Insiza yokwamukela nokuthumela idatha ngenethiwekhi, i-curl, ineminyaka engama-25 ubudala. Ukuhlonipha lo mcimbi, kwakhiwa igatsha elisha elibalulekile le-cURL 8.0. Ukukhululwa kokuqala kwegatsha langaphambilini le-curl 7.x lakhiwa ngo-2000 futhi kusukela ngaleso sikhathi isisekelo sekhodi sikhuphuke sisuka ku-17 kuya ku-155 imigqa eyizinkulungwane zekhodi, inani lezinketho zomugqa womyalo liye landiswa laya ku-249, ukusekelwa kwezivumelwano zenethiwekhi ezingu-28. , imitapo yolwazi eyi-cryptographic engu-13, imitapo yolwazi ye-SSH engu-3 isetshenzisiwe kanye nemitapo yolwazi engu-3 ye-HTTP/3. Ikhodi yephrojekthi isatshalaliswa ngaphansi kwelayisensi ye-Curl (okuhlukile kwelayisense ye-MIT).
Ku-HTTP/HTTPS, insiza ihlinzeka ngekhono lokwenza isicelo senethiwekhi ngokuguquguqukayo ngamapharamitha afana ne-Cookie, i-user_agent, ireferensi nanoma yiziphi ezinye izihloko. Ngokungeziwe ku-HTTPS, HTTP/1.x, HTTP/2.0 kanye ne-HTTP/3, insiza isekela ukuthumela izicelo kusetshenziswa i-SMTP, IMAP, POP3, SSH, Telnet, FTP, SFTP, SMB, LDAP, RTSP, RTMP nezinye izivumelwano zenethiwekhi. . Ngaso leso sikhathi, umtapo wezincwadi we-libcurl uyathuthukiswa, uhlinzeka nge-API yokusebenzisa yonke imisebenzi ye-curl ezinhlelweni zezilimi ezifana ne-C, Perl, PHP, Python.
Ukukhishwa okusha kwe-cURL 8.0 akuqukethe izinto ezintsha ezinkulu noma izinguquko ze-API ne-ABI eziphula i-interoperability-breaking. Ushintsho lwezinombolo lubangelwa isifiso sokugubha iminyaka engu-25 yephrojekthi futhi ekugcineni usethe kabusha idijithi yesibili yenguqulo, osekuyiminyaka engaphezu kwengu-22 inqwabelana.
Inguqulo entsha isusa ubungozi obuyi-6 ku-TELNET, FTP, SFTP, GSS, SSH, HSTS izibambi zokusakaza, okuthi ezi-5 zazo zimakwe njengezincane, futhi eyodwa inezinga elilinganiselwe lengozi (CVE-2023-27535, ikhono lokuphinda usebenzise i- ukuxhumeka kwe-FTP okudalwe ngaphambilini namanye amapharamitha, okuhlanganisa lapho imininingwane yomsebenzisi ingafani). Phakathi kwezinguquko ezingahlobene nokuqedwa kobungozi namaphutha, okuwukuphela kwenothi ukumiswa kosekelo lokwakhiwa kumasistimu angenazo izinhlobo zedatha ye-64-bit esebenzayo (ukwakha manje kudinga ukuba khona kohlobo "olude").
Ngokushesha ngemva kokukhishwa kwe-8.0.0, inguqulo 8.0.1 yakhululwa ngokulungiswa kwesiphazamisi esitholakale ngokushisa esiholele ekuphahlazekeni kwezinye izimo zokuhlola.
Source: opennet.ru