Thu Oct 27 02:30:15 UTC 202220221027023015_15.0

patches/packages/curl-7.86.0-x86_64-1_slack15.0.txz:  Upgraded.
  This update fixes security issues:
  HSTS bypass via IDN.
  HTTP proxy double-free.
  .netrc parser out-of-bounds access.
  POST following PUT confusion.
  For more information, see:
    https://curl.se/docs/CVE-2022-42916.html
    https://curl.se/docs/CVE-2022-42915.html
    https://curl.se/docs/CVE-2022-35260.html
    https://curl.se/docs/CVE-2022-32221.html
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42916
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42915
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-35260
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32221
  (* Security fix *)

1 files changed, 18 insertions, 0 deletions

diff --git a/ChangeLog.txt b/ChangeLog.txt
index e8acc4930..817d21fe0 100644
--- a/ChangeLog.txt
+++ b/ChangeLog.txt
@@ -1,3 +1,21 @@
+Thu Oct 27 02:30:15 UTC 2022
+patches/packages/curl-7.86.0-x86_64-1_slack15.0.txz:  Upgraded.
+  This update fixes security issues:
+  HSTS bypass via IDN.
+  HTTP proxy double-free.
+  .netrc parser out-of-bounds access.
+  POST following PUT confusion. 
+  For more information, see:
+    https://curl.se/docs/CVE-2022-42916.html
+    https://curl.se/docs/CVE-2022-42915.html
+    https://curl.se/docs/CVE-2022-35260.html
+    https://curl.se/docs/CVE-2022-32221.html
+    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42916
+    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42915
+    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-35260
+    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32221
+  (* Security fix *)
++--------------------------+
 Tue Oct 25 18:38:58 UTC 2022
 patches/packages/expat-2.5.0-x86_64-1_slack15.0.txz:  Upgraded.
   This update fixes a security issue: