Details of VAR-202210-1888

ID

VAR-202210-1888

CVE

CVE-2022-32221

TITLE

Haxx of cURL Vulnerability related to resource leakage to the wrong area in products from other vendors

Trust: 0.8

sources: JVNDB: JVNDB-2022-023343

DESCRIPTION

When doing HTTP(S) transfers, libcurl might erroneously use the read callback (`CURLOPT_READFUNCTION`) to ask for data to send, even when the `CURLOPT_POSTFIELDS` option has been set, if the same handle previously was used to issue a `PUT` request which used that callback. This flaw may surprise the application and cause it to misbehave and either send off the wrong data or use memory after free or similar in the subsequent `POST` request. The problem exists in the logic for a reused handle when it is changed from a PUT to a POST. Haxx of cURL Products from other vendors have vulnerabilities related to resource disclosure to the wrong domain.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state. (CVE-2022-42915). Original advisory details: Robby Simpson discovered that curl incorrectly handled certain POST operations after PUT operations. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 APPLE-SA-2023-01-23-5 macOS Monterey 12.6.3 macOS Monterey 12.6.3 addresses the following issues. Information about the security content is also available at https://support.apple.com/HT213604. AppleMobileFileIntegrity Available for: macOS Monterey Impact: An app may be able to access user-sensitive data Description: This issue was addressed by enabling hardened runtime. CVE-2023-23499: Wojciech Reguła (@_r3ggi) of SecuRing (wojciechregula.blog) curl Available for: macOS Monterey Impact: Multiple issues in curl Description: Multiple issues were addressed by updating to curl version 7.86.0. CVE-2022-42915 CVE-2022-42916 CVE-2022-32221 CVE-2022-35260 curl Available for: macOS Monterey Impact: Multiple issues in curl Description: Multiple issues were addressed by updating to curl version 7.85.0. CVE-2022-35252 dcerpc Available for: macOS Monterey Impact: Mounting a maliciously crafted Samba network share may lead to arbitrary code execution Description: A buffer overflow issue was addressed with improved memory handling. CVE-2023-23513: Dimitrios Tatsis and Aleksandar Nikolic of Cisco Talos DiskArbitration Available for: macOS Monterey Impact: An encrypted volume may be unmounted and remounted by a different user without prompting for the password Description: A logic issue was addressed with improved state management. CVE-2023-23493: Oliver Norpoth (@norpoth) of KLIXX GmbH (klixx.com) DriverKit Available for: macOS Monterey Impact: An app may be able to execute arbitrary code with kernel privileges Description: A type confusion issue was addressed with improved checks. CVE-2022-32915: Tommy Muir (@Muirey03) Intel Graphics Driver Available for: macOS Monterey Impact: An app may be able to execute arbitrary code with kernel privileges Description: The issue was addressed with improved bounds checks. CVE-2023-23507: an anonymous researcher Kernel Available for: macOS Monterey Impact: An app may be able to execute arbitrary code with kernel privileges Description: The issue was addressed with improved memory handling. CVE-2023-23504: Adam Doupé of ASU SEFCOM Kernel Available for: macOS Monterey Impact: An app may be able to determine kernel memory layout Description: An information disclosure issue was addressed by removing the vulnerable code. CVE-2023-23502: Pan ZhenPeng (@Peterpan0927) of STAR Labs SG Pte. (@starlabs_sg) PackageKit Available for: macOS Monterey Impact: An app may be able to gain root privileges Description: A logic issue was addressed with improved state management. CVE-2023-23497: Mickey Jin (@patch1t) Screen Time Available for: macOS Monterey Impact: An app may be able to access information about a user’s contacts Description: A privacy issue was addressed with improved private data redaction for log entries. CVE-2023-23505: Wojciech Regula of SecuRing (wojciechregula.blog) Weather Available for: macOS Monterey Impact: An app may be able to bypass Privacy preferences Description: The issue was addressed with improved memory handling. CVE-2023-23511: