libcurl had a flaw that when instructed to clear proxy authentication
credentials which made it not do so, leaving the old credentials around to get
used for subsequent transfers that should not know nor use them.
credentials which made it not do so, leaving the old credentials around to get
used for subsequent transfers that should not know nor use them.
Project Subscriptions
No data.
Advisories
| Source | ID | Title |
|---|---|---|
Ubuntu USN |
USN-8487-1 | curl vulnerabilities |
Fixes
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
References
History
Fri, 03 Jul 2026 06:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | libcurl had a flaw that when instructed to clear proxy authentication credentials which made it not do so, leaving the old credentials around to get used for subsequent transfers that should not know nor use them. | |
| Title | stale proxy password leak | |
| References |
|
Projects
Sign in to view the affected projects.
Status: PUBLISHED
Assigner: curl
Published:
Updated: 2026-07-03T06:16:51.127Z
Reserved: 2026-05-20T12:59:41.444Z
Link: CVE-2026-9079
No data.
No data.
No data.
OpenCVE Enrichment
No data.
Weaknesses
No weakness.
Ubuntu USN