ГлавнаяУязвимости → CVE-2026-8925
9.8критическая

CVE-2026-8925

Описание

The curl logic that works with SASL authentication could end up cleaning up the GSASL context *twice* without clearing the pointer in between, making it `free()` the same pointer twice.

Затрагиваемое ПО
Haxx Curl
CVSS
Балл9.8 — критическая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
https://curl.se/docs/CVE-2026-8925.htmlhttps://curl.se/docs/CVE-2026-8925.jsonhttps://hackerone.com/reports/3735193https://hackerone.com/reports/3735193