Wojciech Regula of SecuRing (wojciechregula.blog), an anonymous researcher WebKit Available for: macOS Monterey Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: The issue was addressed with improved memory handling. WebKit Bugzilla: 248268 CVE-2023-23518: YeongHyeon Choi (@hyeon101010), Hyeon Park (@tree_segment), SeOk JEON (@_seokjeon), YoungSung Ahn (@_ZeroSung), JunSeo Bae (@snakebjs0107), Dohyun Lee (@l33d0hyun) of Team ApplePIE WebKit Bugzilla: 248268 CVE-2023-23517: YeongHyeon Choi (@hyeon101010), Hyeon Park (@tree_segment), SeOk JEON (@_seokjeon), YoungSung Ahn (@_ZeroSung), JunSeo Bae (@snakebjs0107), Dohyun Lee (@l33d0hyun) of Team ApplePIE Windows Installer Available for: macOS Monterey Impact: An app may be able to bypass Privacy preferences Description: The issue was addressed with improved memory handling. CVE-2023-23508: Mickey Jin (@patch1t) Additional recognition Kernel We would like to acknowledge Nick Stenning of Replicate for their assistance. macOS Monterey 12.6.3 may be obtained from the Mac App Store or Apple's Software Downloads web site: https://support.apple.com/downloads/ All information is also posted on the Apple Security Updates web site: https://support.apple.com/en-us/HT201222. ========================================================================== Ubuntu Security Notice USN-5823-1 January 24, 2023 mysql-5.7, mysql-8.0 vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 22.10 - Ubuntu 22.04 LTS - Ubuntu 20.04 LTS - Ubuntu 18.04 LTS Summary: Several security issues were fixed in MySQL. Software Description: - mysql-8.0: MySQL database - mysql-5.7: MySQL database Details: Multiple security issues were discovered in MySQL and this update includes new upstream MySQL versions to fix these issues. MySQL has been updated to 8.0.32 in Ubuntu 20.04 LTS, Ubuntu 22.04 LTS, and Ubuntu 22.10. Ubuntu 18.04 LTS has been updated to MySQL 5.7.41. In addition to security fixes, the updated packages contain bug fixes, new features, and possibly incompatible changes. Please see the following for more information: https://dev.mysql.com/doc/relnotes/mysql/5.7/en/news-5-7-41.html https://dev.mysql.com/doc/relnotes/mysql/8.0/en/news-8-0-32.html https://www.oracle.com/security-alerts/cpujan2023.html Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 22.10: mysql-server-8.0 8.0.32-0buntu0.22.10.1 Ubuntu 22.04 LTS: mysql-server-8.0 8.0.32-0buntu0.22.04.1 Ubuntu 20.04 LTS: mysql-server-8.0 8.0.32-0buntu0.20.04.1 Ubuntu 18.04 LTS: mysql-server-5.7 5.7.41-0ubuntu0.18.04.1 This update uses a new upstream release, which includes additional bug fixes. In general, a standard system update will make all the necessary changes. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: Red Hat JBoss Core Services Apache HTTP Server 2.4.51 SP1 security update Advisory ID: RHSA-2022:8840-01 Product: Red Hat JBoss Core Services Advisory URL: https://access.redhat.com/errata/RHSA-2022:8840 Issue date: 2022-12-08 CVE Names: CVE-2022-1292 CVE-2022-2068 CVE-2022-22721 CVE-2022-23943 CVE-2022-26377 CVE-2022-28330 CVE-2022-28614 CVE-2022-28615 CVE-2022-30522 CVE-2022-31813 CVE-2022-32206 CVE-2022-32207 CVE-2022-32208 CVE-2022-32221 CVE-2022-35252 CVE-2022-42915 CVE-2022-42916 ==================================================================== 1. Summary: An update is now available for Red Hat JBoss Core Services. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat JBoss Core Services on RHEL 7 Server - noarch, x86_64 Red Hat JBoss Core Services on RHEL 8 - noarch, x86_64 3. Description: Red Hat JBoss Core Services is a set of supplementary software for Red Hat JBoss middleware products. This software, such as Apache HTTP Server, is common to multiple JBoss middleware products, and is packaged under Red Hat JBoss Core Services to allow for faster distribution of updates, and for a more consistent update experience. This release of Red Hat JBoss Core Services Apache HTTP Server 2.4.51 Service Pack 1 serves as a replacement for Red Hat JBoss Core Services Apache HTTP Server 2.4.51, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References. Security Fix(es): * curl: HSTS