Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Python: Pycurl SSL Disabled #835

Closed
2 tasks
porcupineyhairs opened this issue Jun 23, 2024 · 4 comments
Closed
2 tasks

Python: Pycurl SSL Disabled #835

porcupineyhairs opened this issue Jun 23, 2024 · 4 comments
Labels
All For One Submissions to the All for One, One for All bounty

Comments

@porcupineyhairs
Copy link

Query PR

github/codeql#16812

Language

Python

CVE(s) ID list

CVE-2023-0509

CWE

CWE-295

Report

Pycurl is a library which provides curl binding in python. The original library is partially modelled in codeql. This PR adds support to test for SSL certificate validation when using pycurl.

The query aims to detect the vulnerable pattern found in CVE-2023-0509.

curl.setopt(pycurl.SSL_VERIFYPEER, 0)
curl.setopt(pycurl.SSL_VERIFYHOST,0)

There are many more detections I have found through MRVA. I will keeps updating this issue as and when they convert to CVE's.

in the meantime, the database for the original CVE can be downloaded from the below links.

https://file.io/VAqVTWYqYIf1
https://filetransfer.io/manage-package/5CmMEURU

Are you planning to discuss this vulnerability submission publicly? (Blog Post, social networks, etc).

  • Yes
  • No

Blog post link

No response

@porcupineyhairs porcupineyhairs added the All For One Submissions to the All for One, One for All bounty label Jun 23, 2024
@ghsecuritylab
Copy link
Collaborator

Your submission is now in status Query review.

For information, the evaluation workflow is the following:
Initial triage > Test run > Results analysis > Query review > Final decision > Pay > Closed

@xcorail
Copy link
Contributor

xcorail commented Oct 25, 2024

Created Hackerone report 2805051 for bounty 633289 : [835] Python: Pycurl SSL Disabled

@xcorail xcorail closed this as completed Oct 25, 2024
@xcorail
Copy link
Contributor

xcorail commented Nov 4, 2024

Hey @porcupineyhairs don't forget to claim your reward, the program is shutting down soon!

@porcupineyhairs
Copy link
Author

@xcorail I think I am having an issue claiming the rewards. For some reason, H1 errors out if I try to claim the bounty. I have already raised a ticket with H1 regarding this last week. I am waiting for a resolution now. I will let you know as soon as that changes.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
All For One Submissions to the All for One, One for All bounty
Projects
None yet
Development

No branches or pull requests

3 participants