curl / Mailing Lists / curl-library / Single Mail
Buy commercial curl support from WolfSSL. We help you work out your issues, debug your libcurl applications, use the API, port to new platforms, add new features and more. With a team lead by the curl founder himself.

Re: CVE-2022-22623

From: Phil Cole via curl-library <curl-library_at_lists.haxx.se>
Date: Thu, 17 Mar 2022 09:53:23 +0000

On Thu, 17 Mar 2022 at 09:16, Daniel Stenberg via curl-library <
curl-library_at_lists.haxx.se> wrote:

> Hi team,
>
> Apple recently posted https://support.apple.com/en-us/HT213183 about a
> macOS
> upgrade, in which they have also updated curl.
>
> I presume this is just a typo and they actually meant another number. I
> have
> reached out and asked for an update/clarification.
>
>
Doing a search for the CVE pulled up, for me, the Apple page and this one:
https://www.cybersecurity-help.cz/vdb/SB2022031431. Doesn't really say
very much other than security restrictions can be bypassed due to an
unspecified vulnerability in curl.

Hope you can get more details from Apple.

Phil


-- 
Unsubscribe: https://lists.haxx.se/listinfo/curl-library
Etiquette:   https://curl.haxx.se/mail/etiquette.html
Received on 2022-03-17