Pa Epulo 29, patatha mwezi woposa umodzi wa chitukuko, 521 commits ndi 282 bug fixes, kutulutsidwa kwa 8.20.0 (274th) kwa cross-platform console utility ndi library kunachitika. kupiringazolembedwa mu C ndi kugawidwa pansi pa chilolezo kupiringa.
Kusintha kwakukulu
Chitetezo
Monga tanenera kale (Chisokonezo chapamwamba kwambiri"), pakhala kuwonjezeka kwakukulu kwa malipoti okhudza kufooka kwa chitetezo posachedwapa. Nthawi ino, chidziwitso chafalitsidwa chokhudza kufooka kwatsopano zisanu ndi zitatu mu curl:
- CVE-2026-7168: Kutuluka kwa Digest Authentication State pakati pa Ma Proxy Servers;
- CVE-2026-7009: OCSP Pinning Bypass ndi Apple SecTrust;
- CVE-2026-6429: zitsimikizo za netrc zimatuluka panthawi yogwiritsanso ntchito kulumikizana kwa proxy;
- CVE-2026-6276: Wogwiritsa ntchito makeke akale walola kuti makeke atuluke;
- CVE-2026-6253: Kutuluka kwa chiphaso panthawi yotumiza uthenga kwa proxy;
- CVE-2026-5773: Kugwiritsanso Ntchito Kolakwika kwa SMB Connection;
- CVE-2026-5545: HTTP Ikambiranani Kugwiritsanso Ntchito Kolakwika kwa Kulumikizana;
- CVE-2026-4873: Zofunikira za TLS sizinanyalanyazidwe panthawi yogwiritsanso ntchito kulumikizana.
Zosintha zina
- tsopano imagwiritsa ntchito dziwe la ulusi ndi mzere wolumikizirana kuti ithetse mavuto;
- NTLM imayimitsidwa mwachisawawa;
- Chithandizo cha CMake 3.17 ndi mitundu yakale chayimitsidwa;
- Chithandizo cha laibulale ya c-ares mpaka mtundu 1.16.0 chayimitsidwa;
- SMB imayimitsidwa mwachisawawa;
- Yawonjezera mbendera ya CURLMNWC_CLEAR_ALL pa kusintha konse kwa netiweki;
- Thandizo la RTMP lathetsedwa.
Mapulani omwe akubwera ochotsera zinthu
- kugwiritsa ntchito ma algorithms a cryptographic m'deralo;
- NTLM;
- SMB;
- Thandizo la TLS-SRP.
Ngati muli ndi nkhawa iliyonse pa chilichonse mwa zomwe zili pamwambapa, chonde dziwitsani ku curl repository mwamsanga.
Source: linux.org.ru
