{"id":"CURL-CVE-2023-27537","summary":"HSTS double free","details":"libcurl supports sharing HSTS data between separate \"handles\". This sharing\nwas introduced without considerations for doing this sharing across separate\nthreads but there was no indication of this fact in the documentation.\n\nDue to missing mutexes or thread locks, two threads sharing the same HSTS data\ncould end up doing a double free or use after free.","aliases":["CVE-2023-27537"],"modified":"2026-05-18T05:47:59.998595007Z","published":"2023-03-20T08:00:00Z","database_specific":{"www":"https://curl.se/docs/CVE-2023-27537.html","affects":"lib","severity":"Low","award":{"currency":"USD","amount":"480"},"issue":"https://hackerone.com/reports/1897203","package":"curl","CWE":{"desc":"Double Free","id":"CWE-415"},"URL":"https://curl.se/docs/CVE-2023-27537.json","last_affected":"7.88.1"},"affected":[{"ranges":[{"type":"SEMVER","events":[{"introduced":"7.88.0"},{"fixed":"8.0.0"}]},{"type":"GIT","repo":"https://github.com/curl/curl.git","events":[{"introduced":"076a2f629119222aeeb50f5a03bf9f9052fabb9a"},{"fixed":"dca4cdf071be095bcdc7126eaa77a8946ea4790b"}]}],"versions":["7.88.1","7.88.0","curl-7_88_1","curl-7_88_0"],"database_specific":{"source":"https://curl.se/docs/CURL-CVE-2023-27537.json"}}],"schema_version":"1.7.5","credits":[{"name":"Hiroki Kurosawa","type":"FINDER"},{"name":"Daniel Stenberg","type":"REMEDIATION_DEVELOPER"}]}