A malicious server can serve excessive amounts of `Set-Cookie:` headers in a HTTP response to curl and curl < 7.84.0 stores all of them. A sufficiently large amount of (big) cookies make subsequent HTTP requests to this or other servers to which the cookies match create requests that become larger than the threshold that curl uses internally to avoid sending crazy large requests (1048576 bytes) and instead returns an error.This denial state might remain for as long as the same cookies are kept match and haven't expired. Due to cookie matching rules a server on `foo.example.com` can set cookies that also would match for `bar.example.com` making it it possible for a "sister server" to effectively cause a denial of service for a sibling site on the same second level domain using this method. — CVE-2022-32205

Zusammenfassung

Sicherheitshinweis CVE-2022-32205. A malicious server can serve excessive amounts of `Set-Cookie:` headers in a HTTP response to curl and curl < 7.84.0 stores all of… Hersteller: Microsoft. Quelle: MSRC. Risiko: medium. CVSS 4.3.…

Was tun?

Allgemeine, vorsichtige Schritte (bitte prüfe die offizielle Quelle für Details):

• Prüfe Exponierung und plane Maßnahmen nach Risiko und Umfeld.
• Identifiziere betroffene Produktversionen und prüfe, ob du betroffen bist.
• Spiele Hersteller-Updates/Patches ein oder setze empfohlene Mitigations um.
• Lies das offizielle Advisory für betroffene Versionen und konkrete Schritte.

Offizielles Advisory

Zur offiziellen Quelle

Mehr dazu

• <vuln:Note Title="Mariner" Type="Tag" Ordinal="20">Mariner CVE-2022-2058
• <vuln:Note Title="Mariner" Type="Tag" Ordinal="20">Mariner CVE-2022-1852
• <vuln:Note Title="Mariner" Type="Tag" Ordinal="20">Mariner CVE-2022-2056
• <vuln:Note Title="Mariner" Type="Tag" Ordinal="20">Mariner CVE-2022-2057
• <vuln:Note Title="Mariner" Type="Tag" Ordinal="20">Mariner CVE-2022-2078
• <vuln:Note Title="Mariner" Type="Tag" Ordinal="20">Mariner CVE-2022-2208
• <vuln:Note Title="Mariner" Type="Tag" Ordinal="20">Mariner CVE-2022-34495
• <vuln:Note Title="Mariner" Type="Tag" Ordinal="20">Mariner CVE-2022-34494
• A memory leak vulnerability was found in the Linux kernel's eBPF for the Simulated networking device driver in the way user uses BPF for the device such that function nsim_map_alloc_elem being called. A local user could use this flaw to get unauthorized access to some data. CVE-2021-4135
• A null pointer dereference bug was found in wavpack-5.4.0 The results from the ASAN log: AddressSanitizer:DEADLYSIGNAL ===================================================================84257==ERROR: AddressSanitizer: SEGV on unknown address 0x000000000000 (pc 0x561b47a970c6 bp 0x7fff13952fb0 sp 0x7fff1394fca0 T0) ==84257==The signal is caused by a WRITE memory access. ==84257==Hint: address points to the zero page. #0 0x561b47a970c5 in main cli/wvunpack.c:834 #1 0x7efc4f5c0082 in __libc_start_main (/lib/x86_64-linux-gnu/libc.so.6+0x24082) #2 0x561b47a945ed in _start (/usr/local/bin/wvunpack+0xa5ed) AddressSanitizer can not provide additional info. SUMMARY: AddressSanitizer: SEGV cli/wvunpack.c:834 in main ==84257==ABORTING CVE-2022-2476
• A stack overflow was discovered in the _TIFFVGetField function of Tiffsplit v4.4.0. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted TIFF file parsed by the "tiffsplit" or "tiffcrop" utilities. CVE-2022-34526
• An issue was discovered in NASM version 2.16rc0. There are memory leaks in nasm_calloc() in nasmlib/alloc.c. CVE-2021-33450