CURL-CVE-2024-8096

Source
https://curl.se/docs/CVE-2024-8096.html
Import Source
https://curl.se/docs/CURL-CVE-2024-8096.json
JSON Data
https://api.test.osv.dev/v1/vulns/CURL-CVE-2024-8096
Aliases
Published
2024-09-11T08:00:00Z
Modified
2024-10-24T18:05:41Z
Summary
OCSP stapling bypass with GnuTLS
Details

When curl is told to use the Certificate Status Request TLS extension, often referred to as OCSP stapling, to verify that the server certificate is valid, it might fail to detect some OCSP problems and instead wrongly consider the response as fine.

If the returned status reports another error than "revoked" (like for example "unauthorized") it is not treated as a bad certificate.

Database specific
{
    "CWE": {
        "id": "CWE-295",
        "desc": "Improper Certificate Validation"
    },
    "award": {
        "amount": "2540",
        "currency": "USD"
    },
    "URL": "https://curl.se/docs/CVE-2024-8096.json",
    "package": "curl",
    "severity": "Medium",
    "issue": "https://hackerone.com/reports/2669852",
    "www": "https://curl.se/docs/CVE-2024-8096.html",
    "last_affected": "8.9.1"
}
References
Credits
    • Hiroki Kurosawa - FINDER
    • Daniel Stenberg - REMEDIATION_DEVELOPER

Affected packages

Git / github.com/curl/curl.git

Affected ranges

Type
SEMVER
Events
Introduced
7.41.0
Fixed
8.10.0
Type
GIT
Repo
https://github.com/curl/curl.git
Events

Affected versions

7.*

7.41.0
7.42.0
7.42.1
7.43.0
7.44.0
7.45.0
7.46.0
7.47.0
7.47.1
7.48.0
7.49.0
7.49.1
7.50.0
7.50.1
7.50.2
7.50.3
7.51.0
7.52.0
7.52.1
7.53.0
7.53.1
7.54.0
7.54.1
7.55.0
7.55.1
7.56.0
7.56.1
7.57.0
7.58.0
7.59.0
7.60.0
7.61.0
7.61.1
7.62.0
7.63.0
7.64.0
7.64.1
7.65.0
7.65.1
7.65.2
7.65.3
7.66.0
7.67.0
7.68.0
7.69.0
7.69.1
7.70.0
7.71.0
7.71.1
7.72.0
7.73.0
7.74.0
7.75.0
7.76.0
7.76.1
7.77.0
7.78.0
7.79.0
7.79.1
7.80.0
7.81.0
7.82.0
7.83.0
7.83.1
7.84.0
7.85.0
7.86.0
7.87.0
7.88.0
7.88.1

8.*

8.0.0
8.0.1
8.1.0
8.1.1
8.1.2
8.2.0
8.2.1
8.3.0
8.4.0
8.5.0
8.6.0
8.7.0
8.7.1
8.8.0
8.9.0
8.9.1