csaf_suse - suse-su-2023:4653-1

Vulnerability from csaf_suse

Published

2023-12-06 10:34

Modified

2023-12-06 10:34

Summary

Security update for curl

Notes

Title of the patch

Security update for curl

Description of the patch

This update for curl fixes the following issues: - CVE-2023-46218: Fixed cookie mixed case PSL bypass (bsc#1217573). - CVE-2023-46219: HSTS long file name clears contents (bsc#1217574).

Patchnames

SUSE-2023-4653,SUSE-SLE-SDK-12-SP5-2023-4653,SUSE-SLE-SERVER-12-SP5-2023-4653

CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).

JSON

To clipboard

{
   document: {
      aggregate_severity: {
         namespace: "https://www.suse.com/support/security/rating/",
         text: "moderate",
      },
      category: "csaf_security_advisory",
      csaf_version: "2.0",
      distribution: {
         text: "Copyright 2024 SUSE LLC. All rights reserved.",
         tlp: {
            label: "WHITE",
            url: "https://www.first.org/tlp/",
         },
      },
      lang: "en",
      notes: [
         {
            category: "summary",
            text: "Security update for curl",
            title: "Title of the patch",
         },
         {
            category: "description",
            text: "This update for curl fixes the following issues:\n\n- CVE-2023-46218: Fixed cookie mixed case PSL bypass (bsc#1217573).\n- CVE-2023-46219: HSTS long file name clears contents (bsc#1217574).\n",
            title: "Description of the patch",
         },
         {
            category: "details",
            text: "SUSE-2023-4653,SUSE-SLE-SDK-12-SP5-2023-4653,SUSE-SLE-SERVER-12-SP5-2023-4653",
            title: "Patchnames",
         },
         {
            category: "legal_disclaimer",
            text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
            title: "Terms of use",
         },
      ],
      publisher: {
         category: "vendor",
         contact_details: "https://www.suse.com/support/security/contact/",
         name: "SUSE Product Security Team",
         namespace: "https://www.suse.com/",
      },
      references: [
         {
            category: "external",
            summary: "SUSE ratings",
            url: "https://www.suse.com/support/security/rating/",
         },
         {
            category: "self",
            summary: "URL of this CSAF notice",
            url: "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2023_4653-1.json",
         },
         {
            category: "self",
            summary: "URL for SUSE-SU-2023:4653-1",
            url: "https://www.suse.com/support/update/announcement/2023/suse-su-20234653-1/",
         },
         {
            category: "self",
            summary: "E-Mail link for SUSE-SU-2023:4653-1",
            url: "https://lists.suse.com/pipermail/sle-security-updates/2023-December/017398.html",
         },
         {
            category: "self",
            summary: "SUSE Bug 1217573",
            url: "https://bugzilla.suse.com/1217573",
         },
         {
            category: "self",
            summary: "SUSE Bug 1217574",
            url: "https://bugzilla.suse.com/1217574",
         },
         {
            category: "self",
            summary: "SUSE CVE CVE-2023-46218 page",
            url: "https://www.suse.com/security/cve/CVE-2023-46218/",
         },
         {
            category: "self",
            summary: "SUSE CVE CVE-2023-46219 page",
            url: "https://www.suse.com/security/cve/CVE-2023-46219/",
         },
      ],
      title: "Security update for curl",
      tracking: {
         current_release_date: "2023-12-06T10:34:40Z",
         generator: {
            date: "2023-12-06T10:34:40Z",
            engine: {
               name: "cve-database.git:bin/generate-csaf.pl",
               version: "1",
            },
         },
         id: "SUSE-SU-2023:4653-1",
         initial_release_date: "2023-12-06T10:34:40Z",
         revision_history: [
            {
               date: "2023-12-06T10:34:40Z",
               number: "1",
               summary: "Current version",
            },
         ],
         status: "final",
         version: "1",
      },
   },
   product_tree: {
      branches: [
         {
            branches: [
               {
                  branches: [
                     {
                        category: "product_version",
                        name: "curl-8.0.1-11.80.1.aarch64",
                        product: {
                           name: "curl-8.0.1-11.80.1.aarch64",
                           product_id: "curl-8.0.1-11.80.1.aarch64",
                        },
                     },
                     {
                        category: "product_version",
                        name: "libcurl-devel-8.0.1-11.80.1.aarch64",
                        product: {
                           name: "libcurl-devel-8.0.1-11.80.1.aarch64",
                           product_id: "libcurl-devel-8.0.1-11.80.1.aarch64",
                        },
                     },
                     {
                        category: "product_version",
                        name: "libcurl4-8.0.1-11.80.1.aarch64",
                        product: {
                           name: "libcurl4-8.0.1-11.80.1.aarch64",
                           product_id: "libcurl4-8.0.1-11.80.1.aarch64",
                        },
                     },
                  ],
                  category: "architecture",
                  name: "aarch64",
               },
               {
                  branches: [
                     {
                        category: "product_version",
                        name: "libcurl-devel-64bit-8.0.1-11.80.1.aarch64_ilp32",
                        product: {
                           name: "libcurl-devel-64bit-8.0.1-11.80.1.aarch64_ilp32",
                           product_id: "libcurl-devel-64bit-8.0.1-11.80.1.aarch64_ilp32",
