CVE-2023-27537: Use After Free
First published: Thu Mar 30 2023(Updated: )
A double free vulnerability exists in libcurl <8.0.0 when sharing HSTS data between separate "handles". This sharing was introduced without considerations for do this sharing across separate threads but there was no indication of this fact in the documentation. Due to missing mutexes or thread locks, two threads sharing the same HSTS data could end up doing a double-free or use-after-free.
Credit: support@hackerone.com support@hackerone.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| IBM IBM® Engineering Requirements Management DOORS | <=9.7.2.7 | |
| IBM IBM® Engineering Requirements Management DOORS Web Access | <=9.7.2.7 | |
| Haxx Libcurl | =7.88.0 | |
| Haxx Libcurl | =7.88.1 | |
| Netapp Active Iq Unified Manager Vmware Vsphere | ||
| NetApp Clustered Data ONTAP | =9.0 | |
| Broadcom Brocade Fabric Operating System Firmware | ||
| All of | ||
| Netapp H300s Firmware | ||
| Netapp H300s | ||
| All of | ||
| Netapp H500s Firmware | ||
| Netapp H500s | ||
| All of | ||
| Netapp H700s Firmware | ||
| Netapp H700s | ||
| All of | ||
| Netapp H410s Firmware | ||
| Netapp H410s | ||
| Splunk Universal Forwarder | >=8.2.0<8.2.12 | |
| Splunk Universal Forwarder | >=9.0.0<9.0.6 | |
| Splunk Universal Forwarder | =9.1.0 | |
| Netapp H300s Firmware | ||
| Netapp H300s | ||
| Netapp H500s Firmware | ||
| Netapp H500s | ||
| Netapp H700s Firmware | ||
| Netapp H700s | ||
| Netapp H410s Firmware | ||
| Netapp H410s |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID of this vulnerability?
The vulnerability ID of this vulnerability is CVE-2023-27537.
What is the severity rating of CVE-2023-27537?
The severity rating of CVE-2023-27537 is medium.
What is affected by CVE-2023-27537?
Libcurl versions 7.88.0 and 7.88.1 are affected by CVE-2023-27537.
How can I mitigate CVE-2023-27537?
To mitigate CVE-2023-27537, it is recommended to update libcurl to version 8.0.0 or later.
Where can I find more information about CVE-2023-27537?
You can find more information about CVE-2023-27537 in the following references: [HackerOne report](https://hackerone.com/reports/1897203), [Gentoo security advisory](https://security.gentoo.org/glsa/202310-12), [NetApp advisory](https://security.netapp.com/advisory/ntap-20230420-0010/).
- agent/author
- agent/weakness
- agent/type
- agent/first-publish-date
- agent/references
- agent/severity
- agent/description
- agent/event
- collector/ibm-support
- source/IBM
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- agent/last-modified-date
- agent/tags
- agent/softwarecombine
- collector/nvd-api
- source/NVD
- collector/nvd-index
- vendor/ibm
- canonical/ibm ibm® engineering requirements management doors
- version/ibm ibm® engineering requirements management doors/9.7.2.7
- canonical/ibm ibm® engineering requirements management doors web access
- version/ibm ibm® engineering requirements management doors web access/9.7.2.7
- vendor/haxx
- canonical/haxx libcurl
- version/haxx libcurl/7.88.0
- version/haxx libcurl/7.88.1
- vendor/netapp
- canonical/netapp active iq unified manager vmware vsphere
- canonical/netapp clustered data ontap
- version/netapp clustered data ontap/9.0
- vendor/broadcom
- canonical/broadcom brocade fabric operating system firmware
- canonical/netapp h300s firmware
- canonical/netapp h300s
- canonical/netapp h500s firmware
- canonical/netapp h500s
- canonical/netapp h700s firmware
- canonical/netapp h700s
- canonical/netapp h410s firmware
- canonical/netapp h410s
- vendor/splunk
- canonical/splunk universal forwarder
- version/splunk universal forwarder/8.2.0
- version/splunk universal forwarder/9.0.0
- version/splunk universal forwarder/9.1.0