blob: 6c40989d3b4c7d1cafc9793d8513e59d8a3e139e (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
|
From af369db4d3833272b8ed443f7fcc2e757a0872eb Mon Sep 17 00:00:00 2001
From: Daniel Stenberg <daniel@haxx.se>
Date: Fri, 10 Mar 2023 08:22:51 +0100
Subject: [PATCH] url: fix the SSH connection reuse check
Reported-by: Harry Sintonen
Closes #10735
CVE: CVE-2023-27538
Upstream-Status: Backport [https://github.com/curl/curl/commit/af369db4d3833272b8ed443f7fcc2e757a0872eb]
Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com>
---
lib/url.c | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/lib/url.c b/lib/url.c
index 8da0245..9f14a7b 100644
--- a/lib/url.c
+++ b/lib/url.c
@@ -1266,7 +1266,7 @@ ConnectionExists(struct Curl_easy *data,
}
}
- if(get_protocol_family(needle->handler->protocol) == PROTO_FAMILY_SSH) {
+ if(get_protocol_family(needle->handler->protocol) & PROTO_FAMILY_SSH) {
if(!ssh_config_matches(needle, check))
continue;
}
--
2.25.1
|