bypass via IDN (CVE-2022-42916) * curl: HTTP proxy double-free (CVE-2022-42915) * curl: POST following PUT confusion (CVE-2022-32221) * httpd: mod_proxy: X-Forwarded-For dropped by hop-by-hop mechanism (CVE-2022-31813) * httpd: mod_sed: DoS vulnerability (CVE-2022-30522) * httpd: out-of-bounds read in ap_strcmp_match() (CVE-2022-28615) * httpd: out-of-bounds read via ap_rwrite() (CVE-2022-28614) * httpd: mod_proxy_ajp: Possible request smuggling (CVE-2022-26377) * curl: control code in cookie denial of service (CVE-2022-35252) * jbcs-httpd24-httpd: httpd: mod_isapi: out-of-bounds read (CVE-2022-28330) * curl: Unpreserved file permissions (CVE-2022-32207) * curl: various flaws (CVE-2022-32206 CVE-2022-32208) * openssl: the c_rehash script allows command injection (CVE-2022-2068) * openssl: c_rehash script allows command injection (CVE-2022-1292) * jbcs-httpd24-httpd: httpd: core: Possible buffer overflow with very large or unlimited LimitXMLRequestBody (CVE-2022-22721) * jbcs-httpd24-httpd: httpd: mod_sed: Read/write beyond bounds (CVE-2022-23943) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Applications using the APR libraries, such as httpd, must be restarted for this update to take effect. After installing the updated packages, the httpd daemon will be restarted automatically. 5. Bugs fixed (https://bugzilla.redhat.com/): 2064319 - CVE-2022-23943 httpd: mod_sed: Read/write beyond bounds 2064320 - CVE-2022-22721 httpd: core: Possible buffer overflow with very large or unlimited LimitXMLRequestBody 2081494 - CVE-2022-1292 openssl: c_rehash script allows command injection 2094997 - CVE-2022-26377 httpd: mod_proxy_ajp: Possible request smuggling 2095000 - CVE-2022-28330 httpd: mod_isapi: out-of-bounds read 2095002 - CVE-2022-28614 httpd: Out-of-bounds read via ap_rwrite() 2095006 - CVE-2022-28615 httpd: Out-of-bounds read in ap_strcmp_match() 2095015 - CVE-2022-30522 httpd: mod_sed: DoS vulnerability 2095020 - CVE-2022-31813 httpd: mod_proxy: X-Forwarded-For dropped by hop-by-hop mechanism 2097310 - CVE-2022-2068 openssl: the c_rehash script allows command injection 2099300 - CVE-2022-32206 curl: HTTP compression denial of service 2099305 - CVE-2022-32207 curl: Unpreserved file permissions 2099306 - CVE-2022-32208 curl: FTP-KRB bad message verification 2120718 - CVE-2022-35252 curl: control code in cookie denial of service 2135411 - CVE-2022-32221 curl: POST following PUT confusion 2135413 - CVE-2022-42915 curl: HTTP proxy double-free 2135416 - CVE-2022-42916 curl: HSTS bypass via IDN 6. Package List: Red Hat JBoss Core Services on RHEL 7 Server: Source: jbcs-httpd24-apr-util-1.6.1-99.el7jbcs.src.rpm jbcs-httpd24-curl-7.86.0-2.el7jbcs.src.rpm jbcs-httpd24-httpd-2.4.51-37.el7jbcs.src.rpm jbcs-httpd24-mod_http2-1.15.19-20.el7jbcs.src.rpm jbcs-httpd24-mod_jk-1.2.48-44.redhat_1.el7jbcs.src.rpm jbcs-httpd24-mod_md-2.4.0-18.el7jbcs.src.rpm jbcs-httpd24-mod_proxy_cluster-1.3.17-13.el7jbcs.src.rpm jbcs-httpd24-mod_security-2.9.3-22.el7jbcs.src.rpm jbcs-httpd24-nghttp2-1.43.0-11.el7jbcs.src.rpm jbcs-httpd24-openssl-1.1.1k-13.el7jbcs.src.rpm jbcs-httpd24-openssl-chil-1.0.0-17.el7jbcs.src.rpm jbcs-httpd24-openssl-pkcs11-0.4.10-32.el7jbcs.src.rpm noarch: jbcs-httpd24-httpd-manual-2.4.51-37.el7jbcs.noarch.rpm x86_64: jbcs-httpd24-apr-util-1.6.1-99.el7jbcs.x86_64.rpm jbcs-httpd24-apr-util-debuginfo-1.6.1-99.el7jbcs.x86_64.rpm jbcs-httpd24-apr-util-devel-1.6.1-99.el7jbcs.x86_64.rpm jbcs-httpd24-apr-util-ldap-1.6.1-99.el7jbcs.x86_64.rpm jbcs-httpd24-apr-util-mysql-1.6.1-99.el7jbcs.x86_64.rpm jbcs-httpd24-apr-util-nss-1.6.1-99.el7jbcs.x86_64.rpm jbcs-httpd24-apr-util-odbc-1.6.1-99.el7jbcs.x86_64.rpm jbcs-httpd24-apr-util-openssl-1.6.1-99.el7jbcs.x86_64.rpm jbcs-httpd24-apr-util-pgsql-1.6.1-99.el7jbcs.x86_64.rpm jbcs-httpd24-apr-util-sqlite-1.6.1-99.el7jbcs.x86_64.rpm jbcs-httpd24-curl-7.86.0-2.el7jbcs.x86_64.rpm jbcs-httpd24-curl-debuginfo-7.86.0-2.el7jbcs.x86_64.rpm jbcs-httpd24-httpd-2.4.51-37.el7jbcs.x86_64.rpm jbcs-httpd24-httpd-debuginfo-2.4.51-37.el7jbcs.x86_64.rpm jbcs-httpd24-httpd-devel-2.4.51-37.el7jbcs.x86_64.rpm jbcs-httpd24-httpd-selinux-2.4.51-37.el7jbcs.x86_64.rpm