SUSE update for curl
| Risk | Medium |
| Patch available | YES |
| Number of vulnerabilities | 2 |
| CVE-ID | CVE-2024-6197 CVE-2024-7264 |
| CWE-ID | CWE-415 CWE-125 |
| Exploitation vector | Network |
| Public exploit | N/A |
| Vulnerable software |
Basesystem Module Operating systems & Components / Operating system SUSE Linux Enterprise Real Time 15 Operating systems & Components / Operating system openSUSE Leap Operating systems & Components / Operating system SUSE Linux Enterprise Server for SAP Applications 15 Operating systems & Components / Operating system SUSE Linux Enterprise Server 15 Operating systems & Components / Operating system SUSE Linux Enterprise Desktop 15 Operating systems & Components / Operating system libcurl4-32bit-debuginfo Operating systems & Components / Operating system package or component libcurl-devel-32bit Operating systems & Components / Operating system package or component libcurl4-32bit Operating systems & Components / Operating system package or component libcurl-devel Operating systems & Components / Operating system package or component curl-debuginfo Operating systems & Components / Operating system package or component libcurl4 Operating systems & Components / Operating system package or component curl Operating systems & Components / Operating system package or component curl-debugsource Operating systems & Components / Operating system package or component libcurl4-debuginfo Operating systems & Components / Operating system package or component libcurl4-64bit-debuginfo Operating systems & Components / Operating system package or component libcurl4-64bit Operating systems & Components / Operating system package or component libcurl-devel-64bit Operating systems & Components / Operating system package or component |
| Vendor | SUSE |
Security Bulletin
This security bulletin contains information about 2 vulnerabilities.
1) Double free
EUVDB-ID: #VU94715
Risk: Medium
CVSSv4.0: 6.9 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2024-6197
CWE-ID:
CWE-415 - Double Free
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to a boundary error in ASN1 parser within the utf8asn1str() function. A remote attacker can pass specially crafted TLS certificate to the application, trigger double free error and execute arbitrary code on the target system.
The vulnerable code can only be reached when curl is built to use GnuTLS, wolfSSL, Schannel or Secure Transport.
MitigationUpdate the affected package curl to the latest version.
Vulnerable software versionsBasesystem Module: 15-SP6
SUSE Linux Enterprise Real Time 15: SP6
openSUSE Leap: 15.6
SUSE Linux Enterprise Server for SAP Applications 15: SP6
SUSE Linux Enterprise Server 15: SP6
SUSE Linux Enterprise Desktop 15: SP6
libcurl4-32bit-debuginfo: before 8.6.0-150600.4.3.1
libcurl-devel-32bit: before 8.6.0-150600.4.3.1
libcurl4-32bit: before 8.6.0-150600.4.3.1
libcurl-devel: before 8.6.0-150600.4.3.1
curl-debuginfo: before 8.6.0-150600.4.3.1
libcurl4: before 8.6.0-150600.4.3.1
curl: before 8.6.0-150600.4.3.1
curl-debugsource: before 8.6.0-150600.4.3.1
libcurl4-debuginfo: before 8.6.0-150600.4.3.1
libcurl4-64bit-debuginfo: before 8.6.0-150600.4.3.1
libcurl4-64bit: before 8.6.0-150600.4.3.1
libcurl-devel-64bit: before 8.6.0-150600.4.3.1
CPE2.3- cpe:2.3:o:suse:basesystem_module:15-SP6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_real_time_15:SP6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:opensuse_leap:15.6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_15:SP6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_desktop_15:SP6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:libcurl4-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:o:suse:libcurl-devel-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:o:suse:libcurl4-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:o:suse:libcurl-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:o:suse:curl-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:o:suse:libcurl4:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:o:suse:curl:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:o:suse:curl-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:o:suse:libcurl4-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:o:suse:libcurl4-64bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:o:suse:libcurl4-64bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:o:suse:libcurl-devel-64bit:*:*:*:*:*:suse_linux:*:*
http://www.suse.com/support/update/announcement/2024/suse-su-20242784-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
2) Out-of-bounds read
EUVDB-ID: #VU95131
Risk: Medium
CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2024-7264
CWE-ID:
CWE-125 - Out-of-bounds read
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to a boundary condition within the ASN1 parser code in the GTime2str() function. A remote attacker can trigger an out-of-bounds read error and cause a denial of service condition on the system.
MitigationUpdate the affected package curl to the latest version.
Vulnerable software versionsBasesystem Module: 15-SP6
SUSE Linux Enterprise Real Time 15: SP6
openSUSE Leap: 15.6
SUSE Linux Enterprise Server for SAP Applications 15: SP6
SUSE Linux Enterprise Server 15: SP6
SUSE Linux Enterprise Desktop 15: SP6
libcurl4-32bit-debuginfo: before 8.6.0-150600.4.3.1
libcurl-devel-32bit: before 8.6.0-150600.4.3.1
libcurl4-32bit: before 8.6.0-150600.4.3.1
libcurl-devel: before 8.6.0-150600.4.3.1
curl-debuginfo: before 8.6.0-150600.4.3.1
libcurl4: before 8.6.0-150600.4.3.1
curl: before 8.6.0-150600.4.3.1
curl-debugsource: before 8.6.0-150600.4.3.1
libcurl4-debuginfo: before 8.6.0-150600.4.3.1
libcurl4-64bit-debuginfo: before 8.6.0-150600.4.3.1
libcurl4-64bit: before 8.6.0-150600.4.3.1
libcurl-devel-64bit: before 8.6.0-150600.4.3.1
CPE2.3- cpe:2.3:o:suse:basesystem_module:15-SP6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_real_time_15:SP6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:opensuse_leap:15.6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_15:SP6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_desktop_15:SP6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:libcurl4-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:o:suse:libcurl-devel-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:o:suse:libcurl4-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:o:suse:libcurl-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:o:suse:curl-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:o:suse:libcurl4:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:o:suse:curl:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:o:suse:curl-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:o:suse:libcurl4-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:o:suse:libcurl4-64bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:o:suse:libcurl4-64bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:o:suse:libcurl-devel-64bit:*:*:*:*:*:suse_linux:*:*
http://www.suse.com/support/update/announcement/2024/suse-su-20242784-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
