When sending data to an MQTT server, libcurl <= 7.73.0 and 7.78.0 could in some circumstances erroneously keep a pointer to an already freed memory area and both use that again in a subsequent call to send data and also free it *again*.
2021-09-23T13:15:08.690
2025-06-09T15:15:25.540
Modified
CVSSv3.1: 9.1 (CRITICAL)
AV:N/AC:M/Au:N/C:P/I:N/A:P
8.6
4.9
Type | Vendor | Product | Version/Range | Vulnerable? |
---|---|---|---|---|
Application | haxx | libcurl | ≤ 7.78.0 | Yes |
Operating System | fedoraproject | fedora | 33 | Yes |
Operating System | fedoraproject | fedora | 35 | Yes |
Application | netapp | cloud_backup | - | Yes |
Application | netapp | clustered_data_ontap | - | Yes |
Application | oracle | mysql_server | ≤ 5.7.35 | Yes |
Application | oracle | mysql_server | ≤ 8.0.26 | Yes |
Operating System | netapp | h300s_firmware | - | Yes |
Hardware | netapp | h300s | - | No |
Operating System | netapp | h500s_firmware | - | Yes |
Hardware | netapp | h500s | - | No |
Operating System | netapp | h700s_firmware | - | Yes |
Hardware | netapp | h700s | - | No |
Operating System | netapp | h300e_firmware | - | Yes |
Hardware | netapp | h300e | - | No |
Operating System | netapp | h500e_firmware | - | Yes |
Hardware | netapp | h500e | - | No |
Operating System | netapp | h700e_firmware | - | Yes |
Hardware | netapp | h700e | - | No |
Operating System | netapp | h410s_firmware | - | Yes |
Hardware | netapp | h410s | - | No |
Operating System | netapp | solidfire_baseboard_management_controller_firmware | - | Yes |
Hardware | netapp | solidfire_baseboard_management_controller | - | No |
Operating System | apple | macos | < 12.3 | Yes |
Application | siemens | sinec_ins | < 1.0.1.1 | Yes |
Operating System | debian | debian_linux | 11.0 | Yes |
Application | splunk | universal_forwarder | < 8.2.12 | Yes |
Application | splunk | universal_forwarder | < 9.0.6 | Yes |
Application | splunk | universal_forwarder | 9.1.0 | Yes |