CVE-2017-2629
published 2018-07-27CVE-2017-2629: curl before 7.53.0 has an incorrect TLS Certificate Status Request extension feature that asks for a fresh proof of the server's certificate's validity in the…
PriorityP433medium6.5CVSS 3.0
AVNACLPRLUINSUCNIHAN
EPSS
0.36%
59.0th percentile
curl before 7.53.0 has an incorrect TLS Certificate Status Request extension feature that asks for a fresh proof of the server's certificate's validity in the code that checks for a test success or failure. It ends up always thinking there's valid proof, even when there is none or if the server doesn't support the TLS extension in question. This could lead to users not detecting when a server's certificate goes invalid or otherwise be mislead that the server is in a better shape than it is in reality. This flaw also exists in the command line tool (--cert-status).
Affected
8 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | macos_sierra_10.12.6_security_update_2017-003_el_capitan_and_security_update_201 | — | — |
| curl | curl | — | — |
| debian | curl | < curl 7.52.1-3 (bookworm) | curl 7.52.1-3 (bookworm) |
| haxx | curl | < 7.53.0 | 7.53.0 |
| haxx | curl | >= 0 < 7.52.1-3 | 7.52.1-3 |
| haxx | curl | >= 0 < 7.52.1-3 | 7.52.1-3 |
| haxx | curl | >= 0 < 7.52.1-3 | 7.52.1-3 |
| haxx | curl | >= 0 < 7.52.1-3 | 7.52.1-3 |
CVSS provenance
nvdv3.06.5MEDIUMCVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
nvdv2.04.0MEDIUMAV:N/AC:L/Au:S/C:N/I:P/A:N
osv6.5MEDIUM
vendor_debian4.3MEDIUM
vendor_redhat4.3MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Apple
CVE-2017-2629: macOS Sierra 10.12.6, Security Update 2017-003 El Capitan, and Security Update 2017-003 Yosemite
vendor_apple·2017-07-19·CVSS 4.3
CVE-2017-2629 [MEDIUM] CVE-2017-2629: macOS Sierra 10.12.6, Security Update 2017-003 El Capitan, and Security Update 2017-003 Yosemite
Apple Security Update: About the security content of macOS Sierra 10.12.6, Security Update 2017-003 El Capitan, and Security Update 2017-003 Yosemite
Product: macOS Sierra 10.12.6, Security Update 2017-003 El Capitan, and Security Update 2017-003 Yosemite
CVE: CVE-2017-2629
Component: CVE-2017-2629
Red Hat
curl: SSL_VERIFYSTATUS ignored
vendor_redhat·2017-02-22·CVSS 4.3
CVE-2017-2629 [MEDIUM] CWE-295 curl: SSL_VERIFYSTATUS ignored
curl: SSL_VERIFYSTATUS ignored
curl before 7.53.0 has an incorrect TLS Certificate Status Request extension feature that asks for a fresh proof of the server's certificate's validity in the code that checks for a test success or failure. It ends up always thinking there's valid proof, even when there is none or if the server doesn't support the TLS extension in question. This could lead to users not detecting when a server's certificate goes invalid or otherwise be mislead that the server is in a better shape than it is in reality. This flaw also exists in the command line tool (--cert-status).
Package: rh-dotnetcore10-curl (.NET Core 1.0 on Red Hat Enterprise Linux) - Not affected
Package: rh-dotnetcore11-curl (.NET Core 1.1 on Red Hat Enterprise Linux) - Not affected
Package: rh-dotn
Debian
CVE-2017-2629: curl - curl before 7.53.0 has an incorrect TLS Certificate Status Request extension fea...
vendor_debian·2017·CVSS 4.3
CVE-2017-2629 [MEDIUM] CVE-2017-2629: curl - curl before 7.53.0 has an incorrect TLS Certificate Status Request extension fea...
curl before 7.53.0 has an incorrect TLS Certificate Status Request extension feature that asks for a fresh proof of the server's certificate's validity in the code that checks for a test success or failure. It ends up always thinking there's valid proof, even when there is none or if the server doesn't support the TLS extension in question. This could lead to users not detecting when a server's certificate goes invalid or otherwise be mislead that the server is in a better shape than it is in reality. This flaw also exists in the command line tool (--cert-status).
