CURL-CVE-2024-0853

See a problem?
Please try reporting it to the source first.

Source

https://curl.se/docs/CVE-2024-0853.html

Import Source

https://curl.se/docs/CURL-CVE-2024-0853.json

JSON Data

https://api.test.osv.dev/v1/vulns/CURL-CVE-2024-0853

Aliases

CVE-2024-0853

Published

2024-01-31T08:00:00Z

Modified

2024-09-11T06:13:45.681729Z

Summary

OCSP verification bypass with TLS session reuse

Details

curl inadvertently kept the SSL session ID for connections in its cache even when the verify status (OCSP stapling) test failed. A subsequent transfer to the same hostname could then succeed if the session ID cache was still fresh, which then skipped the verify status check.

Database specific

{
    "CWE": {
        "id": "CWE-299",
        "desc": "Improper Check for Certificate Revocation"
    },
    "award": {
        "amount": "540",
        "currency": "USD"
    },
    "URL": "https://curl.se/docs/CVE-2024-0853.json",
    "package": "curl",
    "severity": "Low",
    "issue": "https://hackerone.com/reports/2298922",
    "www": "https://curl.se/docs/CVE-2024-0853.html",
    "last_affected": "8.5.0"
}

References

Credits

- Hiroki Kurosawa - FINDER
- Daniel Stenberg - REMEDIATION_DEVELOPER

Affected packages

Git / github.com/curl/curl.git

Affected ranges

Type: SEMVER
Events: Introduced

8.5.0

Fixed

8.6.0

Type: GIT
Repo: https://github.com/curl/curl.git
Events: Introduced

395365ad2d9a6c3f1a35d5e268a6af2824129832

Fixed

c28e9478cb2548848eca9b765d0d409bfb18668c

Affected versions

8.*

8.5.0