guzzlehttp/guzzle is vulnerable to information disclosure. The vulnerability exists because the checkRedirect
function of RedirectMiddleware.php
does not properly clear the CURLOPT_HTTPAUTH
option on a change of origin, allowing an attacker to get sensitive information through the Authorization
header by redirecting to the malicious urls.
github.com/guzzle/guzzle/commit/1dd98b0564cb3f6bd16ce683cb755f94c10fbd82
github.com/guzzle/guzzle/commit/a52f0440530b54fa079ce76e8c5d196a42cad981
github.com/guzzle/guzzle/pull/3042
github.com/guzzle/guzzle/pull/3043
github.com/guzzle/guzzle/security/advisories/GHSA-25mq-v84q-4j7r
security.gentoo.org/glsa/202305-24
www.debian.org/security/2022/dsa-5246