                        },
                     },
                     {
                        category: "product_version",
                        name: "libcurl4-64bit-8.0.1-11.80.1.aarch64_ilp32",
                        product: {
                           name: "libcurl4-64bit-8.0.1-11.80.1.aarch64_ilp32",
                           product_id: "libcurl4-64bit-8.0.1-11.80.1.aarch64_ilp32",
                        },
                     },
                  ],
                  category: "architecture",
                  name: "aarch64_ilp32",
               },
               {
                  branches: [
                     {
                        category: "product_version",
                        name: "curl-8.0.1-11.80.1.i586",
                        product: {
                           name: "curl-8.0.1-11.80.1.i586",
                           product_id: "curl-8.0.1-11.80.1.i586",
                        },
                     },
                     {
                        category: "product_version",
                        name: "libcurl-devel-8.0.1-11.80.1.i586",
                        product: {
                           name: "libcurl-devel-8.0.1-11.80.1.i586",
                           product_id: "libcurl-devel-8.0.1-11.80.1.i586",
                        },
                     },
                     {
                        category: "product_version",
                        name: "libcurl4-8.0.1-11.80.1.i586",
                        product: {
                           name: "libcurl4-8.0.1-11.80.1.i586",
                           product_id: "libcurl4-8.0.1-11.80.1.i586",
                        },
                     },
                  ],
                  category: "architecture",
                  name: "i586",
               },
               {
                  branches: [
                     {
                        category: "product_version",
                        name: "curl-8.0.1-11.80.1.ppc64le",
                        product: {
                           name: "curl-8.0.1-11.80.1.ppc64le",
                           product_id: "curl-8.0.1-11.80.1.ppc64le",
                        },
                     },
                     {
                        category: "product_version",
                        name: "libcurl-devel-8.0.1-11.80.1.ppc64le",
                        product: {
                           name: "libcurl-devel-8.0.1-11.80.1.ppc64le",
                           product_id: "libcurl-devel-8.0.1-11.80.1.ppc64le",
                        },
                     },
                     {
                        category: "product_version",
                        name: "libcurl4-8.0.1-11.80.1.ppc64le",
                        product: {
                           name: "libcurl4-8.0.1-11.80.1.ppc64le",
                           product_id: "libcurl4-8.0.1-11.80.1.ppc64le",
                        },
                     },
                  ],
                  category: "architecture",
                  name: "ppc64le",
               },
               {
                  branches: [
                     {
                        category: "product_version",
                        name: "curl-8.0.1-11.80.1.s390",
                        product: {
                           name: "curl-8.0.1-11.80.1.s390",
                           product_id: "curl-8.0.1-11.80.1.s390",
                        },
                     },
                     {
                        category: "product_version",
                        name: "libcurl-devel-8.0.1-11.80.1.s390",
                        product: {
                           name: "libcurl-devel-8.0.1-11.80.1.s390",
                           product_id: "libcurl-devel-8.0.1-11.80.1.s390",
                        },
                     },
                     {
                        category: "product_version",
                        name: "libcurl4-8.0.1-11.80.1.s390",
                        product: {
                           name: "libcurl4-8.0.1-11.80.1.s390",
                           product_id: "libcurl4-8.0.1-11.80.1.s390",
                        },
                     },
                  ],
                  category: "architecture",
                  name: "s390",
               },
               {
                  branches: [
                     {
                        category: "product_version",
                        name: "curl-8.0.1-11.80.1.s390x",
                        product: {
                           name: "curl-8.0.1-11.80.1.s390x",
                           product_id: "curl-8.0.1-11.80.1.s390x",
                        },
                     },
                     {
                        category: "product_version",
                        name: "libcurl-devel-8.0.1-11.80.1.s390x",
                        product: {
                           name: "libcurl-devel-8.0.1-11.80.1.s390x",
                           product_id: "libcurl-devel-8.0.1-11.80.1.s390x",
                        },
                     },
                     {
                        category: "product_version",
                        name: "libcurl-devel-32bit-8.0.1-11.80.1.s390x",
                        product: {
                           name: "libcurl-devel-32bit-8.0.1-11.80.1.s390x",
                           product_id: "libcurl-devel-32bit-8.0.1-11.80.1.s390x",
                        },
                     },
                     {
                        category: "product_version",
                        name: "libcurl4-8.0.1-11.80.1.s390x",
                        product: {
                           name: "libcurl4-8.0.1-11.80.1.s390x",
                           product_id: "libcurl4-8.0.1-11.80.1.s390x",
                        },
                     },
                     {
                        category: "product_version",
                        name: "libcurl4-32bit-8.0.1-11.80.1.s390x",
