gsd-2024-2398
Vulnerability from gsd
Modified
2024-04-02 05:02
Details
When an application tells libcurl it wants to allow HTTP/2 server push, and the amount of received headers for the push surpasses the maximum allowed limit (1000), libcurl aborts the server push. When aborting, libcurl inadvertently does not free all the previously allocated headers and instead leaks the memory. Further, this error condition fails silently and is therefore not easily detected by an application.
Aliases
{
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2024-2398"
],
"details": "When an application tells libcurl it wants to allow HTTP/2 server push, and the amount of received headers for the push surpasses the maximum allowed limit (1000), libcurl aborts the server push. When aborting, libcurl inadvertently does not free all the previously allocated headers and instead leaks the memory. Further, this error condition fails silently and is therefore not easily detected by an application.",
"id": "GSD-2024-2398",
"modified": "2024-04-02T05:02:53.369064Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "cve@curl.se",
"ID": "CVE-2024-2398",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "curl",
"version": {
"version_data": [
{
"version_affected": "\u003c=",
"version_name": "8.6.0",
"version_value": "8.6.0"
},
{
"version_affected": "\u003c=",
"version_name": "8.5.0",
"version_value": "8.5.0"
},
{
"version_affected": "\u003c=",
"version_name": "8.4.0",
"version_value": "8.4.0"
},
{
"version_affected": "\u003c=",
"version_name": "8.3.0",
"version_value": "8.3.0"
},
{
"version_affected": "\u003c=",
"version_name": "8.2.1",
"version_value": "8.2.1"
},
{
"version_affected": "\u003c=",
"version_name": "8.2.0",
"version_value": "8.2.0"
},
{
"version_affected": "\u003c=",
"version_name": "8.1.2",
"version_value": "8.1.2"
},
{
"version_affected": "\u003c=",
"version_name": "8.1.1",
"version_value": "8.1.1"
},
{
"version_affected": "\u003c=",
"version_name": "8.1.0",
"version_value": "8.1.0"
},
{
"version_affected": "\u003c=",
"version_name": "8.0.1",
"version_value": "8.0.1"
},
{
"version_affected": "\u003c=",
"version_name": "8.0.0",
"version_value": "8.0.0"
},
{
"version_affected": "\u003c=",
"version_name": "7.88.1",
"version_value": "7.88.1"
},
{
"version_affected": "\u003c=",
"version_name": "7.88.0",
"version_value": "7.88.0"
},
{
"version_affected": "\u003c=",
"version_name": "7.87.0",
"version_value": "7.87.0"
},
{
"version_affected": "\u003c=",
"version_name": "7.86.0",
"version_value": "7.86.0"
},
{
"version_affected": "\u003c=",
"version_name": "7.85.0",
"version_value": "7.85.0"
},
{
"version_affected": "\u003c=",
"version_name": "7.84.0",
"version_value": "7.84.0"
},
{
"version_affected": "\u003c=",
"version_name": "7.83.1",
"version_value": "7.83.1"
},
{
"version_affected": "\u003c=",
"version_name": "7.83.0",
"version_value": "7.83.0"
},
{
"version_affected": "\u003c=",
"version_name": "7.82.0",
"version_value": "7.82.0"
},
{
"version_affected": "\u003c=",
"version_name": "7.81.0",
"version_value": "7.81.0"
},
{
"version_affected": "\u003c=",
"version_name": "7.80.0",
"version_value": "7.80.0"
},
{
"version_affected": "\u003c=",
"version_name": "7.79.1",
"version_value": "7.79.1"
},
{
"version_affected": "\u003c=",
"version_name": "7.79.0",
"version_value": "7.79.0"
},
{
"version_affected": "\u003c=",
"version_name": "7.78.0",
"version_value": "7.78.0"
},
{
"version_affected": "\u003c=",
"version_name": "7.77.0",
"version_value": "7.77.0"
},
{
"version_affected": "\u003c=",
"version_name": "7.76.1",
"version_value": "7.76.1"
},
{
"version_affected": "\u003c=",
"version_name": "7.76.0",
"version_value": "7.76.0"
},
{
"version_affected": "\u003c=",
"version_name": "7.75.0",
"version_value": "7.75.0"
},
{
"version_affected": "\u003c=",
"version_name": "7.74.0",