jbcs-httpd24-httpd-tools-2.4.51-37.el7jbcs.x86_64.rpm jbcs-httpd24-libcurl-7.86.0-2.el7jbcs.x86_64.rpm jbcs-httpd24-libcurl-devel-7.86.0-2.el7jbcs.x86_64.rpm jbcs-httpd24-mod_http2-1.15.19-20.el7jbcs.x86_64.rpm jbcs-httpd24-mod_http2-debuginfo-1.15.19-20.el7jbcs.x86_64.rpm jbcs-httpd24-mod_jk-ap24-1.2.48-44.redhat_1.el7jbcs.x86_64.rpm jbcs-httpd24-mod_jk-debuginfo-1.2.48-44.redhat_1.el7jbcs.x86_64.rpm jbcs-httpd24-mod_ldap-2.4.51-37.el7jbcs.x86_64.rpm jbcs-httpd24-mod_md-2.4.0-18.el7jbcs.x86_64.rpm jbcs-httpd24-mod_md-debuginfo-2.4.0-18.el7jbcs.x86_64.rpm jbcs-httpd24-mod_proxy_cluster-1.3.17-13.el7jbcs.x86_64.rpm jbcs-httpd24-mod_proxy_cluster-debuginfo-1.3.17-13.el7jbcs.x86_64.rpm jbcs-httpd24-mod_proxy_html-2.4.51-37.el7jbcs.x86_64.rpm jbcs-httpd24-mod_security-2.9.3-22.el7jbcs.x86_64.rpm jbcs-httpd24-mod_security-debuginfo-2.9.3-22.el7jbcs.x86_64.rpm jbcs-httpd24-mod_session-2.4.51-37.el7jbcs.x86_64.rpm jbcs-httpd24-mod_ssl-2.4.51-37.el7jbcs.x86_64.rpm jbcs-httpd24-nghttp2-1.43.0-11.el7jbcs.x86_64.rpm jbcs-httpd24-nghttp2-debuginfo-1.43.0-11.el7jbcs.x86_64.rpm jbcs-httpd24-nghttp2-devel-1.43.0-11.el7jbcs.x86_64.rpm jbcs-httpd24-openssl-1.1.1k-13.el7jbcs.x86_64.rpm jbcs-httpd24-openssl-chil-1.0.0-17.el7jbcs.x86_64.rpm jbcs-httpd24-openssl-chil-debuginfo-1.0.0-17.el7jbcs.x86_64.rpm jbcs-httpd24-openssl-debuginfo-1.1.1k-13.el7jbcs.x86_64.rpm jbcs-httpd24-openssl-devel-1.1.1k-13.el7jbcs.x86_64.rpm jbcs-httpd24-openssl-libs-1.1.1k-13.el7jbcs.x86_64.rpm jbcs-httpd24-openssl-perl-1.1.1k-13.el7jbcs.x86_64.rpm jbcs-httpd24-openssl-pkcs11-0.4.10-32.el7jbcs.x86_64.rpm jbcs-httpd24-openssl-pkcs11-debuginfo-0.4.10-32.el7jbcs.x86_64.rpm jbcs-httpd24-openssl-static-1.1.1k-13.el7jbcs.x86_64.rpm Red Hat JBoss Core Services on RHEL 8: Source: jbcs-httpd24-apr-util-1.6.1-99.el8jbcs.src.rpm jbcs-httpd24-curl-7.86.0-2.el8jbcs.src.rpm jbcs-httpd24-httpd-2.4.51-37.el8jbcs.src.rpm jbcs-httpd24-mod_http2-1.15.19-20.el8jbcs.src.rpm jbcs-httpd24-mod_jk-1.2.48-44.redhat_1.el8jbcs.src.rpm jbcs-httpd24-mod_md-2.4.0-18.el8jbcs.src.rpm jbcs-httpd24-mod_proxy_cluster-1.3.17-13.el8jbcs.src.rpm jbcs-httpd24-mod_security-2.9.3-22.el8jbcs.src.rpm jbcs-httpd24-nghttp2-1.43.0-11.el8jbcs.src.rpm jbcs-httpd24-openssl-1.1.1k-13.el8jbcs.src.rpm jbcs-httpd24-openssl-chil-1.0.0-17.el8jbcs.src.rpm jbcs-httpd24-openssl-pkcs11-0.4.10-32.el8jbcs.src.rpm noarch: jbcs-httpd24-httpd-manual-2.4.51-37.el8jbcs.noarch.rpm x86_64: jbcs-httpd24-apr-util-1.6.1-99.el8jbcs.x86_64.rpm jbcs-httpd24-apr-util-debuginfo-1.6.1-99.el8jbcs.x86_64.rpm jbcs-httpd24-apr-util-devel-1.6.1-99.el8jbcs.x86_64.rpm jbcs-httpd24-apr-util-ldap-1.6.1-99.el8jbcs.x86_64.rpm jbcs-httpd24-apr-util-ldap-debuginfo-1.6.1-99.el8jbcs.x86_64.rpm jbcs-httpd24-apr-util-mysql-1.6.1-99.el8jbcs.x86_64.rpm jbcs-httpd24-apr-util-mysql-debuginfo-1.6.1-99.el8jbcs.x86_64.rpm jbcs-httpd24-apr-util-nss-1.6.1-99.el8jbcs.x86_64.rpm jbcs-httpd24-apr-util-nss-debuginfo-1.6.1-99.el8jbcs.x86_64.rpm jbcs-httpd24-apr-util-odbc-1.6.1-99.el8jbcs.x86_64.rpm jbcs-httpd24-apr-util-odbc-debuginfo-1.6.1-99.el8jbcs.x86_64.rpm jbcs-httpd24-apr-util-openssl-1.6.1-99.el8jbcs.x86_64.rpm jbcs-httpd24-apr-util-openssl-debuginfo-1.6.1-99.el8jbcs.x86_64.rpm jbcs-httpd24-apr-util-pgsql-1.6.1-99.el8jbcs.x86_64.rpm jbcs-httpd24-apr-util-pgsql-debuginfo-1.6.1-99.el8jbcs.x86_64.rpm jbcs-httpd24-apr-util-sqlite-1.6.1-99.el8jbcs.x86_64.rpm jbcs-httpd24-apr-util-sqlite-debuginfo-1.6.1-99.el8jbcs.x86_64.rpm jbcs-httpd24-curl-7.86.0-2.el8jbcs.x86_64.rpm jbcs-httpd24-curl-debuginfo-7.86.0-2.el8jbcs.x86_64.rpm jbcs-httpd24-httpd-2.4.51-37.el8jbcs.x86_64.rpm jbcs-httpd24-httpd-debuginfo-2.4.51-37.el8jbcs.x86_64.rpm jbcs-httpd24-httpd-devel-2.4.51-37.el8jbcs.x86_64.rpm jbcs-httpd24-httpd-selinux-2.4.51-37.el8jbcs.x86_64.rpm jbcs-httpd24-httpd-tools-2.4.51-37.el8jbcs.x86_64.rpm jbcs-httpd24-httpd-tools-debuginfo-2.4.51-37.el8jbcs.x86_64.rpm jbcs-httpd24-libcurl-7.86.0-2.el8jbcs.x86_64.rpm jbcs-httpd24-libcurl-debuginfo-7.86.0-2.el8jbcs.x86_64.rpm jbcs-httpd24-libcurl-devel-7.86.0-2.el8jbcs.x86_64.rpm jbcs-httpd24-mod_http2-1.15.19-20.el8jbcs.x86_64.rpm jbcs-httpd24-mod_http2-debuginfo-1.15.19-20.el8jbcs.x86_64.rpm