Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2022-32221

When doing HTTP(S) transfers, libcurl might erroneously use the read callback (`CURLOPT_READFUNCTION`) to ask for data to send, even when the `CURLOPT_POSTFIELDS` option has been set, if the same handle previously was used to issue a `PUT` request which used that callback. This flaw may surprise the application and cause it to misbehave and either send off the wrong data or use memory after free or similar in the subsequent `POST` request. The problem exists in the logic for a reused handle when it is changed from a PUT to a POST.

Published

2022-12-05T22:15:10.343

Last Modified

2024-11-21T07:05:57.177

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 9.8 (CRITICAL)

Weaknesses

Type: Secondary
CWE-200
Type: Primary
CWE-668

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	haxx	curl	< 7.86.0	Yes
Application	netapp	clustered_data_ontap	-	Yes
Operating System	netapp	h300s_firmware	-	Yes
Hardware	netapp	h300s	-	No
Operating System	netapp	h500s_firmware	-	Yes
Hardware	netapp	h500s	-	No
Operating System	netapp	h700s_firmware	-	Yes
Hardware	netapp	h700s	-	No
Operating System	netapp	h410s_firmware	-	Yes
Hardware	netapp	h410s	-	No
Operating System	debian	debian_linux	10.0	Yes
Operating System	debian	debian_linux	11.0	Yes
Operating System	apple	macos	< 12.6.3	Yes
Application	splunk	universal_forwarder	< 8.2.12	Yes
Application	splunk	universal_forwarder	< 9.0.6	Yes
Application	splunk	universal_forwarder	9.1.0	Yes

References

http://seclists.org/fulldisclosure/2023/Jan/19 Mailing List, Third Party Advisory ([email protected])
http://seclists.org/fulldisclosure/2023/Jan/20 Mailing List, Third Party Advisory ([email protected])
http://www.openwall.com/lists/oss-security/2023/05/17/4 Mailing List ([email protected])
https://hackerone.com/reports/1704017 Exploit, Issue Tracking, Third Party Advisory ([email protected])
https://lists.debian.org/debian-lts-announce/2023/01/msg00028.html Mailing List, Third Party Advisory ([email protected])
https://security.gentoo.org/glsa/202212-01 Third Party Advisory ([email protected])
https://security.netapp.com/advisory/ntap-20230110-0006/ Third Party Advisory ([email protected])
https://security.netapp.com/advisory/ntap-20230208-0002/ Third Party Advisory ([email protected])
https://support.apple.com/kb/HT213604 Third Party Advisory ([email protected])
https://support.apple.com/kb/HT213605 Third Party Advisory ([email protected])
https://www.debian.org/security/2023/dsa-5330 Third Party Advisory ([email protected])
http://seclists.org/fulldisclosure/2023/Jan/19 Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://seclists.org/fulldisclosure/2023/Jan/20 Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.openwall.com/lists/oss-security/2023/05/17/4 Mailing List (af854a3a-2127-422b-91ae-364da2661108)
https://hackerone.com/reports/1704017 Exploit, Issue Tracking, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://lists.debian.org/debian-lts-announce/2023/01/msg00028.html Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://security.gentoo.org/glsa/202212-01 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://security.netapp.com/advisory/ntap-20230110-0006/ Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://security.netapp.com/advisory/ntap-20230208-0002/ Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://support.apple.com/kb/HT213604 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://support.apple.com/kb/HT213605 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://www.debian.org/security/2023/dsa-5330 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)