curl / Mailing Lists / curl-library / Single Mail
Buy commercial curl support from WolfSSL. We help you work out your issues, debug your libcurl applications, use the API, port to new platforms, add new features and more. With a team lead by the curl founder himself.

Rejected CVE-2023-32001

From: Daniel Stenberg via curl-library <>
Date: Sun, 27 Aug 2023 11:39:21 +0200 (CEST)

Hi friends.

As of today, we no longer consider CVE-2023-32001 to be a curl security

The main advisory is updated accordingly:

The issue leading to the retraction is here:

The original HackerOne report leading to the original CVE is here:

The PR (now merged) that updates the documentation that mentions problems with
sharing directories with curl saves:

Thanks for flying curl. Never a dull moment.

  | Commercial curl support up to 24x7 is available!
  | Private help, bug fixes, support, ports, new features
Received on 2023-08-27