{"uuid": "13e4f86f-e706-42d5-b018-18e2500f00f3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-10536", "type": "seen", "source": "https://bsky.app/profile/bootintel.bsky.social/post/3mpyv3ztk4p2e", "content": "Critical CVE landed today in libcurl:\n\nCVE-2026-10536. A use-after-free vulnerability exists in libcurl when an application configures an HTTP/2 stream-dependency tree via `CURLOPT_STREAM_DEPENDS` or `CURLOPT_STREAM_DEPENDS_E`, subsequently invokes\u2026\n\nnvd.nist.gov/vuln/detail/CVE-2026-10536", "creation_timestamp": "2026-07-06T20:03:19.798518Z"}