{"id":"CVE-2017-1000101","details":"curl supports \"globbing\" of URLs, in which a user can pass a numerical range to have the tool iterate over those numbers to do a sequence of transfers. In the globbing function that parses the numerical range, there was an omission that made curl read a byte beyond the end of the URL if given a carefully crafted, or just wrongly written, URL. The URL is stored in a heap based buffer, so it could then be made to wrongly read something else instead of crashing. An example of a URL that triggers the flaw would be `http://ur%20[0-60000000000000000000`.","aliases":["CURL-CVE-2017-1000101"],"modified":"2026-04-16T06:19:15.365546196Z","published":"2017-10-05T01:29:04.103Z","related":["SUSE-SU-2017:2174-1","SUSE-SU-2017:2699-1","SUSE-SU-2017:2700-1","openSUSE-SU-2024:10582-1"],"references":[{"type":"WEB","url":"https://support.apple.com/HT208221"},{"type":"ADVISORY","url":"http://www.debian.org/security/2017/dsa-3992"},{"type":"ADVISORY","url":"http://www.securityfocus.com/bid/100249"},{"type":"ADVISORY","url":"http://www.securitytracker.com/id/1039117"},{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2018:3558"},{"type":"REPORT","url":"https://curl.haxx.se/docs/adv_20170809A.html"},{"type":"REPORT","url":"https://security.gentoo.org/glsa/201709-14"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/curl/curl","events":[{"introduced":"0"},{"last_affected":"f6163b375f0aeec85172e93823078de86bdd7bf1"},{"introduced":"0"},{"last_affected":"2bf90d071016e279796e789f0ac223d635671a41"},{"introduced":"0"},{"last_affected":"4f041c9d6e61829310eb0715d8edb2a232478123"},{"introduced":"0"},{"last_affected":"3fed9acaef45ac8b99ceecc38afbed3494e2d3ef"},{"introduced":"0"},{"last_affected":"df5169fa35f31ebe10893f2a3416ec8e8d8faa20"},{"introduced":"0"},{"last_affected":"202aa9f7758636730299b86715d924f54468a908"},{"introduced":"0"},{"last_affected":"303bfc1024d948a5ba134ccfc106f82c0b4fd675"},{"introduced":"0"},{"last_affected":"9ce2d7001939b795b45a8ce7700d1a3dcde0475d"},{"introduced":"0"},{"last_affected":"ff837422ee4ec7d6aea7750a40e30cba29db93e8"},{"introduced":"0"},{"last_affected":"22691f849ac959ffaa821a3ca7f746ee54bd5e52"},{"introduced":"0"},{"last_affected":"4feb6e6d035d5d66984957c8ca22bc9a05df527f"},{"introduced":"0"},{"last_affected":"38e07886ed2792988217a2ffa482ce3a69ca92c2"},{"introduced":"0"},{"last_affected":"1a7f66a3de2625d10f65415e6eb3e56067dc0555"},{"introduced":"0"},{"last_affected":"2c000d91f3c423cee0af44e8afc79b9d25a9e714"},{"introduced":"0"},{"last_affected":"e2ae32ff5f3ab6f0819590f61f248f17df12987f"},{"introduced":"0"},{"last_affected":"06bf874bbca0a5c600b210b5db920eff9f95f0d0"},{"introduced":"0"},{"last_affected":"8f995e2e0022292374fc99a2277069b08ad98b5c"},{"introduced":"0"},{"last_affected":"9819cec61b00cc872136ea5faf469627b3b87e69"},{"introduced":"0"},{"last_affected":"67fe54d918a3b42a24cb7f5db81514c10e239735"},{"introduced":"0"},{"last_affected":"cf93a7b364a70b56150cf6ea77492b799ec02a45"},{"introduced":"0"},{"last_affected":"79e63a53bb9598af863b0afe49ad662795faeef4"},{"introduced":"0"},{"last_affected":"f2cb3a01192d36395d16acec6cdb93446ca6fd45"},{"introduced":"0"},{"last_affected":"9ce6d0d52821c6e33506cb173f0e27c68014e60e"},{"introduced":"0"},{"last_affected":"8986c86e1ef297e95518ae4695339f2d64d913cf"},{"introduced":"0"},{"last_affected":"3c561c657c2f0e553b19115a506592a8bbd744bc"},{"introduced":"0"},{"last_affected":"95c717bbd9c327c38b4efcc37d5cda29b8ee2a36"},{"introduced":"0"},{"last_affected":"44b9b4d4f56d6f6de92c89636994c03984e9cd01"},{"introduced":"0"},{"last_affected":"a7135ac3c3d825ec9f4919ee0212434e01e76b4c"},{"introduced":"0"},{"last_affected":"25df50aa3392ecdbf2b8256b93b30558e8b3a810"},{"introduced":"0"},{"last_affected":"d957e2189fdc73cef0ff3d1fb58043d354754449"},{"introduced":"0"},{"last_affected":"54b636f14546d3fde9f9c67c3b32701d78563161