                        product: {
                           name: "libcurl4-32bit-8.0.1-11.80.1.s390x",
                           product_id: "libcurl4-32bit-8.0.1-11.80.1.s390x",
                        },
                     },
                  ],
                  category: "architecture",
                  name: "s390x",
               },
               {
                  branches: [
                     {
                        category: "product_version",
                        name: "curl-8.0.1-11.80.1.x86_64",
                        product: {
                           name: "curl-8.0.1-11.80.1.x86_64",
                           product_id: "curl-8.0.1-11.80.1.x86_64",
                        },
                     },
                     {
                        category: "product_version",
                        name: "libcurl-devel-8.0.1-11.80.1.x86_64",
                        product: {
                           name: "libcurl-devel-8.0.1-11.80.1.x86_64",
                           product_id: "libcurl-devel-8.0.1-11.80.1.x86_64",
                        },
                     },
                     {
                        category: "product_version",
                        name: "libcurl-devel-32bit-8.0.1-11.80.1.x86_64",
                        product: {
                           name: "libcurl-devel-32bit-8.0.1-11.80.1.x86_64",
                           product_id: "libcurl-devel-32bit-8.0.1-11.80.1.x86_64",
                        },
                     },
                     {
                        category: "product_version",
                        name: "libcurl4-8.0.1-11.80.1.x86_64",
                        product: {
                           name: "libcurl4-8.0.1-11.80.1.x86_64",
                           product_id: "libcurl4-8.0.1-11.80.1.x86_64",
                        },
                     },
                     {
                        category: "product_version",
                        name: "libcurl4-32bit-8.0.1-11.80.1.x86_64",
                        product: {
                           name: "libcurl4-32bit-8.0.1-11.80.1.x86_64",
                           product_id: "libcurl4-32bit-8.0.1-11.80.1.x86_64",
                        },
                     },
                  ],
                  category: "architecture",
                  name: "x86_64",
               },
               {
                  branches: [
                     {
                        category: "product_name",
                        name: "SUSE Linux Enterprise Software Development Kit 12 SP5",
                        product: {
                           name: "SUSE Linux Enterprise Software Development Kit 12 SP5",
                           product_id: "SUSE Linux Enterprise Software Development Kit 12 SP5",
                           product_identification_helper: {
                              cpe: "cpe:/o:suse:sle-sdk:12:sp5",
                           },
                        },
                     },
                     {
                        category: "product_name",
                        name: "SUSE Linux Enterprise Server 12 SP5",
                        product: {
                           name: "SUSE Linux Enterprise Server 12 SP5",
                           product_id: "SUSE Linux Enterprise Server 12 SP5",
                           product_identification_helper: {
                              cpe: "cpe:/o:suse:sles:12:sp5",
                           },
                        },
                     },
                     {
                        category: "product_name",
                        name: "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
                        product: {
                           name: "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
                           product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
                           product_identification_helper: {
                              cpe: "cpe:/o:suse:sles_sap:12:sp5",
                           },
                        },
                     },
                  ],
                  category: "product_family",
                  name: "SUSE Linux Enterprise",
               },
            ],
            category: "vendor",
            name: "SUSE",
         },
      ],
      relationships: [
         {
            category: "default_component_of",
            full_product_name: {
               name: "libcurl-devel-8.0.1-11.80.1.aarch64 as component of SUSE Linux Enterprise Software Development Kit 12 SP5",
               product_id: "SUSE Linux Enterprise Software Development Kit 12 SP5:libcurl-devel-8.0.1-11.80.1.aarch64",
            },
            product_reference: "libcurl-devel-8.0.1-11.80.1.aarch64",
            relates_to_product_reference: "SUSE Linux Enterprise Software Development Kit 12 SP5",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "libcurl-devel-8.0.1-11.80.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP5",
               product_id: "SUSE Linux Enterprise Software Development Kit 12 SP5:libcurl-devel-8.0.1-11.80.1.ppc64le",
            },
            product_reference: "libcurl-devel-8.0.1-11.80.1.ppc64le",
            relates_to_product_reference: "SUSE Linux Enterprise Software Development Kit 12 SP5",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "libcurl-devel-8.0.1-11.80.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP5",
               product_id: "SUSE Linux Enterprise Software Development Kit 12 SP5:libcurl-devel-8.0.1-11.80.1.s390x",
            },
            product_reference: "libcurl-devel-8.0.1-11.80.1.s390x",
            relates_to_product_reference: "SUSE Linux Enterprise Software Development Kit 12 SP5",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "libcurl-devel-8.0.1-11.80.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP5",
