CVE-2026-3805

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2026-3805

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-3805.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2026-3805

Aliases

CURL-CVE-2026-3805

Downstream

DEBIAN-CVE-2026-3805

MINI-gf7q-pwf6-rv36

SUSE-SU-2026:0879-1

SUSE-SU-2026:0885-1

UBUNTU-CVE-2026-3805

USN-8084-1

Related

Published

2026-03-11T11:16:00.967Z

Modified

2026-03-14T15:06:11.189323Z

Severity

7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator

Summary

[none]

Details

When doing a second SMB request to the same host again, curl would wrongly use a data pointer pointing into already freed memory.

References

Affected packages

Git / github.com/curl/curl

Affected ranges

Type

GIT

Repo

https://github.com/curl/curl

Events

Introduced

1c3149881769e7bd79b072e48374e4c2b3678b2f

Fixed

8c908d2d0a6d32abdedda2c52e90bd56ec76c24d

Database specific

{
    "versions": [
        {
            "introduced": "8.13.0"
        },
        {
            "fixed": "8.19.0"
        }
    ]
}

Affected versions

Other

curl-8_13_0

curl-8_14_0

curl-8_14_1

curl-8_15_0

curl-8_16_0

curl-8_17_0

curl-8_18_0

rc-8_18_0-1

rc-8_18_0-2

rc-8_18_0-3

rc-8_19_0-1

rc-8_19_0-2

rc-8_19_0-3

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-3805.json"