CVE-2025-0665

libcurl would wrongly close the same eventfd file descriptor twice when taking down a connection channel after having completed a threaded name resolve.

CVSS

No CVSS.

References

Link	Resource
https://curl.se/docs/CVE-2025-0665.html
https://curl.se/docs/CVE-2025-0665.json
https://hackerone.com/reports/2954286
http://www.openwall.com/lists/oss-security/2025/02/05/2
http://www.openwall.com/lists/oss-security/2025/02/05/5
https://security.netapp.com/advisory/ntap-20250306-0007/

Configurations

No configuration.

History

07 Mar 2025, 01:15

Type	Values Removed	Values Added
References		() https://security.netapp.com/advisory/ntap-20250306-0007/ -

18 Feb 2025, 19:15

Type	Values Removed	Values Added
CWE	~~CWE-1341~~
CVSS	v2 : ~~unknown~~ v3 : ~~9.8~~	v2 : unknown v3 : unknown
Summary		(es) libcurl cerraría incorrectamente el mismo descriptor de archivo eventfd dos veces al finalizar un canal de conexión después de haber completado una resolución de nombre enhebrado.

05 Feb 2025, 20:15

Type	Values Removed	Values Added
References		() http://www.openwall.com/lists/oss-security/2025/02/05/5 -

05 Feb 2025, 15:15

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 9.8
CWE		CWE-1341

05 Feb 2025, 11:15

Type	Values Removed	Values Added
References		() http://www.openwall.com/lists/oss-security/2025/02/05/2 -

05 Feb 2025, 10:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-02-05 10:15

Updated : 2025-03-07 01:15

NVD link : CVE-2025-0665

Mitre link : CVE-2025-0665

CVE.ORG link : CVE-2025-0665

JSON object : View

Products Affected

No product.

CWE

No CWE.

JSON object

Attach tags to CVE-2025-0665

Attach tags to `CVE-2025-0665`