VDB

GCVE-VVD-MAGEIA-2023-288

GCVE-VVD-MAGEIA-2023-288
Advisory Published
Vulnetix · Advisory published October 13, 2023
curl/libcurl is vulnerable to a heap buffer overflow in its SOCKS5 support that could be exploited by a remote web server when curl is configured to use a SOCKS5 proxy with remote hostname resolution. libcurl is vulnerable to a cookie injection attack where a local attacker can inject cookies into certain vulnerable applications using libcurl.
Download JSON Open in Console

Affected Products

VendorProductVersionsPlatforms
Mageiacurl0 (affected), 7.74.0-1.14.mga8 (unaffected)
Mageiacurl0 (affected), 7.88.1-3.2.mga9 (unaffected)

References

Updated the curl packages to fix two security vulnerabilities
advisory
Updated the curl packages to fix two security vulnerabilities
issue
Updated the curl packages to fix two security vulnerabilities
issue
Updated the curl packages to fix two security vulnerabilities
issue
Updated the curl packages to fix two security vulnerabilities
issue
Updated the curl packages to fix two security vulnerabilities
issue
Updated the curl packages to fix two security vulnerabilities
issue
Updated the curl packages to fix two security vulnerabilities
issue

Browse GCVE Records

100 records in the GCVE database · Updated April 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

Open in Console Download JSON
$ Console Community · 100/wk Open console ›