{"id":"CURL-CVE-2022-27775","summary":"Bad local IPv6 connection reuse","details":"libcurl keeps previously used connections in a connection pool for subsequent\ntransfers to reuse, if one of them matches the setup.\n\nDue to errors in the logic, the config matching function did not take the IPv6\naddress zone id into account which could lead to libcurl reusing the wrong\nconnection when one transfer uses a zone id and a subsequent transfer uses\nanother (or no) zone id.","aliases":["CVE-2022-27775"],"modified":"2026-04-25T20:38:40.470423Z","published":"2022-04-27T08:00:00Z","database_specific":{"CWE":{"id":"CWE-200","desc":"Exposure of Sensitive Information to an Unauthorized Actor"},"package":"curl","severity":"Low","www":"https://curl.se/docs/CVE-2022-27775.html","award":{"amount":"480","currency":"USD"},"URL":"https://curl.se/docs/CVE-2022-27775.json","issue":"https://hackerone.com/reports/1546268","affects":"both","last_affected":"7.82.0"},"affected":[{"ranges":[{"type":"SEMVER","events":[{"introduced":"7.65.0"},{"fixed":"7.83.0"}]},{"type":"GIT","repo":"https://github.com/curl/curl.git","events":[{"introduced":"2d0e9b40d3237b1450cbbfbcb996da244d964898"},{"fixed":"058f98dc3fe595f21dc26a5b9b1699e519ba5705"}]}],"versions":["7.82.0","7.81.0","7.80.0","7.79.1","7.79.0","7.78.0","7.77.0","7.76.1","7.76.0","7.75.0","7.74.0","7.73.0","7.72.0","7.71.1","7.71.0","7.70.0","7.69.1","7.69.0","7.68.0","7.67.0","7.66.0","7.65.3","7.65.2","7.65.1","7.65.0"],"database_specific":{"vanir_signatures_modified":"2026-04-25T20:38:40Z","source":"https://curl.se/docs/CURL-CVE-2022-27775.json","vanir_signatures":[{"signature_type":"Function","id":"CURL-CVE-2022-27775-5e38373e","digest":{"function_hash":"64367765119075779025553468148609500840","length":551},"deprecated":false,"target":{"function":"hashkey","file":"lib/conncache.c"},"signature_version":"v1","source":"https://github.com/curl/curl.git/commit/058f98dc3fe595f21dc26a5b9b1699e519ba5705"},{"signature_type":"Line","id":"CURL-CVE-2022-27775-abbd0061","digest":{"line_hashes":["248884389636476368898680322381896570386","147333169977412059953814330311619140236","241286620235946974910977415580361700039","317199225891431119959600727241273204395"],"threshold":0.9},"deprecated":false,"target":{"file":"lib/conncache.c"},"signature_version":"v1","source":"https://github.com/curl/curl.git/commit/058f98dc3fe595f21dc26a5b9b1699e519ba5705"}]}}],"schema_version":"1.7.5","credits":[{"name":"Harry Sintonen","type":"FINDER"},{"name":"Daniel Stenberg","type":"REMEDIATION_DEVELOPER"}]}