Hacking News Two High-Risk Security Flaws Discovered in Curl Library - New Patches Released

Hacking News Two High-Risk Security Flaws Discovered in Curl Library - New Patches Released - Printable Version

+- (https://hackmyride.com/forum)
+-- Forum: Automotive Hacking (https://hackmyride.com/forum/forumdisplay.php?fid=211)
+--- Forum: News (https://hackmyride.com/forum/forumdisplay.php?fid=278)
+---- Forum: The Hacker News (https://hackmyride.com/forum/forumdisplay.php?fid=279)
+---- Thread: Hacking News Two High-Risk Security Flaws Discovered in Curl Library - New Patches Released (/showthread.php?tid=8904)

Two High-Risk Security Flaws Discovered in Curl Library - New Patches Released - The Hacker News - 10-12-2023

Two High-Risk Security Flaws Discovered in Curl Library - New Patches Released

Patches have been released for two security flaws impacting the Curl data transfer library, the most severe of which could potentially result in code execution.
The list of vulnerabilities is as follows -

CVE-2023-38545 (CVSS score: 7.5) - SOCKS5 heap-based buffer overflow vulnerability
CVE-2023-38546 (CVSS score: 5.0) - Cookie injection with none file

CVE-2023-38545 is the more severe of the

https://thehackernews.com/2023/10/two-high-risk-security-flaws-discovered.html