"},{"introduced":"0"},{"last_affected":"2679562dc7685674998f2841811d361400ae0d19"}],"database_specific":{"versions":[{"introduced":"0"},{"last_affected":"7.4.1"},{"introduced":"0"},{"last_affected":"7.35.0"},{"introduced":"0"},{"last_affected":"7.36.0"},{"introduced":"0"},{"last_affected":"7.37.0"},{"introduced":"0"},{"last_affected":"7.37.1"},{"introduced":"0"},{"last_affected":"7.38.0"},{"introduced":"0"},{"last_affected":"7.39.0"},{"introduced":"0"},{"last_affected":"7.40.0"},{"introduced":"0"},{"last_affected":"7.41.0"},{"introduced":"0"},{"last_affected":"7.42.0"},{"introduced":"0"},{"last_affected":"7.42.1"},{"introduced":"0"},{"last_affected":"7.43.0"},{"introduced":"0"},{"last_affected":"7.44.0"},{"introduced":"0"},{"last_affected":"7.45.0"},{"introduced":"0"},{"last_affected":"7.46.0"},{"introduced":"0"},{"last_affected":"7.47.0"},{"introduced":"0"},{"last_affected":"7.47.1"},{"introduced":"0"},{"last_affected":"7.48.0"},{"introduced":"0"},{"last_affected":"7.49.0"},{"introduced":"0"},{"last_affected":"7.49.1"},{"introduced":"0"},{"last_affected":"7.50.0"},{"introduced":"0"},{"last_affected":"7.50.1"},{"introduced":"0"},{"last_affected":"7.50.2"},{"introduced":"0"},{"last_affected":"7.50.3"},{"introduced":"0"},{"last_affected":"7.51.0"},{"introduced":"0"},{"last_affected":"7.52.0"},{"introduced":"0"},{"last_affected":"7.52.1"},{"introduced":"0"},{"last_affected":"7.53.0"},{"introduced":"0"},{"last_affected":"7.53.1"},{"introduced":"0"},{"last_affected":"7.54.0"},{"introduced":"0"},{"last_affected":"7.54.1"},{"introduced":"0"},{"last_affected":"7.55.0"}]}}],"versions":["before_ftp_statemachine","before_urldata_rename","curl-6_5","curl-6_5_1","curl-6_5_2","curl-7_10","curl-7_10_1","curl-7_10_2","curl-7_10_3","curl-7_10_4","curl-7_10_5","curl-7_10_6","curl-7_10_7","curl-7_10_8","curl-7_11_0","curl-7_11_1","curl-7_11_2","curl-7_12_0","curl-7_12_1","curl-7_12_2","curl-7_12_3","curl-7_13_0","curl-7_13_1","curl-7_13_2","curl-7_14_0","curl-7_14_1","curl-7_15_0","curl-7_15_1","curl-7_15_2","curl-7_15_3","curl-7_15_4","curl-7_15_5","curl-7_15_6-prepipeline","curl-7_16_0","curl-7_16_1","curl-7_16_2","curl-7_16_3","curl-7_16_4","curl-7_17_0","curl-7_17_0-preldapfix","curl-7_17_1","curl-7_18_0","curl-7_18_1","curl-7_18_2","curl-7_19_0","curl-7_19_1","curl-7_19_2","curl-7_19_3","curl-7_19_4","curl-7_19_5","curl-7_19_6","curl-7_19_7","curl-7_1_1","curl-7_2","curl-7_20_0","curl-7_20_1","curl-7_21_0","curl-7_21_1","curl-7_21_2","curl-7_21_3","curl-7_21_4","curl-7_21_5","curl-7_21_6","curl-7_21_7","curl-7_22_0","curl-7_23_0","curl-7_23_1","curl-7_25_0","curl-7_26_0","curl-7_27_0","curl-7_28_0","curl-7_28_1","curl-7_29_0","curl-7_3","curl-7_30_0","curl-7_31_0","curl-7_32_0","curl-7_33_0","curl-7_34_0","curl-7_35_0","curl-7_36_0","curl-7_37_0","curl-7_37_1","curl-7_38_0","curl-7_39_0","curl-7_40_0","curl-7_41_0","curl-7_42_0","curl-7_42_1","curl-7_43_0","curl-7_44_0","curl-7_45_0","curl-7_46_0","curl-7_47_0","curl-7_47_1","curl-7_48_0","curl-7_49_0","curl-7_49_1","curl-7_4_1","curl-7_5","curl-7_50_0","curl-7_50_1","curl-7_50_2","curl-7_50_3","curl-7_51_0","curl-7_52_0","curl-7_52_1","curl-7_53_0","curl-7_53_1","curl-7_54_0","curl-7_54_1","curl-7_55_0","curl-7_5_2","curl-7_6","curl-7_6-pre4","curl-7_6_1","curl-7_6_1-pre1","curl-7_6_1-pre2","curl-7_6_1-pre3","curl-7_7","curl-7_7-beta1","curl-7_7-beta2","curl-7_7-beta3","curl-7_7-beta5","curl-7_7_1","curl-7_7_2","curl-7_7_3","curl-7_7_alpha2","curl-7_8","curl-7_8-pre2","curl-7_8_1","curl-7_8_1-pre3","curl-7_9","curl-7_9_1","curl-7_9_2","curl-7_9_3","curl-7_9_3-pre1","curl-7_9_3-pre2","curl-7_9_3-pre3","curl-7_9_4","curl-7_9_5","curl-7_9_5-pre2","curl-7_9_5-pre4","curl-7_9_6","curl-7_9_7","curl-7_9_7-pre2","curl-7_9_8","curl_7_6-pre3"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-1000101.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"}]}