CVE-2021-22922

Summary

CVE	CVE-2021-22922
State	PUBLIC
Assigner	[email protected]
Source Priority	CVE Program / NVD first with legacy fallback
Published	2021-08-05 21:15:00 UTC
Updated	2024-03-27 15:12:00 UTC
Description	When curl is instructed to download content using the metalink feature, thecontents is verified against a hash provided in the metalink XML file.The metalink XML file points out to the client how to get the same contentfrom a set of different URLs, potentially hosted by different servers and theclient can then download the file from one or several of them. In a serial orparallel manner.If one of the servers hosting the contents has been breached and the contentsof the specific file on that server is replaced with a modified payload, curlshould detect this when the hash of the file mismatches after a completeddownload. It should remove the contents and instead try getting the contentsfrom another URL. This is not done, and instead such a hash mismatch is onlymentioned in text and the potentially malicious content is kept in the file ondisk.

Risk And Classification

Problem Types: CWE-755

NVD Known Affected Configurations (CPE 2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Operating System	Fedoraproject	Fedora	33	All	All	All
Application	Haxx	Curl	All	All	All	All
Application	Netapp	Cloud Backup	-	All	All	All
Application	Netapp	Clustered Data Ontap	-	All	All	All
Hardware	Netapp	H300e	-	All	All	All
Operating System	Netapp	H300e Firmware	-	All	All	All
Hardware	Netapp	H300s	-	All	All	All
Operating System	Netapp	H300s Firmware	-	All	All	All
Hardware	Netapp	H410s	-	All	All	All
Operating System	Netapp	H410s Firmware	-	All	All	All
Hardware	Netapp	H500e	-	All	All	All
Operating System	Netapp	H500e Firmware	-	All	All	All
Hardware	Netapp	H500s	-	All	All	All
Operating System	Netapp	H500s Firmware	-	All	All	All
Hardware	Netapp	H700e	-	All	All	All
Operating System	Netapp	H700e Firmware	-	All	All	All
Hardware	Netapp	H700s	-	All	All	All
Operating System	Netapp	H700s Firmware	-	All	All	All
Application	Netapp	Hci Management Node	-	All	All	All
Application	Netapp	Solidfire	-	All	All	All
Application	Oracle	Mysql Server	All	All	All	All
Application	Oracle	Mysql Server	All	All	All	All
Application	Siemens	Sinec Infrastructure Network Services	All	All	All	All
Application	Splunk	Universal Forwarder	All	All	All	All
Application	Splunk	Universal Forwarder	9.1.0	All	All	All

References

Reference	Source	Link	Tags
Pony Mail!	MLIST	lists.apache.org
Pony Mail!	MLIST	lists.apache.org
HackerOne	MISC	hackerone.com
[kafka-dev] 20210901 Re: [EXTERNAL] Re: Security vulnerabilities in kafka:2.13-2.6.0/2.7.0 docker image		lists.apache.org
Pony Mail!	MLIST	lists.apache.org
August 2021 cURL/libcURL Vulnerabilities in NetApp Products \| NetApp Product Security	CONFIRM	security.netapp.com
[kafka-users] 20210901 Re: [EXTERNAL] Re: Security vulnerabilities in kafka:2.13-2.6.0/2.7.0 docker image		lists.apache.org
curl: Multiple Vulnerabilities (GLSA 202212-01) — Gentoo security	GENTOO	security.gentoo.org
Oracle Critical Patch Update Advisory - October 2021	MISC	www.oracle.com
Pony Mail!	MLIST	lists.apache.org
cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf	CONFIRM	cert-portal.siemens.com
[SECURITY] Fedora 33 Update: curl-7.71.1-10.fc33 - package-announce - Fedora Mailing-Lists	FEDORA	lists.fedoraproject.org
[kafka-users] 20210831 Security vulnerabilities in kafka:2.13-2.6.0/2.7.0 docker image		lists.apache.org
[SECURITY] Fedora 33 Update: curl-7.71.1-10.fc33 - package-announce - Fedora Mailing-Lists		lists.fedoraproject.org
[kafka-dev] 20210831 Security vulnerabilities in kafka:2.13-2.6.0/2.7.0 docker image		lists.apache.org
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

Legacy QID Mappings

159396 Oracle Enterprise Linux Security Update for curl (ELSA-2021-3582)
182041 Debian Security Update for curl (CVE-2021-22922)
239648 Red Hat Update for curl (RHSA-2021:3582)
239692 Red Hat Update for curl (RHSA-2021:3903)
281737 Fedora Security Update for curl (FEDORA-2021-83fdddca0f)
281795 Fedora Security Update for curl (FEDORA-2021-5d21b90a30)
296065 Oracle Solaris 11.4 Support Repository Update (SRU) 39.107.1 Missing (CPUOCT2021)
352843 Amazon Linux Security Advisory for curl: ALAS2-2021-1700
377386 Alibaba Cloud Linux Security Update for curl (ALINUX3-SA-2021:0070)
378599 Splunk Enterprise Third Party Package Updates for June (SVD-2023-0613)
378883 Splunk Enterprise August Third Party Package Updates (SVD-2023-0808)
500136 Alpine Linux Security Update for curl
503787 Alpine Linux Security Update for curl
591406 Siemens SIMATIC S7-1500 CPU GNU/Linux subsystem Multiple Vulnerabilities (SSB-439005, ICSA-22-104-13)
670824 EulerOS Security Update for curl (EulerOS-SA-2021-2707)
670976 EulerOS Security Update for curl (EulerOS-SA-2021-2627)
671008 EulerOS Security Update for curl (EulerOS-SA-2021-2682)
690083 Free Berkeley Software Distribution (FreeBSD) Security Update for curl (aa646c01-ea0d-11eb-9b84-d4c9ef517024)
710693 Gentoo Linux curl Multiple Vulnerabilities (GLSA 202212-01)
750866 SUSE Enterprise Linux Security Update for curl (SUSE-SU-2021:2425-1)
750872 SUSE Enterprise Linux Security Update for curl (SUSE-SU-2021:2440-1)
750875 OpenSUSE Security Update for curl (openSUSE-SU-2021:2439-1)
750888 SUSE Enterprise Linux Security Update for curl (SUSE-SU-2021:2462-1)
750891 OpenSUSE Security Update for curl (openSUSE-SU-2021:1088-1)
900298 CBL-Mariner Linux Security Update for curl 7.76.0
901834 Common Base Linux Mariner (CBL-Mariner) Security Update for curl (6361-1)
903474 Common Base Linux Mariner (CBL-Mariner) Security Update for curl (5209)
940284 AlmaLinux Security Update for curl (ALSA-2021:3582)
960794 Rocky Linux Security Update for curl (RLSA-2021:3582)