CVE-2021-22925

2021-07-2100:00:00

ubuntu.com

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.003 Low

EPSS

Percentile

69.1%

JSON

curl supports the -t command line option, known as
CURLOPT_TELNETOPTIONSin libcurl. This rarely used option is used to send
variable=content pairs toTELNET servers.Due to flaw in the option parser
for sending NEW_ENV variables, libcurlcould be made to pass on
uninitialized data from a stack based buffer to theserver. Therefore
potentially revealing sensitive internal information to theserver using a
clear-text network protocol.This could happen because curl did not call and
use sscanf() correctly whenparsing the string provided by the application.

Notes

Author	Note
mdeslaur	caused by incomplete fix for CVE-2021-22898

OSVersionArchitecturePackageVersionFilename
ubuntu18.04noarchcurl< 7.58.0-2ubuntu3.14UNKNOWN
ubuntu20.04noarchcurl< 7.68.0-1ubuntu2.6UNKNOWN
ubuntu21.04noarchcurl< 7.74.0-1ubuntu2.1UNKNOWN
ubuntu21.10noarchcurl< 7.74.0-1.2ubuntu4UNKNOWN
ubuntu22.04noarchcurl< 7.74.0-1.2ubuntu4UNKNOWN
ubuntu22.10noarchcurl< 7.74.0-1.2ubuntu4UNKNOWN
ubuntu23.04noarchcurl< 7.74.0-1.2ubuntu4UNKNOWN
ubuntu14.04noarchcurl< 7.35.0-1ubuntu2.20+esm14) Available with Ubuntu Pro or Ubuntu Pro (Infra-onlyUNKNOWN
ubuntu16.04noarchcurl< 7.47.0-1ubuntu2.19+esm3) Available with Ubuntu Pro or Ubuntu Pro (Infra-onlyUNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	18.04	noarch	curl	< 7.58.0-2ubuntu3.14	UNKNOWN
ubuntu	20.04	noarch	curl	< 7.68.0-1ubuntu2.6	UNKNOWN
ubuntu	21.04	noarch	curl	< 7.74.0-1ubuntu2.1	UNKNOWN
ubuntu	21.10	noarch	curl	< 7.74.0-1.2ubuntu4	UNKNOWN
ubuntu	22.04	noarch	curl	< 7.74.0-1.2ubuntu4	UNKNOWN
ubuntu	22.10	noarch	curl	< 7.74.0-1.2ubuntu4	UNKNOWN
ubuntu	23.04	noarch	curl	< 7.74.0-1.2ubuntu4	UNKNOWN
ubuntu	14.04	noarch	curl	< 7.35.0-1ubuntu2.20+esm14) Available with Ubuntu Pro or Ubuntu Pro (Infra-only	UNKNOWN
ubuntu	16.04	noarch	curl	< 7.47.0-1ubuntu2.19+esm3) Available with Ubuntu Pro or Ubuntu Pro (Infra-only	UNKNOWN