VDB

GCVE-110-MAGEIA-2022-405

GCVE-110-MAGEIA-2022-405
Advisory Published
Vulnetix · Advisory published November 1, 2022
When doing HTTP(S) transfers, libcurl might erroneously use the read callback (CURLOPT_READFUNCTION) to ask for data to send, even when the CURLOPT_POSTFIELDS option has been set, if the same handle previously was used to issue a PUT request which used that callback. (CVE-2022-32221)

Affected Products

VendorProductVersionsPlatforms
Mageiacurl0 (affected), 7.74.0-1.9.mga8 (unaffected)

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›