Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update curl to 7.87.0 #59164

Merged
merged 2 commits into from Jan 11, 2023
Merged

Update curl to 7.87.0 #59164

merged 2 commits into from Jan 11, 2023

Commits on Jan 8, 2023

  1. Update curl to 7.87.0 

    This PR updates curl to 7.87.0 to fix the following vulnerabilities in previous 7.86.0 inside tensorflow:

- CVE-2022-43552: HTTP Proxy deny use-after-free        2022-12-21
- CVE-2022-43551: Another HSTS bypass via IDN   2022-12-21

Signed-off-by: Yong Tang <yong.tang.github@outlook.com>
    @yongtang
    yongtang committed Jan 8, 2023
    Configuration menu
    Copy the full SHA
    b34f250 View commit details
    Browse the repository at this point in the history

  2. Fix build failure introduced by curl 7.87 

    Signed-off-by: Yong Tang <yong.tang.github@outlook.com>
    @yongtang
    yongtang committed Jan 8, 2023
    Configuration menu
    Copy the full SHA
    ee70df0 View commit details
    Browse the repository at this point in the history