rpms/curl
6
0
Fork 1
Code Issues Pull Requests Releases Activity

Resolves: CVE-2023-27534 - fix SFTP path ~ resolving discrepancy

Browse Source
This commit is contained in:
Kamil Dudka 2023-03-24 13:16:13 +01:00
parent 798eff6a99
commit 2a890c9910
2 changed files with 1065 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1060
0026-curl-7.76.1-CVE-2023-27534.patch Normal file
View File

File diff suppressed because it is too large Load Diff

5
curl.spec
View File

@ -77,6 +77,9 @@ Patch24: 0024-curl-7.76.1-CVE-2023-23916.patch
# fix TELNET option IAC injection (CVE-2023-27533)
Patch25: 0025-curl-7.76.1-CVE-2023-27533.patch
# fix SFTP path ~ resolving discrepancy (CVE-2023-27534)
Patch26: 0026-curl-7.76.1-CVE-2023-27534.patch
# patch making libcurl multilib ready
Patch101: 0101-curl-7.32.0-multilib.patch
@ -276,6 +279,7 @@ be installed.
%patch23 -p1
%patch24 -p1
%patch25 -p1
%patch26 -p1
# Fedora patches
%patch101 -p1
@ -502,6 +506,7 @@ rm -f ${RPM_BUILD_ROOT}%{_libdir}/libcurl.la
%changelog
* Fri Mar 24 2023 Kamil Dudka <kdudka@redhat.com> - 7.76.1-24
- fix SFTP path ~ resolving discrepancy (CVE-2023-27534)
- fix TELNET option IAC injection (CVE-2023-27533)
* Wed Feb 15 2023 Kamil Dudka <kdudka@redhat.com> - 7.76.1-23