Wind River Support Network


LIN1021-4257 : Security Advisory - curl - CVE-2022-35252

Created: Sep 3, 2022    Updated: Oct 19, 2022
Found In Version:
Severity: Standard
Applicable for: Wind River Linux LTS 21
Component/s: Userspace


When curl is used to retrieve and parse cookies from a HTTP(S) server, itaccepts cookies using control codes that when later are sent back to a HTTPserver might make the server return 400 responses. Effectively allowing asister site to deny service to all siblings.
Live chat