VDB

TNCVE-2022-27781

TNCVE-2022-27781 PUBLISHED

libcurl provides the `CURLOPT_CERTINFO` option to allow applications torequest details to be returned about a server's certificate chain.Due to an erroneous function, a malicious server could make libcurl built withNSS get stuck in a never-ending busy-loop when trying to retrieve thatinformation.

Timeline

  • Jun 2, 2022 CVE Published

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›