Commit 724c8b65 authored Nov 06, 2022 by Robert Joslyn Committed by Steve Sakoman Nov 07, 2022

curl: Backport CVE fixes



Backport fixes for:
 - CVE-2022-32221 POST following PUT confusion
 - CVE-2022-35260 .netrc parser out-of-bounds access
 - CVE-2022-42915 HTTP proxy double-free
 - CVE-2022-42916 HSTS bypass via IDN

Signed-off-by: Robert Joslyn <robert.joslyn@redrectangle.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>

parent 0eee57ef

Show whitespace changes

Inline Side-by-side

Please register or to comment