Rocksolid Light

Welcome to novaBBS (click a section below)

mail  files  register  newsreader  groups  login

Message-ID:  

Your password is pitifully obvious.

computers / comp.sys.tandem / ITUGLIB Update: curl 7.83.0 Available - Important

SubjectAuthor
o ITUGLIB Update: curl 7.83.0 Available - ImportantRandall

1
ITUGLIB Update: curl 7.83.0 Available - Important

<c1ae3941-8867-419a-95ba-716a427ac3cdn@googlegroups.com>

  copy mid

https://www.novabbs.com/computers/article-flat.php?id=441&group=comp.sys.tandem#441

  copy link   Newsgroups: comp.sys.tandem
X-Received: by 2002:a05:622a:1012:b0:2e1:e7f3:5c89 with SMTP id d18-20020a05622a101200b002e1e7f35c89mr23096246qte.550.1651153322455;
Thu, 28 Apr 2022 06:42:02 -0700 (PDT)
X-Received: by 2002:a05:6902:352:b0:63e:94c:883c with SMTP id
e18-20020a056902035200b0063e094c883cmr29487577ybs.365.1651153321225; Thu, 28
Apr 2022 06:42:01 -0700 (PDT)
Path: i2pn2.org!i2pn.org!weretis.net!feeder6.news.weretis.net!news.misty.com!border2.nntp.dca1.giganews.com!nntp.giganews.com!news-out.google.com!nntp.google.com!postnews.google.com!google-groups.googlegroups.com!not-for-mail
Newsgroups: comp.sys.tandem
Date: Thu, 28 Apr 2022 06:42:01 -0700 (PDT)
Injection-Info: google-groups.googlegroups.com; posting-host=2607:fea8:3fa0:4b9:1d92:5b76:a185:3f41;
posting-account=6VebZwoAAAAgrpUtsowyjrKRLNlqxnXo
NNTP-Posting-Host: 2607:fea8:3fa0:4b9:1d92:5b76:a185:3f41
User-Agent: G2/1.0
MIME-Version: 1.0
Message-ID: <c1ae3941-8867-419a-95ba-716a427ac3cdn@googlegroups.com>
Subject: ITUGLIB Update: curl 7.83.0 Available - Important
From: rsbec...@nexbridge.com (Randall)
Injection-Date: Thu, 28 Apr 2022 13:42:02 +0000
Content-Type: text/plain; charset="UTF-8"
Lines: 13
 by: Randall - Thu, 28 Apr 2022 13:42 UTC

Hi Everyone,

curl 7.83.0 is now on the ITUGLIB website. This includes the curl object, libcurl.a, curl header files, and man pages. Please be aware that this is an important major function release and addresses some curl-specific CVEs:

https://curl.se/docs/CVE-2022-22576.html - Medium severity - which is OAuth related and dates back to 2013.
https://curl.se/docs/CVE-2022-27774.html - Medium severity - which is redirect related, going back to the beginning. This is justification to upgrade.
https://curl.se/docs/CVE-2022-27775.html - Low severity - IPv6 zone related.
https://curl.se/docs/CVE-2022-27776.html - Low severity - cookie redirect related.

Builds are available for OpenSSL 1.1.1, 3.0.x, and 1.0.2 on J-series and L-series. Be aware that OpenSSL 1.0.2 contains severe vulnerabilities so the version of curl using 1.0.2 should really not be used.

Regards,
Randall Becker
On behalf of the ITUGLIB Technical Committee

1
server_pubkey.txt

rocksolid light 0.9.8
clearnet tor