Download
Browse source Changelog tiny-curl
Documentation
Project   Bug Bounty FAQ   Help us   Known bugs   TODO Protocols   CA bundle   HTTP Cookies   SSL Certs Releases   Security   Version numbers   Vulnerabilities curl tool   man page   Tutorial   HTTP scripting trurl wcurl Videos Who and Why
libcurl
API Examples Features Mailing list Symbols Using libcurl Tutorial
Get Help
curl-library curl-users IRC / chat Mailing lists Everything curl [book] Video presentations Report a bug Paid support
Development
Autobuilds Code review Code style Contribute Dashboard Deprecate Internals Release Notes Release Procedure Roadmap Run Tests Specifications Test curl Tests Overview Vulnerability Disclosure Policy
News
Changelog Release table
curl / Mailing Lists / curl-library / Single Mail
Buy commercial curl support. We help you work out your issues, debug your libcurl applications, use the API, port to new platforms, add new features and more. With a team lead by the curl founder Daniel himself.

Vulnerabilities affect version fixes about CVE-2022-43551

From: 陈星杵 via curl-library <curl-library_at_lists.haxx.se>
Date: Fri, 13 Dec 2024 20:44:50 +0800 (GMT+08:00)

Hello,




I found that the affected version of CVE-2022-43551 on the "https://curl.se/docs/CVE-2022-43551.html" is missing. First of all, thank you very much for the very clear explanation on the website about the root causes of vulnerabilities and patc. But based on my review and analysis of the code repository, I have found that this vulnerability still exists in 'curl-7_74_0', 'curl-7_75_0', 'curl-7_76_0', 'curl-7_76_1'.However, the scope of the vulnerability affected provided on the website is "curl 7.77.0 to and including 7.86.0". So the correct affected versions is: "curl 7.74.0 to and including 7.86.0".







Reference:

https://curl.se/docs/CVE-2022-43551.html

https://github.com/curl/curl/blob/curl-7_73_0/lib/http.c 






-- 
Unsubscribe: https://lists.haxx.se/mailman/listinfo/curl-library
Etiquette:   https://curl.se/mail/etiquette.html
Received on 2024-12-13