From de1364bf2c55ec7312f6bcc1d79acaaba766bfd9 Mon Sep 17 00:00:00 2001
From: Jan Macku <jamacku@redhat.com>
Date: Wed, 19 Jul 2023 13:44:49 +0200
Subject: [PATCH] new upstream release - 8.2.0

Resolves: CVE-2023-32001 - fopen race condition
---
 curl.spec | 6 +++++-
 sources   | 4 ++--
 2 files changed, 7 insertions(+), 3 deletions(-)

diff --git a/curl.spec b/curl.spec
index 41c8643..47663c7 100644
--- a/curl.spec
+++ b/curl.spec
@@ -1,6 +1,6 @@
 Summary: A utility for getting files from remote servers (FTP, HTTP, and others)
 Name: curl
-Version: 8.1.2
+Version: 8.2.0
 Release: 1%{?dist}
 License: curl
 Source0: https://curl.se/download/%{name}-%{version}.tar.xz
@@ -408,6 +408,10 @@ rm -f ${RPM_BUILD_ROOT}%{_libdir}/libcurl.la
 %{_libdir}/libcurl.so.4.[0-9].[0-9].minimal
 
 %changelog
+* Wed Jul 19 2023 Jan Macku <jamacku@redhat.com> - 8.2.0-1
+- new upstream release, which fixes the following vulnerabilities
+    CVE-2023-32001 - fopen race condition
+
 * Tue May 30 2023 Jan Macku <jamacku@redhat.com> - 8.1.2-1
 - new upstream release, with small bugfixes and improvements
 
diff --git a/sources b/sources
index f4ba12c..0a72bc7 100644
--- a/sources
+++ b/sources
@@ -1,2 +1,2 @@
-SHA512 (curl-8.1.2.tar.xz) = 532ab96eba6dea66d272f3be56f5af5c5da922480f9a10e203de98037c311f12f8145ba6bf813831e42815e068874ccfd108f84f7650743f5dbb3ebc3bc9c4f4
-SHA512 (curl-8.1.2.tar.xz.asc) = d120299a2d59259aeb19ae0fa3a3e181e25b6927677187037c61a0901879956177ce8dda10764073a47848f81dcbbcb94e0b6008742994042b6b8fd194e169c3
+SHA512 (curl-8.2.0.tar.xz) = 3ba5f393185d28dd9430d3be4fcd293646a5456d2f7467469896561b1577e60e7a3f030955d3cc5ec6ea5c5bfa1dfb9420a1d76e583d23f01d1c74aa291351b5
+SHA512 (curl-8.2.0.tar.xz.asc) = 66005647c54bae098feebac68f2762af2e4463dc7eb8ba4c0db79590a1a7fe581ec3d2bc4fbea39729e42836b62b011a3f7c83c29bd2f00b3ce5cf875b60b187