Lucene search
K

6 matches found

OSV
OSV
added 2026/07/03 7:16 a.m.3 views

ALPINE-CVE-2026-10536

A use-after-free vulnerability exists in libcurl when an application configures an HTTP/2 stream-dependency tree via CURLOPTSTREAMDEPENDS or CURLOPTSTREAMDEPENDSE, subsequently invokes curleasyreset, and finally terminates the handle with curleasycleanup. During this final cleanup phase, libcurl...

9.8CVSS6AI score0.00891EPSS
Exploits1References1
OSV
OSV
added 2026/07/03 6:11 a.m.8 views

CVE-2026-10536 HTTP/2 stream-dependency tree UAF

A use-after-free vulnerability exists in libcurl when an application configures an HTTP/2 stream-dependency tree via CURLOPTSTREAMDEPENDS or CURLOPTSTREAMDEPENDSE, subsequently invokes curleasyreset, and finally terminates the handle with curleasycleanup. During this final cleanup phase, libcurl...

9.8CVSS6.1AI score0.00891EPSS
Exploits1References5
Cvelist
Cvelist
added 2026/07/03 6:11 a.m.88 views

CVE-2026-10536 HTTP/2 stream-dependency tree UAF

A use-after-free vulnerability exists in libcurl when an application configures an HTTP/2 stream-dependency tree via CURLOPTSTREAMDEPENDS or CURLOPTSTREAMDEPENDSE, subsequently invokes curleasyreset, and finally terminates the handle with curleasycleanup. During this final cleanup phase, libcurl...

0.00891EPSS
Exploits1References3
AlpineLinux
AlpineLinux
added 2026/07/03 6:11 a.m.7 views

CVE-2026-10536

A use-after-free vulnerability exists in libcurl when an application configures an HTTP/2 stream-dependency tree via CURLOPTSTREAMDEPENDS or CURLOPTSTREAMDEPENDSE, subsequently invokes curleasyreset, and finally terminates the handle with curleasycleanup. During this final cleanup phase, libcurl...

9.8CVSS6AI score0.00891EPSS
Exploits1References3
OSV
OSV
added 2026/06/24 2:0 p.m.5 views

UBUNTU-CVE-2026-10536

A use-after-free vulnerability exists in libcurl when an application configures an HTTP/2 stream-dependency tree via CURLOPTSTREAMDEPENDS or CURLOPTSTREAMDEPENDSE, subsequently invokes curleasyreset, and finally terminates the handle with curleasycleanup. During this final cleanup phase, libcurl...

9.8CVSS6.1AI score0.00891EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2026/05/20 12:0 a.m.8 views

PT-2026-51739

Name of the Vulnerable Software and Affected Versions libcurl affected versions not specified Description A use-after-free issue exists in the HTTP/2 stream-dependency tree management mechanism. This occurs when an application configures the tree using CURLOPT STREAM DEPENDS or CURLOPT STREAM...

9.8CVSS6AI score0.00891EPSS
Exploits1References21
Rows per page
Query Builder