jbcs-httpd24-mod_jk-ap24-1.2.48-44.redhat_1.el8jbcs.x86_64.rpm jbcs-httpd24-mod_jk-ap24-debuginfo-1.2.48-44.redhat_1.el8jbcs.x86_64.rpm jbcs-httpd24-mod_ldap-2.4.51-37.el8jbcs.x86_64.rpm jbcs-httpd24-mod_ldap-debuginfo-2.4.51-37.el8jbcs.x86_64.rpm jbcs-httpd24-mod_md-2.4.0-18.el8jbcs.x86_64.rpm jbcs-httpd24-mod_md-debuginfo-2.4.0-18.el8jbcs.x86_64.rpm jbcs-httpd24-mod_proxy_cluster-1.3.17-13.el8jbcs.x86_64.rpm jbcs-httpd24-mod_proxy_cluster-debuginfo-1.3.17-13.el8jbcs.x86_64.rpm jbcs-httpd24-mod_proxy_html-2.4.51-37.el8jbcs.x86_64.rpm jbcs-httpd24-mod_proxy_html-debuginfo-2.4.51-37.el8jbcs.x86_64.rpm jbcs-httpd24-mod_security-2.9.3-22.el8jbcs.x86_64.rpm jbcs-httpd24-mod_security-debuginfo-2.9.3-22.el8jbcs.x86_64.rpm jbcs-httpd24-mod_session-2.4.51-37.el8jbcs.x86_64.rpm jbcs-httpd24-mod_session-debuginfo-2.4.51-37.el8jbcs.x86_64.rpm jbcs-httpd24-mod_ssl-2.4.51-37.el8jbcs.x86_64.rpm jbcs-httpd24-mod_ssl-debuginfo-2.4.51-37.el8jbcs.x86_64.rpm jbcs-httpd24-nghttp2-1.43.0-11.el8jbcs.x86_64.rpm jbcs-httpd24-nghttp2-debuginfo-1.43.0-11.el8jbcs.x86_64.rpm jbcs-httpd24-nghttp2-devel-1.43.0-11.el8jbcs.x86_64.rpm jbcs-httpd24-openssl-1.1.1k-13.el8jbcs.x86_64.rpm jbcs-httpd24-openssl-chil-1.0.0-17.el8jbcs.x86_64.rpm jbcs-httpd24-openssl-chil-debuginfo-1.0.0-17.el8jbcs.x86_64.rpm jbcs-httpd24-openssl-debuginfo-1.1.1k-13.el8jbcs.x86_64.rpm jbcs-httpd24-openssl-devel-1.1.1k-13.el8jbcs.x86_64.rpm jbcs-httpd24-openssl-libs-1.1.1k-13.el8jbcs.x86_64.rpm jbcs-httpd24-openssl-libs-debuginfo-1.1.1k-13.el8jbcs.x86_64.rpm jbcs-httpd24-openssl-perl-1.1.1k-13.el8jbcs.x86_64.rpm jbcs-httpd24-openssl-pkcs11-0.4.10-32.el8jbcs.x86_64.rpm jbcs-httpd24-openssl-pkcs11-debuginfo-0.4.10-32.el8jbcs.x86_64.rpm jbcs-httpd24-openssl-static-1.1.1k-13.el8jbcs.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2022-1292 https://access.redhat.com/security/cve/CVE-2022-2068 https://access.redhat.com/security/cve/CVE-2022-22721 https://access.redhat.com/security/cve/CVE-2022-23943 https://access.redhat.com/security/cve/CVE-2022-26377 https://access.redhat.com/security/cve/CVE-2022-28330 https://access.redhat.com/security/cve/CVE-2022-28614 https://access.redhat.com/security/cve/CVE-2022-28615 https://access.redhat.com/security/cve/CVE-2022-30522 https://access.redhat.com/security/cve/CVE-2022-31813 https://access.redhat.com/security/cve/CVE-2022-32206 https://access.redhat.com/security/cve/CVE-2022-32207 https://access.redhat.com/security/cve/CVE-2022-32208 https://access.redhat.com/security/cve/CVE-2022-32221 https://access.redhat.com/security/cve/CVE-2022-35252 https://access.redhat.com/security/cve/CVE-2022-42915 https://access.redhat.com/security/cve/CVE-2022-42916 https://access.redhat.com/security/updates/classification/#moderate 8. Contact: The Red Hat security contact is <secalert@redhat.com>. More contact details at https://access.redhat.com/security/team/contact/ Copyright 2022 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBY5ISE9zjgjWX9erEAQixuA//dX5Q3wtu2MRvrjD/sK/r6dqBz4fWWhS9 ws2A8cRa5ki3RlCaYQ3pP7LkRtIdankAP3HG1NU4er/odsMEW5aEgku+5foV7w4M WEd0USLKs3Pw5a7/3TjOBUf5CA7oet03C7/u9idWaLD/ip4UMhskSnz33qFQSFZf FAWNdsRhH8+ql6qFMg9Odv5RFX3i2+wBy5pC69Akr2FBEt9j+/PbvSPWuPD26n6H 0l+QUKrI3OW1EHzz+S/8aEfTFKLluXfhVJn61wdA8Kjs4ZKrnBz8czJjxn4hOi7a z0tpzg5d1BJEf/UB7EdyyLBGRIliWhf978qtG8QS37GEgnQSof2xgcfu1NGiHl9j ypCqX1R4oOkeoISynnZUKWZ1uFp5GkMiRtPu0Bw7WYB6z/8OWZce4yIqh1rcG09d NcyleabDtpJ7C3BJQzpnhXAWjri7oJ6wHBvcbQ9sLj2xkQRX2Zpi0KJGIH8iLwdn Ik+RIZ7u/mXeW3ulcwiQTPYbTQLWGXqgZV1qxJq91HIcu+y3STQwZjb4fZuqjH5M onO/rF2y50l9LqArg/v9KAJUbHSKMDP6r7Dx02J+iKjW3g7NczoImrU7JcyAgce9 mCN7gMmU9bQx1tagIKcKKW5IVN/jHyWKJW/t0teoaECsa2LMgoEIt+6RcmQXWpdF 6t6oQh+b3NY=UGfz -----END PGP SIGNATURE----- -- RHSA-announce mailing list RHSA-announce@redhat.com https://listman.redhat.com/mailman/listinfo/rhsa-announce . Description: The curl packages provide the libcurl library and the curl utility for downloading files from servers using various protocols, including HTTP, FTP, and LDAP. Bugs fixed (https://bugzilla.redhat.com/): 2135411 - CVE-2022-32221 curl: POST following PUT confusion 2167815 - CVE-2023-23916 curl: HTTP multi-header compression denial of service 6

