[7.2] curl: Fix CVE-2023-38545 and CVE-2023-38546 (!42) · Merge requests · Feed / openwrt-packages · GitLab

Andreas Gnau requested to merge agnau-curl-cves-7.2 into release-7.2 Oct 12, 2023

Fix CVEs:

CVE-2023-38545 SOCKS5 heap buffer overflow
CVE-2023-38546 cookie injection with none file

Signed-off-by: Andreas Gnau andreas.gnau@iopsys.eu