curl / Mailing Lists / curl-library / Single Mail

Buy commercial curl support from WolfSSL. We help you work out your issues, debug your libcurl applications, use the API, port to new platforms, add new features and more. With a team lead by the curl founder himself.

Re: [SECURITY ADVISORY] curl: CVE-2023-38545: SOCKS5 heap buffer overflow

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

From: Daniel Stenberg via curl-library <curl-library_at_lists.haxx.se>
Date: Wed, 11 Oct 2023 08:38:03 +0200 (CEST)

On Wed, 11 Oct 2023, Daniel Stenberg via curl-users wrote:

> SOCKS5 heap buffer overflow

How this happened?

https://daniel.haxx.se/blog/2023/10/11/how-i-made-a-heap-overflow-in-curl/

-- 
  / daniel.haxx.se
  | Commercial curl support up to 24x7 is available!
  | Private help, bug fixes, support, ports, new features
  | https://curl.se/support.html
-- 
Unsubscribe: https://lists.haxx.se/mailman/listinfo/curl-library
Etiquette:   https://curl.se/mail/etiquette.html

Received on 2023-10-11

This message: [ Message body ]
Next message: Jacek Migacz via curl-library: "Apology for Breaking CVE-2023-38545 Embargo"
Previous message: Daniel Stenberg via curl-library: "[SECURITY ADVISORY] curl: CVE-2023-38546"
In reply to: Daniel Stenberg via curl-library: "[SECURITY ADVISORY] curl: CVE-2023-38545: SOCKS5 heap buffer overflow"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]