Trust: 2.34

sources: NVD: CVE-2022-32221 // JVNDB: JVNDB-2022-023343 // VULHUB: VHN-424148 // VULMON: CVE-2022-32221 // PACKETSTORM: 169538 // PACKETSTORM: 170697 // PACKETSTORM: 170729 // PACKETSTORM: 170166 // PACKETSTORM: 170165 // PACKETSTORM: 173569

AFFECTED PRODUCTS

vendor:	debian	model:	linux	scope:	eq	version:	11.0	Trust: 1.0
vendor:	haxx	model:	curl	scope:	lt	version:	7.86.0	Trust: 1.0
vendor:	apple	model:	macos	scope:	lt	version:	12.6.3	Trust: 1.0
vendor:	splunk	model:	universal forwarder	scope:	lt	version:	9.0.6	Trust: 1.0
vendor:	netapp	model:	h300s	scope:	eq	version:	-	Trust: 1.0
vendor:	netapp	model:	h410s	scope:	eq	version:	-	Trust: 1.0
vendor:	splunk	model:	universal forwarder	scope:	gte	version:	9.0.0	Trust: 1.0
vendor:	splunk	model:	universal forwarder	scope:	eq	version:	9.1.0	Trust: 1.0
vendor:	netapp	model:	h700s	scope:	eq	version:	-	Trust: 1.0
vendor:	debian	model:	linux	scope:	eq	version:	10.0	Trust: 1.0
vendor:	splunk	model:	universal forwarder	scope:	lt	version:	8.2.12	Trust: 1.0
vendor:	netapp	model:	clustered data ontap	scope:	eq	version:	-	Trust: 1.0
vendor:	netapp	model:	h500s	scope:	eq	version:	-	Trust: 1.0
vendor:	splunk	model:	universal forwarder	scope:	gte	version:	8.2.0	Trust: 1.0
vendor:	debian	model:	gnu/linux	scope:	-	version:	-	Trust: 0.8
vendor:	haxx	model:	curl	scope:	-	version:	-	Trust: 0.8
vendor:	netapp	model:	h410s	scope:	-	version:	-	Trust: 0.8
vendor:	netapp	model:	h700s	scope:	-	version:	-	Trust: 0.8
vendor:	netapp	model:	h300s	scope:	-	version:	-	Trust: 0.8
vendor:	netapp	model:	h500s	scope:	-	version:	-	Trust: 0.8
vendor:	netapp	model:	ontap	scope:	-	version:	-	Trust: 0.8
vendor:	アップル	model:	macos	scope:	eq	version:	12.6.3	Trust: 0.8

sources: JVNDB: JVNDB-2022-023343 // NVD: CVE-2022-32221

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2022-32221
value:	CRITICAL
Trust: 1.0
NVD:	CVE-2022-32221
value:	CRITICAL
Trust: 0.8
CNNVD:	CNNVD-202210-2214
value:	CRITICAL
Trust: 0.6

nvd@nist.gov:	CVE-2022-32221
baseSeverity:	CRITICAL
baseScore:	9.8
vectorString:	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	3.9
impactScore:	5.9
version:	3.1
Trust: 1.0
NVD:	CVE-2022-32221
baseSeverity:	CRITICAL
baseScore:	9.8
vectorString:	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8

sources: JVNDB: JVNDB-2022-023343 // CNNVD: CNNVD-202210-2214 // NVD: CVE-2022-32221

PROBLEMTYPE DATA

problemtype:	CWE-668	Trust: 1.1
problemtype:	CWE-200	Trust: 1.0
problemtype:	Leakage of resources to the wrong area (CWE-668) [NVD evaluation ]	Trust: 0.8

sources: VULHUB: VHN-424148 // JVNDB: JVNDB-2022-023343 // NVD: CVE-2022-32221

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-202210-2214

TYPE

other

Trust: 0.6

sources: CNNVD: CNNVD-202210-2214

PATCH

title:	HT213605	url:	https://lists.debian.org/debian-lts-announce/2023/01/msg00028.html	Trust: 0.8
title:	curl Security vulnerabilities	url:	http://123.124.177.30/web/xxk/bdxqById.tag?id=216855	Trust: 0.6
title:	Ubuntu Security Notice: USN-5702-2: curl vulnerability	url:	https://vulmon.com/vendoradvisory?qidtp=ubuntu_security_notice&qid=USN-5702-2	Trust: 0.1
title:	Ubuntu Security Notice: USN-5702-1: curl vulnerabilities	url:	https://vulmon.com/vendoradvisory?qidtp=ubuntu_security_notice&qid=USN-5702-1	Trust: 0.1
title:	Red Hat:	url:	https://vulmon.com/vendoradvisory?qidtp=red_hat_cve_database&qid=CVE-2022-32221	Trust: 0.1
title:	IBM: Security Bulletin: The Community Edition of IBM ILOG CPLEX Optimization Studio is affected by multiple vulnerabilities in libcurl (CVE-2022-42915, CVE-2022-42916, CVE-2022-32221)	url:	https://vulmon.com/vendoradvisory?qidtp=ibm_psirt_blog&qid=93e8baf3e9bfd9ab92a05b44368ef244	Trust: 0.1

