摘要:
A flaw was found in the Curl package, where the HSTS mechanism could fail when multiple transfers are done in parallel, as the HSTS cache file gets overwritten by the most recently completed transfer. This issue may result in limited confidentiality and integrity.
安全等级: Low
公告ID: KylinSec-SA-2023-1089
发布日期: 2023年2月20日
关联CVE: CVE-2023-23915
A flaw was found in the Curl package, where the HSTS mechanism could fail when multiple transfers are done in parallel, as the HSTS cache file gets overwritten by the most recently completed transfer. This issue may result in limited confidentiality and integrity.
| cve名称 | 产品 | 组件 | 是否受影响 |
|---|
