Search Issue Tracker
Won't Fix
Votes
0
Found in
2021.3.33f1
Issue ID
UUM-60183
Regression
No
[Priority_NoRepro] Assessment of CVE-2023-46219
Creating this on behalf of a customer who has asked for an assessment of the following:
>> When saving HSTS data to an excessively long file name, curl could end up removing all contents, making subsequent requests using that file unaware of the HSTS status they should otherwise use.
[https://nvd.nist.gov/vuln/detail/CVE-2023-46219|https://nvd.nist.gov/vuln/detail/CVE-2023-46219]
Reviewing the Curl website, this issue is present in versions up to (and including) 8.4 and has been fixed in 8.5:
[https://curl.se/docs/CVE-2023-46219.html|https://curl.se/docs/CVE-2023-46219.html]
Please assign to WebRequest team
Note: No CQA testing was carried out.
Add comment
All about bugs
View bugs we have successfully reproduced, and vote for the bugs you want to see fixed most urgently.
Latest issues
- Unity crashes during the scene template selection in the "Inspector" tab
- [Android] [iOS] [UnityWebRequest] Requests with "UnityWebRequest" are open for SSL Proxying
- SetWindowsHookEx does not prevent Windows key input when Editor or Player Window is focused and Active Input Handling is set to “Input System Package (New)” or “Both”
- Crash on GetEffectiveBc7TextureCompressor() when loading and unloading all Assets in the Project
- Terrain Masks do not ignore the mipmap limit
Resolution Note:
Unity is not affected by this.