Skip to content

Instantly share code, notes, and snippets.

@1047524396
Created April 15, 2024 11:47
Show Gist options
  • Save 1047524396/0b7775b306e5f776a8cdc2ef9553a047 to your computer and use it in GitHub Desktop.
Save 1047524396/0b7775b306e5f776a8cdc2ef9553a047 to your computer and use it in GitHub Desktop.
CVE-2024-31579
[CVE ID]
CVE-2024-31579
[PRODUCT]
curl
[VERSION]
before curl-8_4_0
[PROBLEM TYPE]
CWE-476: NULL Pointer Dereference
[DESCRIPTION]
A NULL pointer dereference in the component /lib/idn.c of Curl before v8.4.0 allows attackers to cause a Denial of Service (DoS) via a crafted URL.
[PATCH LINK]
https://github.com/curl/curl/commit/021d04f2916cd82c3728a68514b090077bce9651
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment