CVSROOT: /cvs
Module name: ports
Changes by: [email protected] 2023/05/18 07:39:18
Modified files:
net/curl : Makefile distinfo
net/curl/patches: patch-m4_curl-compilers_m4
Added files:
net/curl/patches: patch-lib_vquic_curl_ngtcp2_c
Log message:
net/curl: security update to 8.1.0
curl(1): add --proxy-http2
Includes fixes for
CVE-2023-28319: UAF in SSH sha256 fingerprint check
CVE-2023-28320: siglongjmp race condition
CVE-2023-28321: IDN wildcard match
CVE-2023-28322: more POST-after-PUT confusion
Some of those affect protocols not enabled in the port.
