CVE-2022-27781 log

Severity Low
Remote Unknown
Type Unknown
libcurl provides the `CURLOPT_CERTINFO` option to allow applications to request details to be returned about a TLS server's certificate chain. Due to an erroneous function, a malicious server could make libcurl built with NSS get stuck in a never-ending busy-loop when trying to retrieve that information
Group Package Affected Fixed Severity Status Ticket
AVG-2706 curl 7.83.0-1 7.83.1-1 Medium Fixed
Affected versions: curl 7.34.0 to and including 7.83.0
Not affected versions: curl < 7.34.0 and curl >= 7.83.1