CVE-2022-42915

Summary

CVE	CVE-2022-42915
State	PUBLIC
Assigner	[email protected]
Source Priority	CVE Program / NVD first with legacy fallback
Published	2022-10-29 20:15:00 UTC
Updated	2024-03-27 14:59:00 UTC
Description	curl before 7.86.0 has a double free. If curl is told to use an HTTP proxy for a transfer with a non-HTTP(S) URL, it sets up the connection to the remote server by issuing a CONNECT request to the proxy, and then tunnels the rest of the protocol through. An HTTP proxy might refuse this request (HTTP proxies often only allow outgoing connections to specific port numbers, like 443 for HTTPS) and instead return a non-200 status code to the client. Due to flaws in the error/cleanup handling, this could trigger a double free in curl if one of the following schemes were used in the URL for the transfer: dict, gopher, gophers, ldap, ldaps, rtmp, rtmps, or telnet. The earliest affected version is 7.77.0.

Risk And Classification

Problem Types: CWE-415

NVD Known Affected Configurations (CPE 2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Operating System	Apple	Macos	All	All	All	All
Operating System	Fedoraproject	Fedora	35	All	All	All
Operating System	Fedoraproject	Fedora	36	All	All	All
Operating System	Fedoraproject	Fedora	37	All	All	All
Application	Haxx	Curl	All	All	All	All
Hardware	Netapp	H300s	-	All	All	All
Operating System	Netapp	H300s Firmware	-	All	All	All
Hardware	Netapp	H410s	-	All	All	All
Operating System	Netapp	H410s Firmware	-	All	All	All
Hardware	Netapp	H500s	-	All	All	All
Operating System	Netapp	H500s Firmware	-	All	All	All
Hardware	Netapp	H700s	-	All	All	All
Operating System	Netapp	H700s Firmware	-	All	All	All
Application	Netapp	Ontap 9	-	All	All	All
Application	Splunk	Universal Forwarder	All	All	All	All
Application	Splunk	Universal Forwarder	9.1.0	All	All	All

References

Reference	Source	Link	Tags
[SECURITY] Fedora 35 Update: curl-7.79.1-7.fc35 - package-announce - Fedora Mailing-Lists		lists.fedoraproject.org
Full Disclosure: APPLE-SA-2023-01-23-4 macOS Ventura 13.2	FULLDISC	seclists.org
[SECURITY] Fedora 37 Update: curl-7.85.0-2.fc37 - package-announce - Fedora Mailing-Lists		lists.fedoraproject.org
Full Disclosure: APPLE-SA-2023-01-23-5 macOS Monterey 12.6.3	FULLDISC	seclists.org
curl: Multiple Vulnerabilities (GLSA 202212-01) — Gentoo security	GENTOO	security.gentoo.org
[SECURITY] Fedora 36 Update: curl-7.82.0-9.fc36 - package-announce - Fedora Mailing-Lists		lists.fedoraproject.org
curl - HTTP proxy double-free - CVE-2022-42915	MISC	curl.se
[SECURITY] Fedora 36 Update: curl-7.82.0-9.fc36 - package-announce - Fedora Mailing-Lists	FEDORA	lists.fedoraproject.org
About the security content of macOS Monterey 12.6.3 - Apple Support	CONFIRM	support.apple.com
[SECURITY] Fedora 35 Update: curl-7.79.1-7.fc35 - package-announce - Fedora Mailing-Lists	FEDORA	lists.fedoraproject.org
About the security content of macOS Ventura 13.2 - Apple Support	CONFIRM	support.apple.com
October 2022 cURL/libcURL Vulnerabilities in NetApp Products \| NetApp Product Security	CONFIRM	security.netapp.com
[SECURITY] Fedora 37 Update: curl-7.85.0-2.fc37 - package-announce - Fedora Mailing-Lists	FEDORA	lists.fedoraproject.org
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

Legacy QID Mappings

183260 Debian Security Update for curl (CVE-2022-42915)
199008 Ubuntu Security Notification for curl Vulnerabilities (USN-5702-1)
240996 Red Hat Update for JBoss Core Services (RHSA-2022:8840)
283261 Fedora Security Update for curl (FEDORA-2022-01ffde372c)
283302 Fedora Security Update for curl (FEDORA-2022-39688a779d)
283449 Fedora Security Update for curl (FEDORA-2022-e9d65906c4)
354115 Amazon Linux Security Advisory for curl : ALAS2-2022-1882
354289 Amazon Linux Security Advisory for curl : ALAS2022-2022-246
354553 Amazon Linux Security Advisory for curl : ALAS-2022-246
355207 Amazon Linux Security Advisory for curl : ALAS2023-2023-083
377927 Apple macOS Ventura 13.2 Not Installed (HT213605)
377928 Apple macOS Monterey 12.6.3 Not Installed (HT213604)
378101 NetApp Clustered Data Open Network Technology for Appliance Products (ONTAP) Disclosure of Sensitive Information Denial of Service (DoS) Vulnerability (NTAP-20221209-0010)
378599 Splunk Enterprise Third Party Package Updates for June (SVD-2023-0613)
378883 Splunk Enterprise August Third Party Package Updates (SVD-2023-0808)
502573 Alpine Linux Security Update for curl
502575 Alpine Linux Security Update for curl
502717 Alpine Linux Security Update for curl
505613 Alpine Linux Security Update for curl
672494 EulerOS Security Update for curl (EulerOS-SA-2023-1005)
672512 EulerOS Security Update for curl (EulerOS-SA-2023-1030)
691009 Free Berkeley Software Distribution (FreeBSD) Security Update for curl (0f99a30c-7b4b-11ed-9168-080027f5fec9)
710693 Gentoo Linux curl Multiple Vulnerabilities (GLSA 202212-01)
904443 Common Base Linux Mariner (CBL-Mariner) Security Update for curl (11411)
904470 Common Base Linux Mariner (CBL-Mariner) Security Update for curl (11368)
904491 Common Base Linux Mariner (CBL-Mariner) Security Update for curl (11368-1)
904516 Common Base Linux Mariner (CBL-Mariner) Security Update for curl (11411-1)
904866 Common Base Linux Mariner (CBL-Mariner) Security Update for cmake (12312)
904893 Common Base Linux Mariner (CBL-Mariner) Security Update for mysql (12383)
904924 Common Base Linux Mariner (CBL-Mariner) Security Update for rust (12438)
905031 Common Base Linux Mariner (CBL-Mariner) Security Update for cmake (12470)
905037 Common Base Linux Mariner (CBL-Mariner) Security Update for rust (12648)
905105 Common Base Linux Mariner (CBL-Mariner) Security Update for mysql (12572)