sources: VULMON: CVE-2022-32221 // JVNDB: JVNDB-2022-023343 // CNNVD: CNNVD-202210-2214

EXTERNAL IDS

db:	NVD	id:	CVE-2022-32221	Trust: 4.0
db:	HACKERONE	id:	1704017	Trust: 2.5
db:	OPENWALL	id:	OSS-SECURITY/2023/05/17/4	Trust: 2.4
db:	PACKETSTORM	id:	169538	Trust: 0.8
db:	JVN	id:	JVNVU98195668	Trust: 0.8
db:	ICS CERT	id:	ICSA-23-131-05	Trust: 0.8
db:	JVNDB	id:	JVNDB-2022-023343	Trust: 0.8
db:	PACKETSTORM	id:	170777	Trust: 0.7
db:	PACKETSTORM	id:	169535	Trust: 0.7
db:	PACKETSTORM	id:	170166	Trust: 0.7
db:	AUSCERT	id:	ESB-2023.3143	Trust: 0.6
db:	AUSCERT	id:	ESB-2023.3732	Trust: 0.6
db:	AUSCERT	id:	ESB-2023.4030	Trust: 0.6
db:	AUSCERT	id:	ESB-2022.5421	Trust: 0.6
db:	AUSCERT	id:	ESB-2022.6333	Trust: 0.6
db:	CNNVD	id:	CNNVD-202210-2214	Trust: 0.6
db:	PACKETSTORM	id:	170729	Trust: 0.2
db:	PACKETSTORM	id:	170648	Trust: 0.1
db:	VULHUB	id:	VHN-424148	Trust: 0.1
db:	VULMON	id:	CVE-2022-32221	Trust: 0.1
db:	PACKETSTORM	id:	170697	Trust: 0.1
db:	PACKETSTORM	id:	170165	Trust: 0.1
db:	PACKETSTORM	id:	173569	Trust: 0.1

sources: VULHUB: VHN-424148 // VULMON: CVE-2022-32221 // PACKETSTORM: 169538 // PACKETSTORM: 170697 // PACKETSTORM: 170729 // PACKETSTORM: 170166 // PACKETSTORM: 170165 // PACKETSTORM: 173569 // JVNDB: JVNDB-2022-023343 // CNNVD: CNNVD-202210-2214 // NVD: CVE-2022-32221