               product_id: "SUSE Linux Enterprise Software Development Kit 12 SP5:libcurl-devel-8.0.1-11.80.1.x86_64",
            },
            product_reference: "libcurl-devel-8.0.1-11.80.1.x86_64",
            relates_to_product_reference: "SUSE Linux Enterprise Software Development Kit 12 SP5",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "curl-8.0.1-11.80.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5",
               product_id: "SUSE Linux Enterprise Server 12 SP5:curl-8.0.1-11.80.1.aarch64",
            },
            product_reference: "curl-8.0.1-11.80.1.aarch64",
            relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP5",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "curl-8.0.1-11.80.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5",
               product_id: "SUSE Linux Enterprise Server 12 SP5:curl-8.0.1-11.80.1.ppc64le",
            },
            product_reference: "curl-8.0.1-11.80.1.ppc64le",
            relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP5",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "curl-8.0.1-11.80.1.s390x as component of SUSE Linux Enterprise Server 12 SP5",
               product_id: "SUSE Linux Enterprise Server 12 SP5:curl-8.0.1-11.80.1.s390x",
            },
            product_reference: "curl-8.0.1-11.80.1.s390x",
            relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP5",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "curl-8.0.1-11.80.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5",
               product_id: "SUSE Linux Enterprise Server 12 SP5:curl-8.0.1-11.80.1.x86_64",
            },
            product_reference: "curl-8.0.1-11.80.1.x86_64",
            relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP5",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "libcurl4-8.0.1-11.80.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5",
               product_id: "SUSE Linux Enterprise Server 12 SP5:libcurl4-8.0.1-11.80.1.aarch64",
            },
            product_reference: "libcurl4-8.0.1-11.80.1.aarch64",
            relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP5",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "libcurl4-8.0.1-11.80.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5",
               product_id: "SUSE Linux Enterprise Server 12 SP5:libcurl4-8.0.1-11.80.1.ppc64le",
            },
            product_reference: "libcurl4-8.0.1-11.80.1.ppc64le",
            relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP5",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "libcurl4-8.0.1-11.80.1.s390x as component of SUSE Linux Enterprise Server 12 SP5",
               product_id: "SUSE Linux Enterprise Server 12 SP5:libcurl4-8.0.1-11.80.1.s390x",
            },
            product_reference: "libcurl4-8.0.1-11.80.1.s390x",
            relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP5",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "libcurl4-8.0.1-11.80.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5",
               product_id: "SUSE Linux Enterprise Server 12 SP5:libcurl4-8.0.1-11.80.1.x86_64",
            },
            product_reference: "libcurl4-8.0.1-11.80.1.x86_64",
            relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP5",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "libcurl4-32bit-8.0.1-11.80.1.s390x as component of SUSE Linux Enterprise Server 12 SP5",
               product_id: "SUSE Linux Enterprise Server 12 SP5:libcurl4-32bit-8.0.1-11.80.1.s390x",
            },
            product_reference: "libcurl4-32bit-8.0.1-11.80.1.s390x",
            relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP5",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "libcurl4-32bit-8.0.1-11.80.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5",
               product_id: "SUSE Linux Enterprise Server 12 SP5:libcurl4-32bit-8.0.1-11.80.1.x86_64",
            },
            product_reference: "libcurl4-32bit-8.0.1-11.80.1.x86_64",
            relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP5",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "curl-8.0.1-11.80.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
               product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP5:curl-8.0.1-11.80.1.aarch64",
            },
            product_reference: "curl-8.0.1-11.80.1.aarch64",
            relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "curl-8.0.1-11.80.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
               product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP5:curl-8.0.1-11.80.1.ppc64le",
            },
            product_reference: "curl-8.0.1-11.80.1.ppc64le",
            relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "curl-8.0.1-11.80.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
               product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP5:curl-8.0.1-11.80.1.s390x",
            },
            product_reference: "curl-8.0.1-11.80.1.s390x",
            relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "curl-8.0.1-11.80.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
               product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP5:curl-8.0.1-11.80.1.x86_64",
            },
            product_reference: "curl-8.0.1-11.80.1.x86_64",
            relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "libcurl4-8.0.1-11.80.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
               product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libcurl4-8.0.1-11.80.1.aarch64",
            },
            product_reference: "libcurl4-8.0.1-11.80.1.aarch64",
            relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "libcurl4-8.0.1-11.80.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
               product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libcurl4-8.0.1-11.80.1.ppc64le",
