleweed:libcurl4-32bit-7.88.1-1.1.ppc64le",
            "openSUSE Tumbleweed:libcurl4-32bit-7.88.1-1.1.s390x",
            "openSUSE Tumbleweed:libcurl4-32bit-7.88.1-1.1.x86_64",
            "openSUSE Tumbleweed:libcurl4-7.88.1-1.1.aarch64",
            "openSUSE Tumbleweed:libcurl4-7.88.1-1.1.ppc64le",
            "openSUSE Tumbleweed:libcurl4-7.88.1-1.1.s390x",
            "openSUSE Tumbleweed:libcurl4-7.88.1-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2023-23915"
    },
    {
      "cve": "CVE-2023-23916",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-23916"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An allocation of resources without limits or throttling vulnerability exists in curl \u003cv7.88.0 based on the \"chained\" HTTP compression algorithms, meaning that a server response can be compressed multiple times and potentially with differentalgorithms. The number of acceptable \"links\" in this \"decompression chain\" wascapped, but the cap was implemented on a per-header basis allowing a maliciousserver to insert a virtually unlimited number of compression steps simply byusing many headers. The use of such a decompression chain could result in a \"malloc bomb\", making curl end up spending enormous amounts of allocated heap memory, or trying to and returning out of memory errors.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:curl-7.88.1-1.1.aarch64",
          "openSUSE Tumbleweed:curl-7.88.1-1.1.ppc64le",
          "openSUSE Tumbleweed:curl-7.88.1-1.1.s390x",
          "openSUSE Tumbleweed:curl-7.88.1-1.1.x86_64",
          "openSUSE Tumbleweed:libcurl-devel-32bit-7.88.1-1.1.aarch64",
          "openSUSE Tumbleweed:libcurl-devel-32bit-7.88.1-1.1.ppc64le",
          "openSUSE Tumbleweed:libcurl-devel-32bit-7.88.1-1.1.s390x",
          "openSUSE Tumbleweed:libcurl-devel-32bit-7.88.1-1.1.x86_64",
          "openSUSE Tumbleweed:libcurl-devel-7.88.1-1.1.aarch64",
          "openSUSE Tumbleweed:libcurl-devel-7.88.1-1.1.ppc64le",
          "openSUSE Tumbleweed:libcurl-devel-7.88.1-1.1.s390x",
          "openSUSE Tumbleweed:libcurl-devel-7.88.1-1.1.x86_64",
          "openSUSE Tumbleweed:libcurl4-32bit-7.88.1-1.1.aarch64",
          "openSUSE Tumbleweed:libcurl4-32bit-7.88.1-1.1.ppc64le",
          "openSUSE Tumbleweed:libcurl4-32bit-7.88.1-1.1.s390x",
          "openSUSE Tumbleweed:libcurl4-32bit-7.88.1-1.1.x86_64",
          "openSUSE Tumbleweed:libcurl4-7.88.1-1.1.aarch64",
          "openSUSE Tumbleweed:libcurl4-7.88.1-1.1.ppc64le",
          "openSUSE Tumbleweed:libcurl4-7.88.1-1.1.s390x",
          "openSUSE Tumbleweed:libcurl4-7.88.1-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-23916",
          "url": "https://www.suse.com/security/cve/CVE-2023-23916"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1207992 for CVE-2023-23916",
