bronevichok

Commit Diff

Commit:: 9b7b739ff7ee78fa0de3dbb38015d0d11af0370f
From:: Sergey Bronnikov <sergeyb@tarantool.org>
Date:: Mon Dec 18 18:56:23 2023 UTC
Message:: third_party: update libcurl from 8.3.0 to 8.4.0 The patch updates curl module to the version 8.4.0 [1] that brings a number of functional fixes and security fix of SOCKS5 heap buffer overflow (CVE-2023-38545), see description in [2] and commit fb4415d8aee6 ("socks: return error if hostname too long for remote resolve") in [3]. 1. https://curl.se/changes.html#8_4_0 2. https://curl.se/docs/CVE-2023-38545.html 3. https://github.com/curl/curl/commit/fb4415d8aee6c1045be932a34fe6107c2f5ed147 NO_DOC=libcurl submodule bump NO_TEST=libcurl submodule bump
Actions:: Patch | Tree

commit - aca863907e1c5bdbd108f4be17583083d2779e0a
commit + 9b7b739ff7ee78fa0de3dbb38015d0d11af0370f
blob - /dev/null
blob + 578a55683e18681f3c553251ee0effc77e1f0b60 (mode 644)
--- /dev/null
+++ changelogs/unreleased/bump-libcurl-to-8.4.0.md
@@ -0,0 +1,3 @@
+## bugfix/build
+
+* Updated libcurl to version 8.4.0.