CVE-2022-35260

Description

curl can be told to parse a `.netrc` file for credentials. If that file endsin a line with 4095 consecutive non-white space letters and no newline, curlwould first read past the end of the stack-based buffer, and if the readworks, write a zero byte beyond its boundary.This will in most cases cause a segfault or similar, but circumstances might also cause different outcomes.If a malicious user can provide a custom netrc file to an application or otherwise affect its contents, this flaw could be used as denial-of-service.

How to fix CVE-2022-35260

To remediate CVE-2022-35260, upgrade the affected package to a fixed version below.

—upgrade to 7.86.0-r0 or later
—upgrade to 7.86.0-1 or later

Is CVE-2022-35260 being exploited?

Low — EPSS is 0.3%, meaning exploitation activity has not been observed at scale.

Affected packages (2)

from 0, < 7.86.0-r0
from 0, < 7.86.0-1

CVSS scores

Source	Version	Severity	Vector
osv	CVSS 3.1	MEDIUM6.5	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

References (2)

ADVISORYsecurity.alpinelinux.org/vuln/CVE-2022-35260
ADVISORYsecurity-tracker.debian.org/tracker/CVE-2022-35260