/
DirectorySecurity AdvisoriesPricing
Sign In
Security Advisories

CVE-2024-2379

Published

Last updated

NVD

https://nvd.nist.gov/vuln/detail/CVE-2024-2379

Severity

Unknown

Description

libcurl skips the certificate verification for a QUIC connection under certain conditions, when built to use wolfSSL. If told to use an unknown/bad cipher or curve, the error path accidentally skips the verification and returns OK, thus ignoring any certificate problems.

References

Affected packages


Safe Source for Open Sourceâ„¢
Media KitContact Us
© 2025 Chainguard. All Rights Reserved.
Private PolicyTerms of Use

Products

Chainguard ContainersChainguard LibrariesChainguard VMs