          "url": "https://bugzilla.suse.com/1207992"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:curl-7.88.1-1.1.aarch64",
            "openSUSE Tumbleweed:curl-7.88.1-1.1.ppc64le",
            "openSUSE Tumbleweed:curl-7.88.1-1.1.s390x",
            "openSUSE Tumbleweed:curl-7.88.1-1.1.x86_64",
            "openSUSE Tumbleweed:libcurl-devel-32bit-7.88.1-1.1.aarch64",
            "openSUSE Tumbleweed:libcurl-devel-32bit-7.88.1-1.1.ppc64le",
            "openSUSE Tumbleweed:libcurl-devel-32bit-7.88.1-1.1.s390x",
            "openSUSE Tumbleweed:libcurl-devel-32bit-7.88.1-1.1.x86_64",
            "openSUSE Tumbleweed:libcurl-devel-7.88.1-1.1.aarch64",
            "openSUSE Tumbleweed:libcurl-devel-7.88.1-1.1.ppc64le",
            "openSUSE Tumbleweed:libcurl-devel-7.88.1-1.1.s390x",
            "openSUSE Tumbleweed:libcurl-devel-7.88.1-1.1.x86_64",
            "openSUSE Tumbleweed:libcurl4-32bit-7.88.1-1.1.aarch64",
            "openSUSE Tumbleweed:libcurl4-32bit-7.88.1-1.1.ppc64le",
            "openSUSE Tumbleweed:libcurl4-32bit-7.88.1-1.1.s390x",
            "openSUSE Tumbleweed:libcurl4-32bit-7.88.1-1.1.x86_64",
            "openSUSE Tumbleweed:libcurl4-7.88.1-1.1.aarch64",
            "openSUSE Tumbleweed:libcurl4-7.88.1-1.1.ppc64le",
            "openSUSE Tumbleweed:libcurl4-7.88.1-1.1.s390x",
            "openSUSE Tumbleweed:libcurl4-7.88.1-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:curl-7.88.1-1.1.aarch64",
            "openSUSE Tumbleweed:curl-7.88.1-1.1.ppc64le",
            "openSUSE Tumbleweed:curl-7.88.1-1.1.s390x",
            "openSUSE Tumbleweed:curl-7.88.1-1.1.x86_64",
            "openSUSE Tumbleweed:libcurl-devel-32bit-7.88.1-1.1.aarch64",
            "openSUSE Tumbleweed:libcurl-devel-32bit-7.88.1-1.1.ppc64le",
            "openSUSE Tumbleweed:libcurl-devel-32bit-7.88.1-1.1.s390x",
            "openSUSE Tumbleweed:libcurl-devel-32bit-7.88.1-1.1.x86_64",
            "openSUSE Tumbleweed:libcurl-devel-7.88.1-1.1.aarch64",
            "openSUSE Tumbleweed:libcurl-devel-7.88.1-1.1.ppc64le",
            "openSUSE Tumbleweed:libcurl-devel-7.88.1-1.1.s390x",
            "openSUSE Tumbleweed:libcurl-devel-7.88.1-1.1.x86_64",
            "openSUSE Tumbleweed:libcurl4-32bit-7.88.1-1.1.aarch64",
            "openSUSE Tumbleweed:libcurl4-32bit-7.88.1-1.1.ppc64le",
            "openSUSE Tumbleweed:libcurl4-32bit-7.88.1-1.1.s390x",
            "openSUSE Tumbleweed:libcurl4-32bit-7.88.1-1.1.x86_64",
            "openSUSE Tumbleweed:libcurl4-7.88.1-1.1.aarch64",
            "openSUSE Tumbleweed:libcurl4-7.88.1-1.1.ppc64le",
            "openSUSE Tumbleweed:libcurl4-7.88.1-1.1.s390x",
            "openSUSE Tumbleweed:libcurl4-7.88.1-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-23916"
    }
  ]
}

CVE-2023-23914 (GCVE-0-2023-23914)

Vulnerability from cvelistv5

Published

2023-02-23 00:00

Modified

2025-03-12 18:52

Severity ?

9.1 (Critical) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

CWE

CWE-319 - Cleartext Transmission of Sensitive Information ()

Summary

A cleartext transmission of sensitive information vulnerability exists in curl <v7.88.0 that could cause HSTS functionality fail when multiple URLs are requested serially. Using its HSTS support, curl can be instructed to use HTTPS instead of usingan insecure clear-text HTTP step even when HTTP is provided in the URL. ThisHSTS mechanism would however surprisingly be ignored by subsequent transferswhen done on the same command line because the state would not be properlycarried on.

References

►

URL

Tags

	https://hackerone.com/reports/1813864
	https://security.netapp.com/advisory/ntap-20230309-0006/
	https://security.gentoo.org/glsa/202310-12	vendor-advisory

Impacted products

	Vendor	Product	Version
	n/a	https://github.com/curl/curl	Version: Fixed in 7.88.0

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T10:42:27.094Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://hackerone.com/reports/1813864"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20230309-0006/"
          },
          {
            "name": "GLSA-202310-12",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/202310-12"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "NETWORK",
              "availabilityImpact": "NONE",
              "baseScore": 9.1,
              "baseSeverity": "CRITICAL",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "HIGH",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2023-23914",
                "options": [
                  {
                    "Exploitation": "poc"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-03-12T18:51:37.968536Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-319",
                "description": "CWE-319 Cleartext Transmission of Sensitive Information",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-03-12T18:52:09.064Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "https://github.com/curl/curl",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "Fixed in 7.88.0"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A cleartext transmission of sensitive information vulnerability exists in curl \u003cv7.88.0 that could cause HSTS functionality fail when multiple URLs are requested serially. Using its HSTS support, curl can be instructed to use HTTPS instead of usingan insecure clear-text HTTP step even when HTTP is provided in the URL. ThisHSTS mechanism would however surprisingly be ignored by subsequent transferswhen done on the same command line because the state would not be properlycarried on."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-319",
              "description": "Cleartext Transmission of Sensitive Information (CWE-319)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2023-10-11T10:06:32.942Z",
        "orgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
        "shortName": "hackerone"
      },
      "references": [
        {
          "url": "https://hackerone.com/reports/1813864"
        },
        {
          "url": "https://security.netapp.com/advisory/ntap-20230309-0006/"
        },
        {
          "name": "GLSA-202310-12",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://security.gentoo.org/glsa/202310-12"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
    "assignerShortName": "hackerone",
    "cveId": "CVE-2023-23914",
    "datePublished": "2023-02-23T00:00:00.000Z",
    "dateReserved": "2023-01-19T00:00:00.000Z",
    "dateUpdated": "2025-03-12T18:52:09.064Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2023-23916 (GCVE-0-2023-23916)

Vulnerability from cvelistv5

Published

2023-02-23 00:00

Modified

2025-03-12 18:25

Severity ?

6.5 (Medium) - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CWE

CWE-770 - Allocation of Resources Without Limits or Throttling ()

Summary

An allocation of resources without limits or throttling vulnerability exists in curl <v7.88.0 based on the "chained" HTTP compression algorithms, meaning that a server response can be compressed multiple times and potentially with differentalgorithms. The number of acceptable "links" in this "decompression chain" wascapped, but the cap was implemented on a per-header basis allowing a maliciousserver to insert a virtually unlimited number of compression steps simply byusing many headers. The use of such a decompression chain could result in a "malloc bomb", making curl end up spending enormous amounts of allocated heap memory, or trying to and returning out of memory errors.

References

►

URL

Tags

	https://hackerone.com/reports/1826048
	https://lists.debian.org/debian-lts-announce/2023/02/msg00035.html	mailing-list
	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BQKE6TXYDHOTFHLTBZ5X73GTKI7II5KO/	vendor-advisory
	https://www.debian.org/security/2023/dsa-5365	vendor-advisory
	https://security.netapp.com/advisory/ntap-20230309-0006/
	https://security.gentoo.org/glsa/202310-12	vendor-advisory

Impacted products

	Vendor	Product	Version
	n/a	https://github.com/curl/curl	Version: Fixed in 7.88.0

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T10:42:26.847Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://hackerone.com/reports/1826048"
          },
          {
            "name": "[debian-lts-announce] 20230224 [SECURITY] [DLA 3341-1] curl security update",
            "tags": [
              "mailing-list",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00035.html"
          },
          {
            "name": "FEDORA-2023-94df30cbec",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BQKE6TXYDHOTFHLTBZ5X73GTKI7II5KO/"
          },
          {
            "name": "DSA-5365",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://www.debian.org/security/2023/dsa-5365"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20230309-0006/"
          },
          {
            "name": "GLSA-202310-12",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/202310-12"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "NETWORK",
              "availabilityImpact": "HIGH",
              "baseScore": 6.5,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "NONE",
              "integrityImpact": "NONE",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "REQUIRED",
              "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2023-23916",
                "options": [
                  {
                    "Exploitation": "poc"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-03-12T18:24:35.695221Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-770",
                "description": "CWE-770 Allocation of Resources Without Limits or Throttling",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-03-12T18:25:23.845Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "https://github.com/curl/curl",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "Fixed in 7.88.0"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "An allocation of resources without limits or throttling vulnerability exists in curl \u003cv7.88.0 based on the \"chained\" HTTP compression algorithms, meaning that a server response can be compressed multiple times and potentially with differentalgorithms. The number of acceptable \"links\" in this \"decompression chain\" wascapped, but the cap was implemented on a per-header basis allowing a maliciousserver to insert a virtually unlimited number of compression steps simply byusing many headers. The use of such a decompression chain could result in a \"malloc bomb\", making curl end up spending enormous amounts of allocated heap memory, or trying to and returning out of memory errors."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-770",
              "description": "Allocation of Resources Without Limits or Throttling (CWE-770)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2023-10-11T10:06:40.617Z",
        "orgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
        "shortName": "hackerone"
      },
      "references": [
        {
          "url": "https://hackerone.com/reports/1826048"
        },
        {
          "name": "[debian-lts-announce] 20230224 [SECURITY] [DLA 3341-1] curl security update",
          "tags": [
            "mailing-list"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00035.html"
        },
        {
          "name": "FEDORA-2023-94df30cbec",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BQKE6TXYDHOTFHLTBZ5X73GTKI7II5KO/"
        },
        {
          "name": "DSA-5365",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://www.debian.org/security/2023/dsa-5365"
        },
        {
          "url": "https://security.netapp.com/advisory/ntap-20230309-0006/"
        },
        {
          "name": "GLSA-202310-12",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://security.gentoo.org/glsa/202310-12"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
    "assignerShortName": "hackerone",
    "cveId": "CVE-2023-23916",
    "datePublished": "2023-02-23T00:00:00.000Z",
    "dateReserved": "2023-01-19T00:00:00.000Z",
    "dateUpdated": "2025-03-12T18:25:23.845Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2023-23915 (GCVE-0-2023-23915)

