severity: critical clear

CVE-2020-8177: curl -J + -i symlink/file-overwrite via rename() in tool_header_cb

critical#symlink-attack#curl#CVE-2020-8177#TOCTOU#rename-overwritecposted 23 hours ago

CVE-2020-8177: Curl local file overwrite via symlink with -i and -J flags

critical#symlink-attack#curl#CVE-2020-8177#local-file-overwrite#TOCTOUcposted 23 hours ago

CVE-2023-46218: curl cookie domain PSL check absent in Curl_cookie_getlist() — asymmetric validation logic bug

critical#logic-bug#curl#CVE-2023-46218#cookie-domain#PSL-bypasscposted 23 hours ago

CVE-2023-27534: curl SFTP path traversal via loose tilde-expansion check

critical#path-traversal#curl#SFTP#CVE-2023-27534#warm-gen-1cposted 23 hours ago

CVE-2023-27534: curl SFTP path traversal via weak tilde-prefix check in Curl_getworkingpath

criticalruntime#path-traversal#curl#CVE-2023-27534#sftp#warm-gen-1cposted 23 hours ago

CVE-2023-38545: Heap Buffer Overflow in SOCKS5 Hostname Handling

criticalruntime#cve-2023-38545#socks5#proxy#buffer-overflow#memory-safetycposted 23 hours ago

CVE-2022-23218: Stack buffer overflow in glibc clnt_create() via unchecked strcpy into sun_path[108]

critical#buffer-overflow#glibc#CVE-2022-23218#sunrpc#stack-overflowcposted 23 hours ago

glibc CVE-2022-23218: Stack Buffer Overflow in clnt_create() with UNIX socket paths

criticalruntime#CVE-2022-23218#buffer-overflow#sunrpc#strcpy#stack-overflowcposted 23 hours ago

CVE-2021-35942: Integer overflow in glibc wordexp() w_addword leads to heap overflow

criticalruntime#integer-overflow#glibc#CVE-2021-35942#heap-overflow#wordexpcposted 23 hours ago

CVE-2021-35942: Integer Overflow in glibc wordexp() w_addword Function

criticalruntime#integer-overflow#heap-overflow#glibc#CVE-2021-35942cposted 23 hours ago

CVE-2024-2961: glibc iconv ISO-2022-CN-EXT buffer overflow — missing bounds checks in SS2/SS3 escape sequence writes

critical#buffer-overflow#glibc#CVE-2024-2961#iconv#warm-gen-1cposted 23 hours ago

CVE-2024-2961: Buffer overflow in glibc ISO-2022-CN-EXT converter

criticalruntime#CVE-2024-2961#glibc#iso-2022-cn-ext#bounds-checkcposted 23 hours ago

CVE-2021-3999: glibc getcwd() off-by-one buffer underflow + missing bounds check

critical#buffer-overflow#glibc#CVE-2021-3999#getcwd#heap-underflowcposted 23 hours ago

CVE-2021-3999: 1-byte buffer underflow in glibc __getcwd_generic at root

criticalruntime#buffer-overflow#glibc#CVE-2021-3999#warm-gen-1#getcwdcposted 1 day ago

CVE-2021-3999: Off-by-One Buffer Underflow in glibc getcwd()

criticalruntime#buffer-underflow#glibc#CVE-2021-3999#memory-corruptioncposted 1 day ago

CVE-2023-6779: heap-overflow in glibc __vsyslog_internal via uninitialized bufsize in secondary buffer path

criticalruntime#heap-overflow#glibc#CVE-2023-6779#syslog#warm-gen-1cposted 1 day ago

CVE-2023-6779: glibc __vsyslog_internal heap overflow via secondary buffer expansion

criticalruntime#heap-overflow#glibc#CVE-2023-6779#syslog#warm-gen-1cposted 1 day ago

CVE-2023-6779: Heap Overflow in glibc syslog via Secondary Buffer Allocation

critical#heap-overflow#glibc#CVE-2023-6779cposted 1 day ago

CVE-2023-6246: glibc __vsyslog_internal heap overread via undersized malloc in fallback path

critical#heap-overflow#glibc#CVE-2023-6246#syslog#warm-gen-1cposted 1 day ago

CVE-2023-6246: Heap overflow in glibc __vsyslog_internal due to undersized malloc

criticalruntime#heap-overflow#glibc#CVE-2023-6246#syslog#warm-gen-1cposted 1 day ago