REFERENCES

url:	http://seclists.org/fulldisclosure/2023/jan/19	Trust: 2.5
url:	http://seclists.org/fulldisclosure/2023/jan/20	Trust: 2.5
url:	https://security.gentoo.org/glsa/202212-01	Trust: 2.5
url:	https://hackerone.com/reports/1704017	Trust: 2.5
url:	http://www.openwall.com/lists/oss-security/2023/05/17/4	Trust: 2.4
url:	https://security.netapp.com/advisory/ntap-20230110-0006/	Trust: 1.7
url:	https://security.netapp.com/advisory/ntap-20230208-0002/	Trust: 1.7
url:	https://support.apple.com/kb/ht213604	Trust: 1.7
url:	https://support.apple.com/kb/ht213605	Trust: 1.7
url:	https://www.debian.org/security/2023/dsa-5330	Trust: 1.7
url:	https://lists.debian.org/debian-lts-announce/2023/01/msg00028.html	Trust: 1.7
url:	https://nvd.nist.gov/vuln/detail/cve-2022-32221	Trust: 1.4
url:	https://access.redhat.com/security/cve/cve-2022-32221	Trust: 1.0
url:	https://jvn.jp/vu/jvnvu98195668/	Trust: 0.8
url:	https://www.cisa.gov/news-events/ics-advisories/icsa-23-131-05	Trust: 0.8
url:	https://www.auscert.org.au/bulletins/esb-2023.3143	Trust: 0.6
url:	https://cxsecurity.com/cveshow/cve-2022-32221/	Trust: 0.6
url:	https://www.auscert.org.au/bulletins/esb-2023.4030	Trust: 0.6
url:	https://www.auscert.org.au/bulletins/esb-2023.3732	Trust: 0.6
url:	https://vigilance.fr/vulnerability/curl-reuse-after-free-39731	Trust: 0.6
url:	https://support.apple.com/en-us/ht213604	Trust: 0.6
url:	https://packetstormsecurity.com/files/169538/ubuntu-security-notice-usn-5702-2.html	Trust: 0.6
url:	https://packetstormsecurity.com/files/169535/ubuntu-security-notice-usn-5702-1.html	Trust: 0.6
url:	https://www.auscert.org.au/bulletins/esb-2022.5421	Trust: 0.6
url:	https://packetstormsecurity.com/files/170166/red-hat-security-advisory-2022-8840-01.html	Trust: 0.6
url:	https://www.auscert.org.au/bulletins/esb-2022.6333	Trust: 0.6
url:	https://packetstormsecurity.com/files/170777/debian-security-advisory-5330-1.html	Trust: 0.6
url:	https://bugzilla.redhat.com/):	Trust: 0.3
url:	https://access.redhat.com/security/team/contact/	Trust: 0.3
url:	https://listman.redhat.com/mailman/listinfo/rhsa-announce	Trust: 0.3
url:	https://access.redhat.com/articles/11258	Trust: 0.3
url:	https://ubuntu.com/security/notices/usn-5702-2	Trust: 0.2
url:	https://ubuntu.com/security/notices/usn-5702-1	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2022-28614	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2022-23943	Trust: 0.2
url:	https://access.redhat.com/security/cve/cve-2022-32207	Trust: 0.2
url:	https://access.redhat.com/security/team/key/	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2022-22721	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2022-26377	Trust: 0.2
url:	https://access.redhat.com/security/cve/cve-2022-32206	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2022-30522	Trust: 0.2
url:	https://access.redhat.com/security/cve/cve-2022-31813	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2022-32207	Trust: 0.2
url:	https://access.redhat.com/security/cve/cve-2022-42915	Trust: 0.2
url:	https://access.redhat.com/security/cve/cve-2022-28615	Trust: 0.2
url:	https://access.redhat.com/security/cve/cve-2022-42916	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2022-32206	Trust: 0.2
url:	https://access.redhat.com/security/cve/cve-2022-22721	Trust: 0.2
url:	https://access.redhat.com/security/cve/cve-2022-35252	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2022-31813	Trust: 0.2
url:	https://access.redhat.com/security/cve/cve-2022-2068	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2022-32208	Trust: 0.2
url:	https://access.redhat.com/security/cve/cve-2022-28614	Trust: 0.2
url:	https://access.redhat.com/security/cve/cve-2022-28330	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2022-1292	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2022-28615	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2022-2068	Trust: 0.2
url:	https://access.redhat.com/security/updates/classification/#moderate	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2022-28330	Trust: 0.2
url:	https://access.redhat.com/security/cve/cve-2022-32208	Trust: 0.2
url:	https://access.redhat.com/security/cve/cve-2022-26377	Trust: 0.2
url:	https://access.redhat.com/security/cve/cve-2022-1292	Trust: 0.2
url:	https://access.redhat.com/security/cve/cve-2022-23943	Trust: 0.2
url:	https://access.redhat.com/security/cve/cve-2022-30522	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2023-23507	Trust: 0.1
url:	https://support.apple.com/downloads/	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2022-42915	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2022-35252	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2022-42916	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2023-23493	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2023-23497	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2023-23504	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2023-23505	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2022-32915	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2023-23499	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2023-23508	Trust: 0.1
url:	https://support.apple.com/ht213604.	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2022-35260	Trust: 0.1
url:	https://www.apple.com/support/security/pgp/	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2023-23502	Trust: 0.1
url:	https://support.apple.com/en-us/ht201222.	Trust: 0.1
url:	https://launchpad.net/ubuntu/+source/mysql-8.0/8.0.32-0buntu0.20.04.1	Trust: 0.1
url:	https://www.oracle.com/security-alerts/cpujan2023.html	Trust: 0.1
url:	https://launchpad.net/ubuntu/+source/mysql-8.0/8.0.32-0buntu0.22.10.1	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2023-21877	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2023-21881	Trust: 0.1
url:	https://launchpad.net/ubuntu/+source/mysql-8.0/8.0.32-0buntu0.22.04.1	Trust: 0.1
url:	https://dev.mysql.com/doc/relnotes/mysql/8.0/en/news-8-0-32.html	Trust: 0.1
url:	https://launchpad.net/ubuntu/+source/mysql-5.7/5.7.41-0ubuntu0.18.04.1	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2023-21871	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2023-21867	Trust: 0.1
url:	https://ubuntu.com/security/notices/usn-5823-1	Trust: 0.1
url:	https://dev.mysql.com/doc/relnotes/mysql/5.7/en/news-5-7-41.html	Trust: 0.1
url:	https://access.redhat.com/errata/rhsa-2022:8840	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2022-40674	Trust: 0.1
url:	https://access.redhat.com/security/updates/classification/#important	Trust: 0.1
url:	https://access.redhat.com/errata/rhsa-2022:8841	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2022-40303	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2022-40304	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2022-37434	Trust: 0.1
url:	https://access.redhat.com/errata/rhsa-2023:4139	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2023-23916	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2023-23916	Trust: 0.1

CREDITS

Red Hat

Trust: 0.3

sources: PACKETSTORM: 170166 // PACKETSTORM: 170165 // PACKETSTORM: 173569

SOURCES

db:	VULHUB	id:	VHN-424148
db:	VULMON	id:	CVE-2022-32221
db:	PACKETSTORM	id:	169538
db:	PACKETSTORM	id:	170697
db:	PACKETSTORM	id:	170729
db:	PACKETSTORM	id:	170166
db:	PACKETSTORM	id:	170165
db:	PACKETSTORM	id:	173569
db:	JVNDB	id:	JVNDB-2022-023343
db:	CNNVD	id:	CNNVD-202210-2214
db:	NVD	id:	CVE-2022-32221

LAST UPDATE DATE

2025-06-26T20:27:59.961000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-424148	date:	2023-03-01T00:00:00
db:	JVNDB	id:	JVNDB-2022-023343	date:	2023-11-28T06:56:00
db:	CNNVD	id:	CNNVD-202210-2214	date:	2023-07-19T00:00:00
db:	NVD	id:	CVE-2022-32221	date:	2024-03-27T15:00:28.423

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-424148	date:	2022-12-05T00:00:00
db:	PACKETSTORM	id:	169538	date:	2022-10-27T13:04:37
db:	PACKETSTORM	id:	170697	date:	2023-01-24T16:41:07
db:	PACKETSTORM	id:	170729	date:	2023-01-25T16:09:53
db:	PACKETSTORM	id:	170166	date:	2022-12-08T21:28:44
db:	PACKETSTORM	id:	170165	date:	2022-12-08T21:28:21
db:	PACKETSTORM	id:	173569	date:	2023-07-18T13:47:37
db:	JVNDB	id:	JVNDB-2022-023343	date:	2023-11-28T00:00:00
db:	CNNVD	id:	CNNVD-202210-2214	date:	2022-10-26T00:00:00
db:	NVD	id:	CVE-2022-32221	date:	2022-12-05T22:15:10.343