            },
            product_reference: "libcurl4-8.0.1-11.80.1.ppc64le",
            relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "libcurl4-8.0.1-11.80.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
               product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libcurl4-8.0.1-11.80.1.s390x",
            },
            product_reference: "libcurl4-8.0.1-11.80.1.s390x",
            relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "libcurl4-8.0.1-11.80.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
               product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libcurl4-8.0.1-11.80.1.x86_64",
            },
            product_reference: "libcurl4-8.0.1-11.80.1.x86_64",
            relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "libcurl4-32bit-8.0.1-11.80.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
               product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libcurl4-32bit-8.0.1-11.80.1.s390x",
            },
            product_reference: "libcurl4-32bit-8.0.1-11.80.1.s390x",
            relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
         },
         {
            category: "default_component_of",
            full_product_name: {
               name: "libcurl4-32bit-8.0.1-11.80.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
               product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libcurl4-32bit-8.0.1-11.80.1.x86_64",
            },
            product_reference: "libcurl4-32bit-8.0.1-11.80.1.x86_64",
            relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
         },
      ],
   },
   vulnerabilities: [
      {
         cve: "CVE-2023-46218",
         ids: [
            {
               system_name: "SUSE CVE Page",
               text: "https://www.suse.com/security/cve/CVE-2023-46218",
            },
         ],
         notes: [
            {
               category: "general",
               text: "This flaw allows a malicious HTTP server to set \"super cookies\" in curl that\nare then passed back to more origins than what is otherwise allowed or\npossible. This allows a site to set cookies that then would get sent to\ndifferent and unrelated sites and domains.\n\nIt could do this by exploiting a mixed case flaw in curl's function that\nverifies a given cookie domain against the Public Suffix List (PSL). For\nexample a cookie could be set with `domain=co.UK` when the URL used a lower\ncase hostname `curl.co.uk`, even though `co.uk` is listed as a PSL domain.\n",
               title: "CVE description",
            },
         ],
         product_status: {
            recommended: [
               "SUSE Linux Enterprise Server 12 SP5:curl-8.0.1-11.80.1.aarch64",
               "SUSE Linux Enterprise Server 12 SP5:curl-8.0.1-11.80.1.ppc64le",
               "SUSE Linux Enterprise Server 12 SP5:curl-8.0.1-11.80.1.s390x",
               "SUSE Linux Enterprise Server 12 SP5:curl-8.0.1-11.80.1.x86_64",
               "SUSE Linux Enterprise Server 12 SP5:libcurl4-32bit-8.0.1-11.80.1.s390x",
               "SUSE Linux Enterprise Server 12 SP5:libcurl4-32bit-8.0.1-11.80.1.x86_64",
               "SUSE Linux Enterprise Server 12 SP5:libcurl4-8.0.1-11.80.1.aarch64",
               "SUSE Linux Enterprise Server 12 SP5:libcurl4-8.0.1-11.80.1.ppc64le",
               "SUSE Linux Enterprise Server 12 SP5:libcurl4-8.0.1-11.80.1.s390x",
               "SUSE Linux Enterprise Server 12 SP5:libcurl4-8.0.1-11.80.1.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP5:curl-8.0.1-11.80.1.aarch64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP5:curl-8.0.1-11.80.1.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP5:curl-8.0.1-11.80.1.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP5:curl-8.0.1-11.80.1.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libcurl4-32bit-8.0.1-11.80.1.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libcurl4-32bit-8.0.1-11.80.1.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libcurl4-8.0.1-11.80.1.aarch64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libcurl4-8.0.1-11.80.1.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libcurl4-8.0.1-11.80.1.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libcurl4-8.0.1-11.80.1.x86_64",
               "SUSE Linux Enterprise Software Development Kit 12 SP5:libcurl-devel-8.0.1-11.80.1.aarch64",
               "SUSE Linux Enterprise Software Development Kit 12 SP5:libcurl-devel-8.0.1-11.80.1.ppc64le",
               "SUSE Linux Enterprise Software Development Kit 12 SP5:libcurl-devel-8.0.1-11.80.1.s390x",
               "SUSE Linux Enterprise Software Development Kit 12 SP5:libcurl-devel-8.0.1-11.80.1.x86_64",
            ],
         },
         references: [
            {
               category: "external",
               summary: "CVE-2023-46218",
               url: "https://www.suse.com/security/cve/CVE-2023-46218",
            },
            {
               category: "external",
               summary: "SUSE Bug 1217573 for CVE-2023-46218",
               url: "https://bugzilla.suse.com/1217573",
            },
         ],
         remediations: [
            {
               category: "vendor_fix",
               details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
               product_ids: [
                  "SUSE Linux Enterprise Server 12 SP5:curl-8.0.1-11.80.1.aarch64",
                  "SUSE Linux Enterprise Server 12 SP5:curl-8.0.1-11.80.1.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP5:curl-8.0.1-11.80.1.s390x",
                  "SUSE Linux Enterprise Server 12 SP5:curl-8.0.1-11.80.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP5:libcurl4-32bit-8.0.1-11.80.1.s390x",
                  "SUSE Linux Enterprise Server 12 SP5:libcurl4-32bit-8.0.1-11.80.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP5:libcurl4-8.0.1-11.80.1.aarch64",
