all InfoSec news
CVE-2023-38545 (libcurl)
Oct. 18, 2023, 4:15 a.m. |
National Vulnerability Database web.nvd.nist.gov
handshake.
When curl is asked to pass along the host name to the SOCKS5 proxy to allow
that to resolve the address instead of it getting done by curl itself, the
maximum length that host name can be is 255 bytes.
If the host name is detected to be longer, curl switches to local name
resolving and instead passes on the resolved address only. Due to this …
address buffer curl cve cve-2023-38545 flaw handshake host length libcurl name overflow pass proxy socks5 socks5 proxy
More from web.nvd.nist.gov / National Vulnerability Database
CVE-2023-21380 (android)
6 months ago |
web.nvd.nist.gov
CVE-2023-21381 (android)
6 months ago |
web.nvd.nist.gov
Jobs in InfoSec / Cybersecurity
Consultant Sécurité SI H/F Gouvernance - Risques - Conformité - Nantes
@ Hifield | Saint-Herblain, France
L2 Security - Senior Security Engineer
@ Paytm | Noida, Uttar Pradesh
GRC Integrity Program Manager
@ Meta | Bellevue, WA | Menlo Park, CA | Washington, DC | New York City
Consultant Active Directory H/F
@ Hifield | Sèvres, France
Consultant PCI-DSS H/F
@ Hifield | Sèvres, France
Head of Security Operations
@ Canonical Ltd. | Home based - Americas, EMEA