"version_value": "7.74.0"
},
{
"version_affected": "\u003c=",
"version_name": "7.73.0",
"version_value": "7.73.0"
},
{
"version_affected": "\u003c=",
"version_name": "7.72.0",
"version_value": "7.72.0"
},
{
"version_affected": "\u003c=",
"version_name": "7.71.1",
"version_value": "7.71.1"
},
{
"version_affected": "\u003c=",
"version_name": "7.71.0",
"version_value": "7.71.0"
},
{
"version_affected": "\u003c=",
"version_name": "7.70.0",
"version_value": "7.70.0"
},
{
"version_affected": "\u003c=",
"version_name": "7.69.1",
"version_value": "7.69.1"
},
{
"version_affected": "\u003c=",
"version_name": "7.69.0",
"version_value": "7.69.0"
},
{
"version_affected": "\u003c=",
"version_name": "7.68.0",
"version_value": "7.68.0"
},
{
"version_affected": "\u003c=",
"version_name": "7.67.0",
"version_value": "7.67.0"
},
{
"version_affected": "\u003c=",
"version_name": "7.66.0",
"version_value": "7.66.0"
},
{
"version_affected": "\u003c=",
"version_name": "7.65.3",
"version_value": "7.65.3"
},
{
"version_affected": "\u003c=",
"version_name": "7.65.2",
"version_value": "7.65.2"
},
{
"version_affected": "\u003c=",
"version_name": "7.65.1",
"version_value": "7.65.1"
},
{
"version_affected": "\u003c=",
"version_name": "7.65.0",
"version_value": "7.65.0"
},
{
"version_affected": "\u003c=",
"version_name": "7.64.1",
"version_value": "7.64.1"
},
{
"version_affected": "\u003c=",
"version_name": "7.64.0",
"version_value": "7.64.0"
},
{
"version_affected": "\u003c=",
"version_name": "7.63.0",
"version_value": "7.63.0"
},
{
"version_affected": "\u003c=",
"version_name": "7.62.0",
"version_value": "7.62.0"
},
{
"version_affected": "\u003c=",
"version_name": "7.61.1",
"version_value": "7.61.1"
},
{
"version_affected": "\u003c=",
"version_name": "7.61.0",
"version_value": "7.61.0"
},
{
"version_affected": "\u003c=",
"version_name": "7.60.0",
"version_value": "7.60.0"
},
{
"version_affected": "\u003c=",
"version_name": "7.59.0",
"version_value": "7.59.0"
},
{
"version_affected": "\u003c=",
"version_name": "7.58.0",
"version_value": "7.58.0"
},
{
"version_affected": "\u003c=",
"version_name": "7.57.0",
"version_value": "7.57.0"
},
{
"version_affected": "\u003c=",
"version_name": "7.56.1",
"version_value": "7.56.1"
},
{
"version_affected": "\u003c=",
"version_name": "7.56.0",
"version_value": "7.56.0"
},
{
"version_affected": "\u003c=",
"version_name": "7.55.1",
"version_value": "7.55.1"
},
{
"version_affected": "\u003c=",
"version_name": "7.55.0",
"version_value": "7.55.0"
},
{
"version_affected": "\u003c=",
"version_name": "7.54.1",
"version_value": "7.54.1"
},
{
"version_affected": "\u003c=",
"version_name": "7.54.0",
"version_value": "7.54.0"
},
{
"version_affected": "\u003c=",
"version_name": "7.53.1",
"version_value": "7.53.1"
},
{
"version_affected": "\u003c=",
"version_name": "7.53.0",
"version_value": "7.53.0"
},
{
"version_affected": "\u003c=",
"version_name": "7.52.1",
"version_value": "7.52.1"
},
{
"version_affected": "\u003c=",
"version_name": "7.52.0",
"version_value": "7.52.0"
},
{
"version_affected": "\u003c=",
"version_name": "7.51.0",
"version_value": "7.51.0"
},
{
"version_affected": "\u003c=",
"version_name": "7.50.3",
"version_value": "7.50.3"
},
{
"version_affected": "\u003c=",
"version_name": "7.50.2",
"version_value": "7.50.2"
},
{
"version_affected": "\u003c=",
"version_name": "7.50.1",
"version_value": "7.50.1"
},
{
"version_affected": "\u003c=",
"version_name": "7.50.0",
"version_value": "7.50.0"
},
{
"version_affected": "\u003c=",
"version_name": "7.49.1",
"version_value": "7.49.1"
},
{
"version_affected": "\u003c=",
"version_name": "7.49.0",
"version_value": "7.49.0"
},
{
"version_affected": "\u003c=",
"version_name": "7.48.0",
"version_value": "7.48.0"
},
{
"version_affected": "\u003c=",
"version_name": "7.47.1",
"version_value": "7.47.1"