                  "SUSE Linux Enterprise Server 12 SP5:libcurl4-8.0.1-11.80.1.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP5:libcurl4-8.0.1-11.80.1.s390x",
                  "SUSE Linux Enterprise Server 12 SP5:libcurl4-8.0.1-11.80.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP5:curl-8.0.1-11.80.1.aarch64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP5:curl-8.0.1-11.80.1.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP5:curl-8.0.1-11.80.1.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP5:curl-8.0.1-11.80.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libcurl4-32bit-8.0.1-11.80.1.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libcurl4-32bit-8.0.1-11.80.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libcurl4-8.0.1-11.80.1.aarch64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libcurl4-8.0.1-11.80.1.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libcurl4-8.0.1-11.80.1.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libcurl4-8.0.1-11.80.1.x86_64",
                  "SUSE Linux Enterprise Software Development Kit 12 SP5:libcurl-devel-8.0.1-11.80.1.aarch64",
                  "SUSE Linux Enterprise Software Development Kit 12 SP5:libcurl-devel-8.0.1-11.80.1.ppc64le",
                  "SUSE Linux Enterprise Software Development Kit 12 SP5:libcurl-devel-8.0.1-11.80.1.s390x",
                  "SUSE Linux Enterprise Software Development Kit 12 SP5:libcurl-devel-8.0.1-11.80.1.x86_64",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 4.2,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N",
                  version: "3.1",
               },
               products: [
                  "SUSE Linux Enterprise Server 12 SP5:curl-8.0.1-11.80.1.aarch64",
                  "SUSE Linux Enterprise Server 12 SP5:curl-8.0.1-11.80.1.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP5:curl-8.0.1-11.80.1.s390x",
                  "SUSE Linux Enterprise Server 12 SP5:curl-8.0.1-11.80.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP5:libcurl4-32bit-8.0.1-11.80.1.s390x",
                  "SUSE Linux Enterprise Server 12 SP5:libcurl4-32bit-8.0.1-11.80.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP5:libcurl4-8.0.1-11.80.1.aarch64",
                  "SUSE Linux Enterprise Server 12 SP5:libcurl4-8.0.1-11.80.1.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP5:libcurl4-8.0.1-11.80.1.s390x",
                  "SUSE Linux Enterprise Server 12 SP5:libcurl4-8.0.1-11.80.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP5:curl-8.0.1-11.80.1.aarch64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP5:curl-8.0.1-11.80.1.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP5:curl-8.0.1-11.80.1.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP5:curl-8.0.1-11.80.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libcurl4-32bit-8.0.1-11.80.1.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libcurl4-32bit-8.0.1-11.80.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libcurl4-8.0.1-11.80.1.aarch64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libcurl4-8.0.1-11.80.1.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libcurl4-8.0.1-11.80.1.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libcurl4-8.0.1-11.80.1.x86_64",
                  "SUSE Linux Enterprise Software Development Kit 12 SP5:libcurl-devel-8.0.1-11.80.1.aarch64",
                  "SUSE Linux Enterprise Software Development Kit 12 SP5:libcurl-devel-8.0.1-11.80.1.ppc64le",
                  "SUSE Linux Enterprise Software Development Kit 12 SP5:libcurl-devel-8.0.1-11.80.1.s390x",
                  "SUSE Linux Enterprise Software Development Kit 12 SP5:libcurl-devel-8.0.1-11.80.1.x86_64",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               date: "2023-12-06T10:34:40Z",
               details: "moderate",
            },
         ],
         title: "CVE-2023-46218",
      },
      {
         cve: "CVE-2023-46219",
         ids: [
            {
               system_name: "SUSE CVE Page",
               text: "https://www.suse.com/security/cve/CVE-2023-46219",
            },
         ],
         notes: [
            {
               category: "general",
               text: "When saving HSTS data to an excessively long file name, curl could end up\nremoving all contents, making subsequent requests using that file unaware of\nthe HSTS status they should otherwise use.\n",
               title: "CVE description",
            },
         ],
         product_status: {
            recommended: [
               "SUSE Linux Enterprise Server 12 SP5:curl-8.0.1-11.80.1.aarch64",
               "SUSE Linux Enterprise Server 12 SP5:curl-8.0.1-11.80.1.ppc64le",
               "SUSE Linux Enterprise Server 12 SP5:curl-8.0.1-11.80.1.s390x",
               "SUSE Linux Enterprise Server 12 SP5:curl-8.0.1-11.80.1.x86_64",
               "SUSE Linux Enterprise Server 12 SP5:libcurl4-32bit-8.0.1-11.80.1.s390x",
               "SUSE Linux Enterprise Server 12 SP5:libcurl4-32bit-8.0.1-11.80.1.x86_64",
               "SUSE Linux Enterprise Server 12 SP5:libcurl4-8.0.1-11.80.1.aarch64",
               "SUSE Linux Enterprise Server 12 SP5:libcurl4-8.0.1-11.80.1.ppc64le",
               "SUSE Linux Enterprise Server 12 SP5:libcurl4-8.0.1-11.80.1.s390x",
               "SUSE Linux Enterprise Server 12 SP5:libcurl4-8.0.1-11.80.1.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP5:curl-8.0.1-11.80.1.aarch64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP5:curl-8.0.1-11.80.1.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP5:curl-8.0.1-11.80.1.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP5:curl-8.0.1-11.80.1.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libcurl4-32bit-8.0.1-11.80.1.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libcurl4-32bit-8.0.1-11.80.1.x86_64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libcurl4-8.0.1-11.80.1.aarch64",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libcurl4-8.0.1-11.80.1.ppc64le",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libcurl4-8.0.1-11.80.1.s390x",
