CVE-2022-27779 log

Severity Medium
Remote Unknown
Type Unknown
libcurl wrongly allows HTTP cookies to be set for Top Level Domains (TLDs) if the host name is provided with a trailing dot. This can allow arbitrary sites to set cookies that then would get sent to a different and unrelated site or domain.
Group Package Affected Fixed Severity Status Ticket
AVG-2706 curl 7.83.0-1 7.83.1-1 Medium Fixed
Affected versions: curl 7.82.0 to and including curl 7.83.0
Not affected versions: curl < 7.82.0 and curl >= 7.83.1