PT-2023-2338 · Libcurl+9 · Libcurl+9

Nyymi

·

Published

2023-03-20

·

Updated

2026-05-18

·

CVE-2023-27538

CVSS v3.1

7.7

High

VectorAV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
Name of the Vulnerable Software and Affected Versions libcurl versions prior to 8.0.0
Description An authentication bypass issue exists where libcurl reuses a previously established SSH connection despite the fact that an SSH option was modified. This occurs because libcurl maintains a pool of previously used connections to reuse them for subsequent transfers if the configurations match. However, two SSH settings were omitted from the configuration check, allowing them to match easily and potentially leading to the reuse of an inappropriate connection.
Recommendations For libcurl versions prior to 8.0.0, update to version 8.0.0 or later to resolve the issue. As a temporary workaround, consider disabling the reuse of previously established SSH connections until a patch is available. Restrict access to SSH settings to minimize the risk of exploitation. Avoid using modified SSH options in the affected libcurl versions until the issue is resolved.

Exploit

Fix

DoS

Improper Authentication

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-305CWE-287

Related Identifiers

ALSA-2023:6679
ALT-PU-2023-1475
ALT-PU-2023-1501
ALT-PU-2023-5727
AZL-25786
AZL-25803
AZL-25808
AZL-25848
AZL-34613
AZL-38257
BDU:2023-02103
CLEANSTART-2026-AY18527
CLEANSTART-2026-BW46578
CLEANSTART-2026-DI23929
CLEANSTART-2026-LQ42192
CLEANSTART-2026-OF85770
CVE-2023-27538
DLA-3398-1
MGASA-2023-0263
OESA-2023-1193
OESA-2023-1194
OESA-2023-1195
OESA-2023-1196
OPENSUSE-SU-2024:12812-1
RHSA-2023:6679
RHSA-2023_6679
SUSE-SU-2023:0865-1
SUSE-SU-2023:1582-1
SUSE-SU-2023:1711-1
SUSE-SU-2023:2226-1
SUSE-SU-2023:2228-1
USN-5964-1

Affected Products

Alt Linux
Almalinux
Astra Linux
Ibm Aix
Linuxmint
Red Hat
Red Os
Suse
Ubuntu
Libcurl