CVE-2022-32206

Published: Jul 7, 2022Modified: May 5, 2025

6.5

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Exploitability: 2.8 / Impact: 3.6

Source: NVD

Description

curl < 7.84.0 supports "chained" HTTP compression algorithms, meaning that a serverresponse can be compressed multiple times and potentially with different algorithms. The number of acceptable "links" in this "decompression chain" was unbounded, allowing a malicious server to insert a virtually unlimited number of compression steps.The use of such a decompression chain could result in a "malloc bomb", makingcurl end up spending enormous amounts of allocated heap memory, or trying toand returning out of memory errors.

Affected (22)

Products: Haxx: Curl · Fedoraproject: Fedora · Debian: Debian Linux · +3 more

Show all products

1 product

1 product

1 product

9 products

6 products

Scalance Sc622 2c Firmware

Scalance Sc626 2c Firmware

Scalance Sc632 2c Firmware

Scalance Sc636 2c Firmware

Scalance Sc642 2c Firmware

Scalance Sc646 2c Firmware

Splunk

1 product

Universal Forwarder

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Haxx Curl	Before 7.84.0

Configuration B

1 vulnerable

Vulnerable Software	Affected Versions
Fedoraproject Fedora	Version 35

Configuration C

2 vulnerable

Vulnerable Software	Affected Versions
Debian Debian Linux	Version 10.0
Debian Debian Linux	Version 11.0

Configuration D

4 vulnerable

Vulnerable Software	Affected Versions
Netapp Clustered Data Ontap	All versions
Netapp Element Software	All versions
Netapp Hci Management Node	All versions
Netapp Solidfire	All versions

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netapp Bootstrap Os	All versions

Running on/with	Platform Versions
Netapp Hci Compute Node	All versions

Configuration F

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netapp H300s Firmware	All versions

Running on/with	Platform Versions
Netapp H300s	All versions

Configuration G

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netapp H500s Firmware	All versions

Running on/with	Platform Versions
Netapp H500s	All versions

Configuration H

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netapp H700s Firmware	All versions

Running on/with	Platform Versions
Netapp H700s	All versions

Configuration I

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Netapp H410s Firmware	All versions

Running on/with	Platform Versions
Netapp H410s	All versions

Configuration J

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Siemens Scalance Sc622 2c Firmware	Before 3.0

Running on/with	Platform Versions
Siemens Scalance Sc622 2c	All versions

Configuration K

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Siemens Scalance Sc626 2c Firmware	Before 3.0

Running on/with	Platform Versions
Siemens Scalance Sc626 2c	All versions

Configuration L

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Siemens Scalance Sc632 2c Firmware	Before 3.0

Running on/with	Platform Versions
Siemens Scalance Sc632 2c	All versions

Configuration M

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Siemens Scalance Sc636 2c Firmware	Before 3.0

Running on/with	Platform Versions
Siemens Scalance Sc636 2c	All versions

Configuration N

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Siemens Scalance Sc642 2c Firmware	Before 3.0

Running on/with	Platform Versions
Siemens Scalance Sc642 2c	All versions

Configuration O

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Siemens Scalance Sc646 2c Firmware	Before 3.0

Running on/with	Platform Versions
Siemens Scalance Sc646 2c	All versions

Configuration P

3 vulnerable

Vulnerable Software	Affected Versions
Splunk Universal Forwarder	From 8.2.0 to 8.2.12
Splunk Universal Forwarder	From 9.0.0 to 9.0.6
Splunk Universal Forwarder	Version 9.1.0

Related CWEs

CWE-770

Allocation of Resources Without Limits or Throttling

The product allocates a reusable resource or group of resources on behalf of an actor without imposing any restrictions on the size or number of resources that can be allocated, in violation of the intended security policy for that actor.

References (22)

http://seclists.org/fulldisclosure/2022/Oct/28

Source: support@hackerone.com

Mailing ListThird Party Advisory

http://seclists.org/fulldisclosure/2022/Oct/41

Source: support@hackerone.com

Mailing ListThird Party Advisory

http://www.openwall.com/lists/oss-security/2023/02/15/3

Source: support@hackerone.com

Mailing ListThird Party Advisory

https://cert-portal.siemens.com/productcert/pdf/ssa-333517.pdf

Source: support@hackerone.com

PatchThird Party Advisory

https://hackerone.com/reports/1570651

Source: support@hackerone.com

ExploitThird Party Advisory

https://lists.debian.org/debian-lts-announce/2022/08/msg00017.html

Source: support@hackerone.com

Mailing ListThird Party Advisory

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BEV6BR4MTI3CEWK2YU2HQZUW5FAS3FEY/

Source: support@hackerone.com

Mailing ListThird Party Advisory

https://security.gentoo.org/glsa/202212-01

Source: support@hackerone.com

Third Party Advisory

https://security.netapp.com/advisory/ntap-20220915-0003/

Source: support@hackerone.com

Third Party Advisory

https://support.apple.com/kb/HT213488

Source: support@hackerone.com

Third Party Advisory

https://www.debian.org/security/2022/dsa-5197

Source: support@hackerone.com

Third Party Advisory

http://seclists.org/fulldisclosure/2022/Oct/28