CVE-2014-3707

The curl_easy_duphandle function in libcurl 7.17.1 through 7.38.0, when running with the CURLOPT_COPYPOSTFIELDS option, does not properly copy HTTP POST data for an easy handle, which triggers an out-of-bounds read that allows remote web servers to read sensitive memory information.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
4.3 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:P/I:N/A:N
redhatCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 75%
VendorProductVersion
canonicalubuntu_linux
10.04
canonicalubuntu_linux
12.04
canonicalubuntu_linux
14.04
canonicalubuntu_linux
14.10
applemac_os_x
10.10.0
applemac_os_x
10.10.1
applemac_os_x
10.10.2
applemac_os_x
10.10.3
applemac_os_x
10.10.4
opensuseopensuse
13.1
opensuseopensuse
13.2
oraclehyperion
11.1.2.2
oraclehyperion
11.1.2.3
debiandebian_linux
7.0
debiandebian_linux
8.0
haxxlibcurl
7.17.1
haxxlibcurl
7.18.0
haxxlibcurl
7.18.1
haxxlibcurl
7.18.2
haxxlibcurl
7.19.0
haxxlibcurl
7.19.1
haxxlibcurl
7.19.2
haxxlibcurl
7.19.3
haxxlibcurl
7.19.4
haxxlibcurl
7.19.5
haxxlibcurl
7.19.6
haxxlibcurl
7.19.7
haxxlibcurl
7.20.0
haxxlibcurl
7.20.1
haxxlibcurl
7.21.0
haxxlibcurl
7.21.1
haxxlibcurl
7.21.2
haxxlibcurl
7.21.3
haxxlibcurl
7.21.4
haxxlibcurl
7.21.5
haxxlibcurl
7.21.6
haxxlibcurl
7.21.7
haxxlibcurl
7.22.0
haxxlibcurl
7.23.0
haxxlibcurl
7.23.1
haxxlibcurl
7.24.0
haxxlibcurl
7.25.0
haxxlibcurl
7.26.0
haxxlibcurl
7.27.0
haxxlibcurl
7.28.0
haxxlibcurl
7.28.1
haxxlibcurl
7.29.0
haxxlibcurl
7.30.0
haxxlibcurl
7.31.0
haxxlibcurl
7.32.0
haxxlibcurl
7.33.0
haxxlibcurl
7.34.0
haxxlibcurl
7.35.0
haxxlibcurl
7.36.0
haxxlibcurl
7.37.0
haxxlibcurl
7.37.1
haxxlibcurl
7.38.0
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
curl
bullseye
7.74.0-1.3+deb11u13
fixed
bullseye (security)
7.74.0-1.3+deb11u11
fixed
bookworm
7.88.1-10+deb12u7
fixed
bookworm (security)
7.88.1-10+deb12u5
fixed
sid
8.10.1-2
fixed
trixie
8.10.1-2
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
curl
utopic
Fixed 7.37.1-1ubuntu3.1
released
trusty
Fixed 7.35.0-1ubuntu2.2
released
precise
Fixed 7.22.0-3ubuntu4.11
released
lucid
Fixed 7.19.7-1ubuntu1.10
released
Common Weakness Enumeration
References
http://curl.haxx.se/docs/adv_20141105.html
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10743
http://lists.apple.com/archives/security-announce/2015/Aug/msg00001.html
http://lists.opensuse.org/opensuse-updates/2015-02/msg00040.html
http://rhn.redhat.com/errata/RHSA-2015-1254.html
http://www.debian.org/security/2014/dsa-3069
http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html
http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html
http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html
http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html
http://www.securityfocus.com/bid/70988
http://www.ubuntu.com/usn/USN-2399-1
https://support.apple.com/kb/HT205031
http://curl.haxx.se/docs/adv_20141105.html
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10743
http://lists.apple.com/archives/security-announce/2015/Aug/msg00001.html
http://lists.opensuse.org/opensuse-updates/2015-02/msg00040.html
http://rhn.redhat.com/errata/RHSA-2015-1254.html
http://www.debian.org/security/2014/dsa-3069
http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html
http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html
http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html
http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html
http://www.securityfocus.com/bid/70988
http://www.ubuntu.com/usn/USN-2399-1
https://support.apple.com/kb/HT205031