               "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libcurl4-8.0.1-11.80.1.x86_64",
               "SUSE Linux Enterprise Software Development Kit 12 SP5:libcurl-devel-8.0.1-11.80.1.aarch64",
               "SUSE Linux Enterprise Software Development Kit 12 SP5:libcurl-devel-8.0.1-11.80.1.ppc64le",
               "SUSE Linux Enterprise Software Development Kit 12 SP5:libcurl-devel-8.0.1-11.80.1.s390x",
               "SUSE Linux Enterprise Software Development Kit 12 SP5:libcurl-devel-8.0.1-11.80.1.x86_64",
            ],
         },
         references: [
            {
               category: "external",
               summary: "CVE-2023-46219",
               url: "https://www.suse.com/security/cve/CVE-2023-46219",
            },
            {
               category: "external",
               summary: "SUSE Bug 1217574 for CVE-2023-46219",
               url: "https://bugzilla.suse.com/1217574",
            },
         ],
         remediations: [
            {
               category: "vendor_fix",
               details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
               product_ids: [
                  "SUSE Linux Enterprise Server 12 SP5:curl-8.0.1-11.80.1.aarch64",
                  "SUSE Linux Enterprise Server 12 SP5:curl-8.0.1-11.80.1.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP5:curl-8.0.1-11.80.1.s390x",
                  "SUSE Linux Enterprise Server 12 SP5:curl-8.0.1-11.80.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP5:libcurl4-32bit-8.0.1-11.80.1.s390x",
                  "SUSE Linux Enterprise Server 12 SP5:libcurl4-32bit-8.0.1-11.80.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP5:libcurl4-8.0.1-11.80.1.aarch64",
                  "SUSE Linux Enterprise Server 12 SP5:libcurl4-8.0.1-11.80.1.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP5:libcurl4-8.0.1-11.80.1.s390x",
                  "SUSE Linux Enterprise Server 12 SP5:libcurl4-8.0.1-11.80.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP5:curl-8.0.1-11.80.1.aarch64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP5:curl-8.0.1-11.80.1.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP5:curl-8.0.1-11.80.1.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP5:curl-8.0.1-11.80.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libcurl4-32bit-8.0.1-11.80.1.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libcurl4-32bit-8.0.1-11.80.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libcurl4-8.0.1-11.80.1.aarch64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libcurl4-8.0.1-11.80.1.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libcurl4-8.0.1-11.80.1.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libcurl4-8.0.1-11.80.1.x86_64",
                  "SUSE Linux Enterprise Software Development Kit 12 SP5:libcurl-devel-8.0.1-11.80.1.aarch64",
                  "SUSE Linux Enterprise Software Development Kit 12 SP5:libcurl-devel-8.0.1-11.80.1.ppc64le",
                  "SUSE Linux Enterprise Software Development Kit 12 SP5:libcurl-devel-8.0.1-11.80.1.s390x",
                  "SUSE Linux Enterprise Software Development Kit 12 SP5:libcurl-devel-8.0.1-11.80.1.x86_64",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  baseScore: 4,
                  baseSeverity: "MEDIUM",
                  vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
                  version: "3.1",
               },
               products: [
                  "SUSE Linux Enterprise Server 12 SP5:curl-8.0.1-11.80.1.aarch64",
                  "SUSE Linux Enterprise Server 12 SP5:curl-8.0.1-11.80.1.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP5:curl-8.0.1-11.80.1.s390x",
                  "SUSE Linux Enterprise Server 12 SP5:curl-8.0.1-11.80.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP5:libcurl4-32bit-8.0.1-11.80.1.s390x",
                  "SUSE Linux Enterprise Server 12 SP5:libcurl4-32bit-8.0.1-11.80.1.x86_64",
                  "SUSE Linux Enterprise Server 12 SP5:libcurl4-8.0.1-11.80.1.aarch64",
                  "SUSE Linux Enterprise Server 12 SP5:libcurl4-8.0.1-11.80.1.ppc64le",
                  "SUSE Linux Enterprise Server 12 SP5:libcurl4-8.0.1-11.80.1.s390x",
                  "SUSE Linux Enterprise Server 12 SP5:libcurl4-8.0.1-11.80.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP5:curl-8.0.1-11.80.1.aarch64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP5:curl-8.0.1-11.80.1.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP5:curl-8.0.1-11.80.1.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP5:curl-8.0.1-11.80.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libcurl4-32bit-8.0.1-11.80.1.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libcurl4-32bit-8.0.1-11.80.1.x86_64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libcurl4-8.0.1-11.80.1.aarch64",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libcurl4-8.0.1-11.80.1.ppc64le",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libcurl4-8.0.1-11.80.1.s390x",
                  "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libcurl4-8.0.1-11.80.1.x86_64",
                  "SUSE Linux Enterprise Software Development Kit 12 SP5:libcurl-devel-8.0.1-11.80.1.aarch64",
                  "SUSE Linux Enterprise Software Development Kit 12 SP5:libcurl-devel-8.0.1-11.80.1.ppc64le",
                  "SUSE Linux Enterprise Software Development Kit 12 SP5:libcurl-devel-8.0.1-11.80.1.s390x",
                  "SUSE Linux Enterprise Software Development Kit 12 SP5:libcurl-devel-8.0.1-11.80.1.x86_64",
               ],
            },
         ],
         threats: [
            {
               category: "impact",
               date: "2023-12-06T10:34:40Z",
               details: "low",
            },
         ],
         title: "CVE-2023-46219",
      },
   ],
}

