Hi Everyone,
Curl 7.88.0 is now available on the ITUGLIB website in the usual spot. The Change log for this release is at https://curl.se/changes.html#7_88_0 and contains fixes for the following CVEs:
* CVE-2023-23916: HTTP multi-header compression denial of service from 7.57.0 to 7.87.0
* CVE-2023-23915: HSTS amnesia with --parallel from 7.77.0 to 7.87.0
* CVE-2023-23914: HSTS ignored on multiple requests from 7.77.0 to 7.87.0
Regards,
Randall Becker
On Behalf of the ITUGLIB Technical Committee
Sysop: | Keyop |
---|---|
Location: | Huddersfield, West Yorkshire, UK |
Users: | 298 |
Nodes: | 16 (0 / 16) |
Uptime: | 07:39:45 |
Calls: | 6,671 |
Calls today: | 3 |
Files: | 12,219 |
Messages: | 5,339,104 |