CVE-2014-3707 — Sensitive Information Exposure in Libcurl

CWE-200 — Sensitive Information Exposure CWE-125 — Out-of-bounds Read CWE-416 — Use After Free11 documents9 sources

Severity

4.3MEDIUMNVD

EPSS

0.2%

top 56.60%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Haxx Curl Apple MAC OS X Canonical Ubuntu Linux +4 more

Timeline

PublishedNov 15

Latest updateMay 14

Description

The curl_easy_duphandle function in libcurl 7.17.1 through 7.38.0, when running with the CURLOPT_COPYPOSTFIELDS option, does not properly copy HTTP POST data for an easy handle, which triggers an out-of-bounds read that allows remote web servers to read sensitive memory information.

CVSS vector

AV:N/AC:M/C:P/I:N/A:NExploitability: 8.6 | Impact: 2.9

Affected Packages5 packages

▶NVDhaxx/libcurl42 versions+41

▶Debianhaxx/curl< 7.38.0-3+3

▶NVDapple/mac_os_x5 versions+4

▶NVDoracle/hyperion11.1.2.2, 11.1.2.3+1

▶NVDopensuse/opensuse13.1, 13.2+1

Also affects: Debian Linux 7.0, 8.0, Ubuntu Linux 10.04, 12.04, 14.04, 14.10

🔴Vulnerability Details

GHSA

GHSA-x89w-3fj3-7gmx: The curl_easy_duphandle function in libcurl 7↗2022-05-14

▶

OSV

CVE-2014-3707: The curl_easy_duphandle function in libcurl 7↗2014-11-15

▶

CVEList

CVE-2014-3707: The curl_easy_duphandle function in libcurl 7↗2014-11-15

▶

📋Vendor Advisories

Ubuntu

curl vulnerability↗2014-11-10

▶

Red Hat

curl: incorrect handle duplication after COPYPOSTFIELDS↗2014-11-05

▶

Debian

CVE-2014-3707: curl - The curl_easy_duphandle function in libcurl 7.17.1 through 7.38.0, when running ...↗2014

▶

Apple

CVE-2014-3707: OS X Yosemite v10.10.5 and Security Update 2015-006↗

▶

💬Community

Bugzilla

CVE-2014-3707 mingw-curl: curl: incorrect handle duplication after COPYPOSTFIELDS [epel-7]↗2014-11-05

▶

Bugzilla

CVE-2014-3707 mingw-curl: curl: incorrect handle duplication after COPYPOSTFIELDS [fedora-all]↗2014-11-05

▶

Bugzilla

CVE-2014-3707 curl: incorrect handle duplication after COPYPOSTFIELDS↗2014-10-21

▶