cve-2023-46219

Vulnerability from cvelistv5

Published

2023-12-12 01:38

Modified

2025-02-13 17:14

Severity ?

Summary

When saving HSTS data to an excessively long file name, curl could end up removing all contents, making subsequent requests using that file unaware of the HSTS status they should otherwise use.

References

▼	URL	Tags
	https://hackerone.com/reports/2236133
	https://curl.se/docs/CVE-2023-46219.html
	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UOGXU25FMMT2X6UUITQ7EZZYMJ42YWWD/
	https://www.debian.org/security/2023/dsa-5587
	https://security.netapp.com/advisory/ntap-20240119-0007/

Impacted products

	Vendor	Product	Version
	curl	curl	Version: 8.4.0 ≤ 8.4.0

Show details on NVD website

JSON

To clipboard

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-02T20:37:40.116Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://hackerone.com/reports/2236133",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://curl.se/docs/CVE-2023-46219.html",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UOGXU25FMMT2X6UUITQ7EZZYMJ42YWWD/",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://www.debian.org/security/2023/dsa-5587",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://security.netapp.com/advisory/ntap-20240119-0007/",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "curl",
               vendor: "curl",
               versions: [
                  {
                     lessThanOrEqual: "8.4.0",
                     status: "affected",
                     version: "8.4.0",
                     versionType: "semver",
                  },
                  {
                     lessThan: "7.84.0",
                     status: "unaffected",
                     version: "7.84.0",
                     versionType: "semver",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "When saving HSTS data to an excessively long file name, curl could end up\nremoving all contents, making subsequent requests using that file unaware of\nthe HSTS status they should otherwise use.",
            },
         ],
         providerMetadata: {
            dateUpdated: "2024-01-19T16:06:29.344Z",
            orgId: "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
            shortName: "hackerone",
         },
         references: [
            {
               url: "https://hackerone.com/reports/2236133",
            },
            {
               url: "https://curl.se/docs/CVE-2023-46219.html",
            },
            {
               url: "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UOGXU25FMMT2X6UUITQ7EZZYMJ42YWWD/",
            },
            {
               url: "https://www.debian.org/security/2023/dsa-5587",
            },
            {
               url: "https://security.netapp.com/advisory/ntap-20240119-0007/",
            },
         ],
      },
   },
   cveMetadata: {
      assignerOrgId: "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
      assignerShortName: "hackerone",
      cveId: "CVE-2023-46219",
      datePublished: "2023-12-12T01:38:41.376Z",
      dateReserved: "2023-10-19T01:00:12.854Z",
      dateUpdated: "2025-02-13T17:14:19.963Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2023-46218

Vulnerability from cvelistv5

Published

2023-12-07 01:10

Modified

2025-02-13 17:14

Severity ?

Summary

This flaw allows a malicious HTTP server to set "super cookies" in curl that are then passed back to more origins than what is otherwise allowed or possible. This allows a site to set cookies that then would get sent to different and unrelated sites and domains. It could do this by exploiting a mixed case flaw in curl's function that verifies a given cookie domain against the Public Suffix List (PSL). For example a cookie could be set with `domain=co.UK` when the URL used a lower case hostname `curl.co.uk`, even though `co.uk` is listed as a PSL domain.

References

▼	URL	Tags
	https://hackerone.com/reports/2212193
	https://curl.se/docs/CVE-2023-46218.html
	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3ZX3VW67N4ACRAPMV2QS2LVYGD7H2MVE/
	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UOGXU25FMMT2X6UUITQ7EZZYMJ42YWWD/
	https://lists.debian.org/debian-lts-announce/2023/12/msg00015.html
	https://www.debian.org/security/2023/dsa-5587
	https://security.netapp.com/advisory/ntap-20240125-0007/

Impacted products

	Vendor	Product	Version
	curl	curl	Version: 8.4.0 ≤ 8.4.0

Show details on NVD website

JSON

To clipboard

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-02T20:37:40.148Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://hackerone.com/reports/2212193",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://curl.se/docs/CVE-2023-46218.html",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3ZX3VW67N4ACRAPMV2QS2LVYGD7H2MVE/",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UOGXU25FMMT2X6UUITQ7EZZYMJ42YWWD/",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://lists.debian.org/debian-lts-announce/2023/12/msg00015.html",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://www.debian.org/security/2023/dsa-5587",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://security.netapp.com/advisory/ntap-20240125-0007/",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "curl",
               vendor: "curl",
               versions: [
                  {
                     lessThanOrEqual: "8.4.0",
                     status: "affected",
                     version: "8.4.0",
                     versionType: "semver",
                  },
                  {
                     lessThan: "7.46.0",
                     status: "unaffected",
                     version: "7.46.0",
                     versionType: "semver",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "This flaw allows a malicious HTTP server to set \"super cookies\" in curl that\nare then passed back to more origins than what is otherwise allowed or\npossible. This allows a site to set cookies that then would get sent to\ndifferent and unrelated sites and domains.\n\nIt could do this by exploiting a mixed case flaw in curl's function that\nverifies a given cookie domain against the Public Suffix List (PSL). For\nexample a cookie could be set with `domain=co.UK` when the URL used a lower\ncase hostname `curl.co.uk`, even though `co.uk` is listed as a PSL domain.",
            },
         ],
         providerMetadata: {
            dateUpdated: "2024-01-25T14:06:39.330Z",
            orgId: "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
            shortName: "hackerone",
         },
         references: [
            {
               url: "https://hackerone.com/reports/2212193",
            },
            {
               url: "https://curl.se/docs/CVE-2023-46218.html",
            },
            {
               url: "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3ZX3VW67N4ACRAPMV2QS2LVYGD7H2MVE/",
            },
            {
               url: "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UOGXU25FMMT2X6UUITQ7EZZYMJ42YWWD/",
            },
            {
               url: "https://lists.debian.org/debian-lts-announce/2023/12/msg00015.html",
            },
            {
               url: "https://www.debian.org/security/2023/dsa-5587",
            },
            {
               url: "https://security.netapp.com/advisory/ntap-20240125-0007/",
            },
         ],
      },
   },
   cveMetadata: {
      assignerOrgId: "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
      assignerShortName: "hackerone",
      cveId: "CVE-2023-46218",
      datePublished: "2023-12-07T01:10:34.846Z",
      dateReserved: "2023-10-19T01:00:12.854Z",
      dateUpdated: "2025-02-13T17:14:19.396Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

Vulnerability from csaf_suse

cve-2023-46219

Vulnerability from cvelistv5

cve-2023-46218

Vulnerability from cvelistv5

Tags

Sightings

Nomenclature