our team have developed a recurring vulnerability detection tool. This tool mainly uses static analysis methods, and it has a high detection accuracy in our dataset. We have also received positive feedback from other projects before.
we have scanned your repo kbengine and found some vulnerabilities, here are some details as follows:

1. conn_is_conn, Curl_getconnectinfo, curl_easy_duphandle and some other functions in the file kbe/src/lib/dependencies/curl/lib/connect.c, kbe/src/lib/dependencies/curl/lib/easy.c and some other files respectively. It may have a Use After Free vulnerability which shares a similarity to CVE-2020-8231 and the fix is quantomas/curl@3c9e021
2. Curl_cookie_add and some other functions in the file kbe/src/lib/dependencies/curl/lib/cookie.c, it shares a similarity to CVE-2022-32205 and the fix is curl/curl@48d7064
3. CMS_decrypt, pkcs7_decrypt_rinfo, PKCS7_dataDecode and some other functions in the file kbe/src/lib/dependencies/vsopenssl/crypto/cms/cms_smime.c, kbe/src/lib/dependencies/vsopenssl/crypto/pkcs7/pk7_doit.c respectively. it shares a similarity to CVE-2019-1563 and the fix is openbsd/src@0ae7bae
4. _dopr, fmtstr, fmtint, fmtfp, doapr_outch and some other functions in the file kbe/src/lib/dependencies/vsopenssl/crypto/bio/b_print.c, it shares a similarity to CVE-2016-0799 and the fix is openssl/openssl@9cb1773
5. BN_hex2bn, BN_dec2bn and some other functions in the file kbe/src/lib/dependencies/vsopenssl/crypto/bn/bn_print.c, it shares a similarity to CVE-2016-0797 and the fix is openssl/openssl@99ba9fd
6. set_ssl_ciphers and some other functions in the file kbe/src/lib/dependencies/curl/lib/vtls/schannel.c, it shares a similarity to CVE-2021-22897 and the fix is curl/curl@bbb7150
7. asn1_template_ex_d2i and some other functions in the file kbe/src/lib/dependencies/vsopenssl/crypto/asn1/tasn_dec.c, it shares a similarity to CVE-2018-0739 and the fix is openssl/openssl@4cabbb9
8. aesni_cbc_hmac_sha1_cipher, aesni_cbc_hmac_sha256_cipher in the file kbe/src/lib/dependencies/vsopenssl/crypto/evp/e_aes_cbc_hmac_sha1.c and kbe/src/lib/dependencies/vsopenssl/crypto/evp/e_aes_cbc_hmac_sha256.c respectively, it shares a similarity to CVE-2016-2107 and the fix is openssl/openssl@70428ea
   We have preliminarily verified the correctness of the above list through static analysis. Would you can help to check if this bug is true? If it's true, please try to fix it, or I'd like to open a PR for that if necessary. Thank you for your effort and patience!