CURL-CVE-2019-5435
- Source
- https://curl.se/docs/CVE-2019-5435.html
- Import Source
- https://curl.se/docs/CURL-CVE-2019-5435.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CURL-CVE-2019-5435
- Aliases
- Published
- 2019-05-22T08:00:00Z
- Modified
- 2024-01-16T03:42:47.121741Z
- Summary
- Integer overflows in URL parser
- Details
-
libcurl contains two integer overflows in the
curl_url_set()function that if triggered, can lead to a too small buffer allocation and a subsequent heap buffer overflow.The flaws only exist on 32 bit architectures and require excessive string input lengths.
- Database specific
{ "www": "https://curl.se/docs/CVE-2019-5435.html", "issue": "https://hackerone.com/reports/547630", "affects": "both", "award": { "currency": "USD", "amount": "150" }, "package": "curl", "last_affected": "7.64.1", "severity": "Low", "URL": "https://curl.se/docs/CVE-2019-5435.json", "CWE": { "desc": "Incorrect Calculation of Buffer Size", "id": "CWE-131" } }- References
-
- Credits
-
-
- Wenchao Li - FINDER
-
- Daniel Stenberg - REMEDIATION_DEVELOPER
-
Affected packages
Git / github.com/curl/curl.git
Affected ranges
- Type
- SEMVER
- Events
-
Introduced7.62.0Fixed7.65.0
- Type
- GIT
- Repo
- https://github.com/curl/curl.git
- Events
Database specific
{
"vanir_signatures": [
{
"digest": {
"length": 4035.0,
"function_hash": "17111116627931576603258458591224325768"
},
"source": "https://github.com/curl/curl.git/commit/5fc28510a4664f46459d9a40187d81cc08571e60",
"signature_version": "v1",
"id": "CURL-CVE-2019-5435-3d01b602",
"target": {
"file": "lib/urlapi.c",
"function": "seturl"
},
"signature_type": "Function",
"deprecated": false
},
{
"digest": {
"length": 211.0,
"function_hash": "280153927549616949673385639853676244803"
},
"source": "https://github.com/curl/curl.git/commit/5fc28510a4664f46459d9a40187d81cc08571e60",
"signature_version": "v1",
"id": "CURL-CVE-2019-5435-5f8b7610",
"target": {
"file": "lib/setopt.c",
"function": "Curl_setstropt"
},
"signature_type": "Function",
"deprecated": false
},
{
"digest": {
"line_hashes": [
"78554863258954956521340357035373578254",
"330171497022742387851485872771399744851",
"262309584276055853606192772635916031948",
"198755321502617151848312325515365738517",
"14806714711641928770362352425253746313",
"195759364791479024806308952934440236640",
"167983348701526822267281029193914267877"
],
"threshold": 0.9
},
"source": "https://github.com/curl/curl.git/commit/5fc28510a4664f46459d9a40187d81cc08571e60",
"signature_version": "v1",
"id": "CURL-CVE-2019-5435-8089b0e0",
"target": {
"file": "lib/urlapi.c"
},
"signature_type": "Line",
"deprecated": false
},
{
"digest": {
"length": 4780.0,
"function_hash": "205059320973945546455665219084683290377"
},
"source": "https://github.com/curl/curl.git/commit/5fc28510a4664f46459d9a40187d81cc08571e60",
"signature_version": "v1",
"id": "CURL-CVE-2019-5435-84d699b1",
"target": {
"file": "lib/urlapi.c",
"function": "curl_url_set"
},
"signature_type": "Function",
"deprecated": false
},
{
"digest": {
"line_hashes": [
"52391275176403602765405931494557147854",
"106635035286558634403921500768056542339",
"288242135262122401445381518083277879641"
],
"threshold": 0.9
},
"source": "https://github.com/curl/curl.git/commit/5fc28510a4664f46459d9a40187d81cc08571e60",
"signature_version": "v1",
"id": "CURL-CVE-2019-5435-ce5daf70",
"target": {
"file": "lib/setopt.c"
},
"signature_type": "Line",
"deprecated": false
}
]
}