Sorry, I expressed myself incorrectly. I mean that the file in the patch was 
inconsistent with the file in the introduce commit.[1] [2]






[1] Introduce commit: https://github.com/curl/curl/commit/b27ad8e1d3e68e

[2] Patch: 
https://github.com/curl/curl/commit/7e92d12b4e6911f424678a133b19de670e183a59




> -----原始邮件-----
> 发件人: "Daniel Stenberg" <dan...@haxx.se>
> 发送时间: 2025-03-24 22:31:02 (星期一)
> 收件人: "陈星杵 via curl-library" <curl-library@lists.haxx.se>
> 抄送: 陈星杵 <chenxing...@iie.ac.cn>
> 主题: Re: Some question about CVE-2022-27779
> 
> On Mon, 24 Mar 2025, 陈星杵 via curl-library wrote:
> 
> > I hope this email finds you well. I apologize for the interruption, but I 
> > recently noticed that the CURL website provides both the commit that 
> > introduced CVE-2022-27779[1] and the corresponding patch. However, the MD5 
> > checksums of the modified files in these two versions do not match[2][3].
> 
> What MD5 checksums ? I don't understand what you are talking about.
> 
> -- 
> 
>   / daniel.haxx.se || https://rock-solid.curl.dev














-- 
Unsubscribe: https://lists.haxx.se/mailman/listinfo/curl-library
Etiquette:   https://curl.se/mail/etiquette.html

Reply via email to