1. Forum
  2. USENET
  3. comp.sys.tandem

  • ITUGLIB Update: Curl 8.2.1

    From Randall@rsbecker@nexbridge.com to comp.sys.tandem on Wed Jul 26 19:12:12 2023
    From Newsgroup: comp.sys.tandem

    Hi Everyone,

    The Curl 8.2.1 fix release is now available on the ITUGLIB website. It replaces 8.2.0, which had some minor defects.

    Please check the release notes at https://curl.se/changes.html for more details on why this fix release was made.

    As with all of our releases, this is a complete release, not simply a patch. Source code for the release is available from https://curl.se/download.html. The build for the ITUGLIB curl distribution uses the standard curl source code available via tarball.

    Regards,
    Randall Becker
    On behalf of the ITUGLIB Technical Committee
    --- Synchronet 3.21d-Linux NewsLink 1.2
  • From Randall@rsbecker@nexbridge.com to comp.sys.tandem on Wed Aug 9 10:11:22 2023
    From Newsgroup: comp.sys.tandem

    Hi Everyone,

    Curl 8.2.1 is now available on the ITUGLIB website. Builds are available for OpenSSL 3.0.x, 1.1.1v, and 1.0.2u on J-series and L-series.

    Source code is available via git. The builds use the standard Curl code base with no separate patches for NonStop.

    Regards,
    Randall Becker
    On Behalf of the ITUGLIB Technical Committee
    --- Synchronet 3.21d-Linux NewsLink 1.2
  • From Randall@rsbecker@nexbridge.com to comp.sys.tandem on Fri Aug 25 15:05:14 2023
    From Newsgroup: comp.sys.tandem

    On Wednesday, August 9, 2023 at 1:11:23rC>p.m. UTC-4, Randall wrote:
    Hi Everyone,

    Curl 8.2.1 is now available on the ITUGLIB website. Builds are available for OpenSSL 3.0.x, 1.1.1v, and 1.0.2u on J-series and L-series.

    Source code is available via git. The builds use the standard Curl code base with no separate patches for NonStop.

    Regards,
    Randall Becker
    On Behalf of the ITUGLIB Technical Committee
    FYI: If you come across CVE-2020-19909, the curl team will be doing a write-up of this but does not consider this a security vulnerability at all and is disputing the rank that NVD gave to the problem three years ago. If I hear anything else, I will post it.
    --- Synchronet 3.21d-Linux NewsLink 1.2
  • From Randall@rsbecker@nexbridge.com to comp.sys.tandem on Tue Aug 29 14:41:28 2023
    From Newsgroup: comp.sys.tandem

    On Friday, August 25, 2023 at 6:05:16rC>p.m. UTC-4, Randall wrote:
    On Wednesday, August 9, 2023 at 1:11:23rC>p.m. UTC-4, Randall wrote:
    Hi Everyone,

    Curl 8.2.1 is now available on the ITUGLIB website. Builds are available for OpenSSL 3.0.x, 1.1.1v, and 1.0.2u on J-series and L-series.

    Source code is available via git. The builds use the standard Curl code base with no separate patches for NonStop.

    Regards,
    Randall Becker
    On Behalf of the ITUGLIB Technical Committee
    FYI: If you come across CVE-2020-19909, the curl team will be doing a write-up of this but does not consider this a security vulnerability at all and is disputing the rank that NVD gave to the problem three years ago. If I hear anything else, I will post it.
    More info. The CVE is now in a "disputed" state instead of a "critical" state: https://www.cve.org/CVERecord?id=CVE-2020-19909
    --- Synchronet 3.21d-Linux NewsLink 1.2