},
{
"version_affected": "\u003c=",
"version_name": "7.47.0",
"version_value": "7.47.0"
},
{
"version_affected": "\u003c=",
"version_name": "7.46.0",
"version_value": "7.46.0"
},
{
"version_affected": "\u003c=",
"version_name": "7.45.0",
"version_value": "7.45.0"
},
{
"version_affected": "\u003c=",
"version_name": "7.44.0",
"version_value": "7.44.0"
}
]
}
}
]
},
"vendor_name": "curl"
}
]
}
},
"credits": [
{
"lang": "en",
"value": "w0x42 on hackerone"
},
{
"lang": "en",
"value": "Stefan Eissing"
}
],
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "When an application tells libcurl it wants to allow HTTP/2 server push, and the amount of received headers for the push surpasses the maximum allowed limit (1000), libcurl aborts the server push. When aborting, libcurl inadvertently does not free all the previously allocated headers and instead leaks the memory. Further, this error condition fails silently and is therefore not easily detected by an application."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-772 Missing Release of Resource after Effective Lifetime "
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://curl.se/docs/CVE-2024-2398.json",
"refsource": "MISC",
"url": "https://curl.se/docs/CVE-2024-2398.json"
},
{
"name": "https://curl.se/docs/CVE-2024-2398.html",
"refsource": "MISC",
"url": "https://curl.se/docs/CVE-2024-2398.html"
},
{
"name": "https://hackerone.com/reports/2402845",
"refsource": "MISC",
"url": "https://hackerone.com/reports/2402845"
},
{
"name": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GMD6UYKCCRCYETWQZUJ65ZRFULT6SHLI/",
"refsource": "MISC",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GMD6UYKCCRCYETWQZUJ65ZRFULT6SHLI/"
},
{
"name": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2D44YLAUFJU6BZ4XFG2FYV7SBKXB5IZ6/",
"refsource": "MISC",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2D44YLAUFJU6BZ4XFG2FYV7SBKXB5IZ6/"
}
]
}
},
"nvd.nist.gov": {
"cve": {
"descriptions": [
{
"lang": "en",
"value": "When an application tells libcurl it wants to allow HTTP/2 server push, and the amount of received headers for the push surpasses the maximum allowed limit (1000), libcurl aborts the server push. When aborting, libcurl inadvertently does not free all the previously allocated headers and instead leaks the memory. Further, this error condition fails silently and is therefore not easily detected by an application."
},
{
"lang": "es",
"value": "Cuando una aplicaci\u00f3n le dice a libcurl que quiere permitir la inserci\u00f3n del servidor HTTP/2 y la cantidad de encabezados recibidos para la inserci\u00f3n supera el l\u00edmite m\u00e1ximo permitido (1000), libcurl cancela la inserci\u00f3n del servidor. Al cancelar, libcurl inadvertidamente no libera todos los encabezados previamente asignados y, en cambio, pierde memoria. Adem\u00e1s, esta condici\u00f3n de error falla silenciosamente y, por lo tanto, una aplicaci\u00f3n no la detecta f\u00e1cilmente."
}
],
"id": "CVE-2024-2398",
"lastModified": "2024-04-25T06:15:58.640",
"metrics": {},
"published": "2024-03-27T08:15:41.283",
"references": [
{
"source": "2499f714-1537-4658-8207-48ae4bb9eae9",
"url": "https://curl.se/docs/CVE-2024-2398.html"
},
{
"source": "2499f714-1537-4658-8207-48ae4bb9eae9",
"url": "https://curl.se/docs/CVE-2024-2398.json"
},
{
"source": "2499f714-1537-4658-8207-48ae4bb9eae9",
"url": "https://hackerone.com/reports/2402845"
},
{
"source": "2499f714-1537-4658-8207-48ae4bb9eae9",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2D44YLAUFJU6BZ4XFG2FYV7SBKXB5IZ6/"
},
{
"source": "2499f714-1537-4658-8207-48ae4bb9eae9",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GMD6UYKCCRCYETWQZUJ65ZRFULT6SHLI/"
}
],
"sourceIdentifier": "2499f714-1537-4658-8207-48ae4bb9eae9",
"vulnStatus": "Awaiting Analysis"
}
}
}
}
Loading...