Vulnerability from cvelistv5

Published

2023-02-23 00:00

Modified

2024-08-02 10:42

Severity ?

CWE

CWE-319 - Cleartext Transmission of Sensitive Information ()

Summary

A cleartext transmission of sensitive information vulnerability exists in curl <v7.88.0 that could cause HSTS functionality to behave incorrectly when multiple URLs are requested in parallel. Using its HSTS support, curl can be instructed to use HTTPS instead of using an insecure clear-text HTTP step even when HTTP is provided in the URL. This HSTS mechanism would however surprisingly fail when multiple transfers are done in parallel as the HSTS cache file gets overwritten by the most recentlycompleted transfer. A later HTTP-only transfer to the earlier host name would then *not* get upgraded properly to HSTS.

References

►

URL

Tags

	https://hackerone.com/reports/1826048
	https://security.netapp.com/advisory/ntap-20230309-0006/
	https://security.gentoo.org/glsa/202310-12	vendor-advisory

Impacted products

	Vendor	Product	Version
	n/a	https://github.com/curl/curl	Version: Fixed in 7.88.0

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T10:42:27.101Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://hackerone.com/reports/1826048"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20230309-0006/"
          },
          {
            "name": "GLSA-202310-12",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/202310-12"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "https://github.com/curl/curl",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "Fixed in 7.88.0"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A cleartext transmission of sensitive information vulnerability exists in curl \u003cv7.88.0 that could cause HSTS functionality to behave incorrectly when multiple URLs are requested in parallel. Using its HSTS support, curl can be instructed to use HTTPS instead of using an insecure clear-text HTTP step even when HTTP is provided in the URL. This HSTS mechanism would however surprisingly fail when multiple transfers are done in parallel as the HSTS cache file gets overwritten by the most recentlycompleted transfer. A later HTTP-only transfer to the earlier host name would then *not* get upgraded properly to HSTS."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-319",
              "description": "Cleartext Transmission of Sensitive Information (CWE-319)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2023-10-11T10:06:31.422007",
        "orgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
        "shortName": "hackerone"
      },
      "references": [
        {
          "url": "https://hackerone.com/reports/1826048"
        },
        {
          "url": "https://security.netapp.com/advisory/ntap-20230309-0006/"
        },
        {
          "name": "GLSA-202310-12",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://security.gentoo.org/glsa/202310-12"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
    "assignerShortName": "hackerone",
    "cveId": "CVE-2023-23915",
    "datePublished": "2023-02-23T00:00:00",
    "dateReserved": "2023-01-19T00:00:00",
    "dateUpdated": "2024-08-02T10:42:27.101Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

opensuse-su-2024:12735-1

Vulnerability from csaf_opensuse

CVE-2023-23914 (GCVE-0-2023-23914)

Vulnerability from cvelistv5

CVE-2023-23916 (GCVE-0-2023-23916)

Vulnerability from cvelistv5

CVE-2023-23915 (GCVE-0-2023-23915)

Vulnerability from cvelistv5

Tags

Sightings

Nomenclature