CVE-2015-3145

Name of the Vulnerable Software and Affected Versions libcurl versions 7.31.0 through 7.41.0

Description The issue arises from the sanitize cookie path() function not properly validating input, specifically when encountering a cookie path containing only a double-quote character. This can lead to a denial of service (out-of-bounds write and crash) or potentially other unspecified impacts. The vulnerability is related to how libcurl handles HTTP cookies, particularly the "path" element associated with each cookie, as documented in RFC 6265. The problem occurs when libcurl is explicitly set to enable cookie parsing, and it can result in unnoticed memory corruption, a crash, or potentially worse outcomes.

Recommendations For libcurl versions 7.31.0 through 7.41.0, consider disabling cookie parsing until a fix is applied to prevent potential exploitation. As a temporary workaround, avoid using the sanitize cookie path() function or restrict its use to minimize the risk of memory corruption or crashes.