Scope: local
bookworm: resolved (fixed in 7.52.1-3)
bullseye: resolved (fixed in 7.52.1-3)
forky: resolved (fixed in 7.52.1-3)
sid: resolved (fixed in 7.52.1-3)
trixie: resolved (fixed in 7.52.1-3)
GHSA
GHSA-7cp4-w7q7-w394: curl before 7
ghsa_unreviewed·2022-05-13
CVE-2017-2629 [MEDIUM] CWE-295 GHSA-7cp4-w7q7-w394: curl before 7
curl before 7.53.0 has an incorrect TLS Certificate Status Request extension feature that asks for a fresh proof of the server's certificate's validity in the code that checks for a test success or failure. It ends up always thinking there's valid proof, even when there is none or if the server doesn't support the TLS extension in question. This could lead to users not detecting when a server's certificate goes invalid or otherwise be mislead that the server is in a better shape than it is in reality. This flaw also exists in the command line tool (--cert-status).
OSV
CVE-2017-2629: curl before 7
osv·2018-07-27·CVSS 6.5
CVE-2017-2629 [MEDIUM] CVE-2017-2629: curl before 7
curl before 7.53.0 has an incorrect TLS Certificate Status Request extension feature that asks for a fresh proof of the server's certificate's validity in the code that checks for a test success or failure. It ends up always thinking there's valid proof, even when there is none or if the server doesn't support the TLS extension in question. This could lead to users not detecting when a server's certificate goes invalid or otherwise be mislead that the server is in a better shape than it is in reality. This flaw also exists in the command line tool (--cert-status).
No detection rules found.
No public exploits indexed.
Tenable
[R1] LCE 5.0.1 Fixes Two Third-party Library Vulnerabilities
blogs_tenable·2017-03-22
[R1] LCE 5.0.1 Fixes Two Third-party Library Vulnerabilities
## Cloud Exposure
Tenable Cloud Security (CNAPP) Request a demo
Tenable Cloud Vulnerability Management Request a demo
Tenable CIEM Request a demo
Secure your cloud
## Vulnerability Exposure
Tenable Vulnerability Management Try for free
Tenable Security Center Request a demo
Tenable Web App Scanning Try for free
Tenable Patch Management Request a demo
Tenable Enclave Security Request a demo
Tenable Attack Surface Management Request a demo
Tenable Nessus Try for free
## AI Exposure
Tenable AI Exposure Request a demo
## OT/IoT Exposure
Tenable OT Security Request a demo
## Identity Exposure
Tenable Identity Exposure Request a demo
## Business needs
Active Directory
AI Security Posture Management (AI-SPM)
AWS security
Azure security
Cloud Security Posture Man
Bugzilla
CVE-2017-2629 curl: SSL_VERIFYSTATUS ignored
bugzilla·2017-02-22·CVSS 4.3
CVE-2017-2629 [MEDIUM] CVE-2017-2629 curl: SSL_VERIFYSTATUS ignored
CVE-2017-2629 curl: SSL_VERIFYSTATUS ignored
A coding mistake was found in TLS Certificate Status Request extension feature that asks for a fresh proof of the server's certificate's validity in the code that checks for a test success or failure. It ends up always thinking there's valid proof, even when there is none or if the server doesn't support the TLS extension in question. Contrary to how it used to function and contrary to how this feature is documented to work.
This could lead to users not detecting when a server's certificate goes invalid or otherwise be mislead that the server is in a better shape than it is in reality. This flaw also exists in the command line tool (--cert-status).
Affected versions: 7.52.0 to and including 7.52.1
Not affected versions: = 7.53.0
Upstream pat
http://www.securityfocus.com/bid/96382http://www.securitytracker.com/id/1037871https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-2629https://curl.haxx.se/docs/adv_20170222.htmlhttps://security.gentoo.org/glsa/201703-04https://www.tenable.com/security/tns-2017-09http://www.securityfocus.com/bid/96382http://www.securitytracker.com/id/1037871https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-2629https://curl.haxx.se/docs/adv_20170222.htmlhttps://security.gentoo.org/glsa/201703-04https://www.tenable.com/security/tns-2017-09
2018-07-27
Published