High 7.3
2025-01-01≤ 8.11.1
gzip integer overflow
curl 8.11
High 7.0
2025-01-01= 8.11.1
eventfd double close
Medium 6.5 Unfixed
2026-03-11≤ 8.11.1
wrong proxy connection reuse with credentials
Medium 6.5 Unfixed
2026-03-11≤ 8.11.1
bad reuse of HTTP Negotiate connection
Medium 6.5 Unfixed
2025-05-28≤ 8.11.1
QUIC certificate check skip with wolfSSL
Medium 6.3 Unfixed
2026-01-08≤ 8.11.1
broken TLS options for threaded LDAPS
Medium 5.9 Unfixed
2026-01-08≤ 8.11.1
No QUIC certificate pinning with GnuTLS
Medium 5.3 Unfixed
2026-04-29≤ 8.11.1
curl: curl: Proxy credential disclosure via redirects to unauthenticated proxies
Medium 5.3 Unfixed
2026-04-29≤ 8.11.1
curl: curl: Information disclosure due to incorrect TLS connection reuse
Medium 5.3 Unfixed
2026-03-11≤ 8.11.1
token leak with redirect and netrc
Medium 5.3 Unfixed
2026-01-08≤ 8.11.1
libssh global known_hosts override
Medium 5.3 Unfixed
2026-01-08≤ 8.11.1
OpenSSL partial chain store policy bypass
Medium 5.3 Unfixed
2026-01-08≤ 8.11.1
bearer token leak on cross-protocol redirect
Medium 5.3 Unfixed
2025-09-12≤ 8.11.1
predictable WebSocket mask
Medium 4.8 Unfixed
2025-05-28≤ 8.11.1
No QUIC certificate pinning with wolfSSL
Medium 4.3 Unfixed
2025-11-07≤ 8.11.1
missing SFTP host verification with wolfSSH
Low 3.4
2025-01-01≤ 8.11.1
netrc and default credential leak
Low 3.4
2024-12-11< 8.11.1
netrc and redirect credential leak
Low 3.1 Unfixed
2026-01-08≤ 8.11.1
libssh key passphrase bypass without agent set