Thanks, applied as aefa748d67eb44b63889ab3d5360845cb0f9de0b. Michael
[sent from post-receive hook] On Wed, 18 Oct 2023 09:42:57 +0200, Christian Melki <christian.me...@t2data.com> wrote: > Mostly smaller fixes. > https://curl.se/changes.html#8_4_0 > > Plugs two CVEs: > CVE-2023-38546 cookie injection with none file > CVE-2023-38545 SOCKS5 heap buffer overflow > > Signed-off-by: Christian Melki <christian.me...@t2data.com> > Message-Id: <20231011180236.1768772-1-christian.me...@t2data.com> > Signed-off-by: Michael Olbrich <m.olbr...@pengutronix.de> > > diff --git a/rules/libcurl.make b/rules/libcurl.make > index ad615bd87f1c..61797e9ae52a 100644 > --- a/rules/libcurl.make > +++ b/rules/libcurl.make > @@ -15,8 +15,8 @@ PACKAGES-$(PTXCONF_LIBCURL) += libcurl > # > # Paths and names > # > -LIBCURL_VERSION := 8.3.0 > -LIBCURL_MD5 := 2fc6cf5cefa8b73e3826aa24befdccff > +LIBCURL_VERSION := 8.4.0 > +LIBCURL_MD5 := 8424597f247da68b6041dd7f9ca367fe > LIBCURL := curl-$(LIBCURL_VERSION) > LIBCURL_SUFFIX := tar.xz > LIBCURL_URL := https://curl.se/download/$(LIBCURL).$(LIBCURL_SUFFIX)