libcURL up to 8.9.0 ASN1 Parser GTime2str out-of-bounds

Summaryinfo

A vulnerability was found in libcURL. It has been classified as problematic. This vulnerability affects the function GTime2str of the component ASN1 Parser. Performing a manipulation results in out-of-bounds. This vulnerability was named CVE-2024-7264. There is no available exploit.

Detailsinfo

A vulnerability, which was classified as problematic, was found in libcURL. This affects the function GTime2str of the component ASN1 Parser. The manipulation with an unknown input leads to a out-of-bounds vulnerability. CWE is classifying the issue as CWE-125. The product reads data past the end, or before the beginning, of the intended buffer. This is going to have an impact on confidentiality, integrity, and availability. The summary by CVE is:

libcurl's ASN1 parser code has the `GTime2str()` function, used for parsing an ASN.1 Generalized Time field. If given an syntactically incorrect field, the parser might end up using -1 for the length of the *time fraction*, leading to a `strlen()` getting performed on a pointer to a heap buffer area that is not (purposely) null terminated. This flaw most likely leads to a crash, but can also lead to heap contents getting returned to the application when [CURLINFO_CERTINFO](https://curl.se/libcurl/c/CURLINFO_CERTINFO.html) is used.

The weakness was presented by Dov Murik. It is possible to read the advisory at curl.se. This vulnerability is uniquely identified as CVE-2024-7264 since 07/30/2024. Technical details of the vulnerability are known, but there is no available exploit.

The vulnerability scanner Nessus provides a plugin with the ID 207713 (Nessus Network Monitor < 6.5.0 Multiple Vulnerabilities (TNS-2024-17)), which helps to determine the existence of the flaw in a target environment.

There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.

The vulnerability is also documented in the databases at Tenable (207713) and CERT Bund (WID-SEC-2025-2838). Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Affected

• Apple macOS

Productinfo

Type

• Network Utility Software

Name

• libcURL

Version

• 7.32.0
• 7.33.0
• 7.34.0
• 7.35.0
• 7.36.0
• 7.37.0
• 7.37.1
• 7.38.0
• 7.39.0
• 7.40.0
• 7.41.0
• 7.42.0
• 7.42.1
• 7.43.0
• 7.44.0
• 7.45.0
• 7.46.0
• 7.47.0
• 7.47.1
• 7.48.0
• 7.49.0
• 7.49.1
• 7.50.0
• 7.50.1
• 7.50.2
• 7.50.3
• 7.51.0
• 7.52.0
• 7.52.1
• 7.53.0
• 7.53.1
• 7.54.0
• 7.54.1
• 7.55.0
• 7.55.1
• 7.56.0
• 7.56.1
• 7.57.0
• 7.58.0
• 7.59.0
• 7.60.0
• 7.61.0
• 7.61.1
• 7.62.0
• 7.63.0
• 7.64.0
• 7.64.1
• 7.65.0
• 7.65.1
• 7.65.2
• 7.65.3
• 7.66.0
• 7.67.0
• 7.68.0
• 7.69.0
• 7.69.1
• 7.70.0
• 7.71.0
• 7.71.1
• 7.72.0
• 7.73.0
• 7.74.0
• 7.75.0
• 7.76.0
• 7.76.1
• 7.77.0
• 7.78.0
• 7.79.0
• 7.79.1
• 7.80.0
• 7.81.0
• 7.82.0
• 7.83.0
• 7.83.1
• 7.84.0
• 7.85.0
• 7.86.0
• 7.87.0
• 7.88.0
• 7.88.1
• 8.0.0
• 8.0.1
• 8.1.0
• 8.1.1
• 8.1.2
• 8.2.0
• 8.2.1
• 8.3.0
• 8.4.0
• 8.5.0
• 8.6.0
• 8.7.0
• 8.7.1
• 8.8.0
• 8.9.0

License

• open-source

CPE 2.3info

• 🔍
• 🔍
• 🔍

CPE 2.2info

• 🔍
• 🔍
• 🔍

CVSSv4info

CVSSv3info

CVSSv2info

Exploitinginfo

Threat Intelligenceinfo

Countermeasuresinfo

Timelineinfo

Sourcesinfo

Entryinfo

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Discussion