Overview

File curl-CVE-2025-14524.patch of Package curl.42129

From 1a822275d333dc6da6043497160fd04c8fa48640 Mon Sep 17 00:00:00 2001
From: Daniel Stenberg <daniel@haxx.se>
Date: Wed, 10 Dec 2025 11:40:47 +0100
Subject: [PATCH] curl_sasl: if redirected, require permission to use bearer

Closes #19933
---
 lib/curl_sasl.c | 8 ++++++--
 1 file changed, 6 insertions(+), 2 deletions(-)

Index: curl-8.14.1/lib/curl_sasl.c
===================================================================
--- curl-8.14.1.orig/lib/curl_sasl.c
+++ curl-8.14.1/lib/curl_sasl.c
@@ -356,7 +356,9 @@ CURLcode Curl_sasl_start(struct SASL *sa
     data->set.str[STRING_SERVICE_NAME] :
     sasl->params->service;
 #endif
-  const char *oauth_bearer = data->set.str[STRING_BEARER];
+  const char *oauth_bearer =
+    (!data->state.this_is_a_follow || data->set.allow_auth_to_other_hosts) ?
+    data->set.str[STRING_BEARER] : NULL;
   struct bufref nullmsg;
 
   Curl_conn_get_host(data, FIRSTSOCKET, &hostname, &disp_hostname, &port);
openSUSE Build Service is sponsored by
Places