hackerone - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
NONE	H1:3473182	curl: A logic error in detect_proxy caused truncation of environment variable names for long protocol schemes._H1:3473182 In lib/url.c, the detect_proxy function uses a fixed-size buffer, proxy_env[20], to construct proxy environment variable names (e.g., http_proxy). ...	N/A	N/A	Dec 20, 2025	HACKERONE
NONE	H1:3473384	curl: Functional Regression in Digest Authentication: Failure to handle optional spaces and escaped quotes_H1:3473384 Summary A recent migration of the Digest authentication parsing logic to the curlx_str (strparse) API introduced two functional parsing regressions...	N/A	N/A	Dec 20, 2025	HACKERONE
NONE	H1:3471553	curl: Unbounded memory consumption via compressed HTTP responses (gzip/brotli/zstd)_H1:3471553 During a review of curl's handling of response decompression, it was noticed that no limit exists on the final uncompressed data volume from compre...	N/A	N/A	Dec 19, 2025	HACKERONE
NONE	H1:3470095	curl: Heap Buffer Over-Read via Malicious SMB Server READ_ANDX Response_H1:3470095 ================================================================================ DESCRIPTION: =====================================================...	N/A	N/A	Dec 18, 2025	HACKERONE
NONE	H1:3470649	curl: File URL UNC Path Access (Windows SSRF)_H1:3470649 ## Vulnerability Details - CVSSv3: 7.5 (High) - Windows only - File: `lib/urlapi.c:974-1030` - Issue: Windows file:// URLs accept UNC p...	N/A	N/A	Dec 18, 2025	HACKERONE
NONE	H1:3468098	curl: Certificate Pinning Bypass with wolfSSL backend over HTTP/3_H1:3468098 ## Summary: A security feature bypass exists in `libcurl` when built with the wolfSSL backend and HTTP/3 support. The Certificate Pinning f...	N/A	N/A	Dec 16, 2025	HACKERONE
NONE	H1:3468410	curl: Heap buffer overflow in Curl_ipv4_resolve_r due to incorrect buffer alignment and size calculation on AmigaOS_H1:3468410 Summary: A heap-based buffer overflow exists in the AmigaOS-specific DNS resolution function Curl_ipv4_resolve_r located in lib/amigaos.c. The fu...	N/A	N/A	Dec 17, 2025	HACKERONE
NONE	H1:3466883	curl: Curl Alt-Svc Parser Stack Buffer Overflow_H1:3466883 # cURL Alt-Svc Parser Stack Buffer Overflow Vulnerability Analysis ## In Simple Terms A critical security flaw was discovered in cURL (versions 7...	N/A	N/A	Dec 16, 2025	HACKERONE
NONE	H1:3466896	curl: Heap Overflow in cURL AmigaOS Socket Implementation_H1:3466896 Buffer Overflow in cURL AmigaOS Socket Implementation ## Report Metadata - Report ID: H1-CURL-AMIGAOS-001 - Report Title: Heap Bu...	N/A	N/A	Dec 16, 2025	HACKERONE
NONE	H1:3465094	curl: Path Traversal Bypass in file:// URLs Due to Incomplete URL-Encoded Path Normalization_H1:3465094 ## Summary: The `dedotdotify()` function in `lib/urlapi.c` is responsible for removing path traversal sequences (`../` and `./`) from URLs accordi...	N/A	N/A	Dec 15, 2025	HACKERONE