{"id":"CVE-2022-35260","details":"curl can be told to parse a `.netrc` file for credentials. If that file endsin a line with 4095 consecutive non-white space letters and no newline, curlwould first read past the end of the stack-based buffer, and if the readworks, write a zero byte beyond its boundary.This will in most cases cause a segfault or similar, but circumstances might also cause different outcomes.If a malicious user can provide a custom netrc file to an application or otherwise affect its contents, this flaw could be used as denial-of-service.","aliases":["CURL-CVE-2022-35260"],"modified":"2026-04-02T08:04:15.942983Z","published":"2022-12-05T22:15:10.743Z","related":["openSUSE-SU-2024:12447-1"],"references":[{"type":"ADVISORY","url":"https://security.gentoo.org/glsa/202212-01"},{"type":"ADVISORY","url":"https://security.netapp.com/advisory/ntap-20230110-0006/"},{"type":"ADVISORY","url":"https://support.apple.com/kb/HT213604"},{"type":"ADVISORY","url":"https://support.apple.com/kb/HT213605"},{"type":"ADVISORY","url":"http://seclists.org/fulldisclosure/2023/Jan/19"},{"type":"ADVISORY","url":"http://seclists.org/fulldisclosure/2023/Jan/20"},{"type":"FIX","url":"https://hackerone.com/reports/1721098"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/curl/curl","events":[{"introduced":"45ac4d019475df03562fe0ac54eb67e1d1de0ca7"},{"fixed":"cd95ee9f771361acf241629d2fe5507e308082a2"}],"database_specific":{"versions":[{"introduced":"7.84.0"},{"fixed":"7.86.0"}]}}],"versions":["curl-7_84_0","curl-7_85_0"],"database_specific":{"unresolved_ranges":[{"events":[{"introduced":"0"},{"fixed":"12.6.3"}]},{"events":[{"introduced":"8.2.0"},{"fixed":"8.2.12"}]},{"events":[{"introduced":"9.0.0"},{"fixed":"9.0.6"}]},{"events":[{"introduced":"0"},{"last_affected":"9.1.0"}]}],"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-35260.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}]}