_newslog.html

#include "_doctype.html"
<html>
<head> <title>curl - News!</title>
#include "css.t"
</head>

#define CURL_NEWS

#include "setup.t"
#include "_menu.html"

#undef DATE

#define NSUBJ(subj) <!-- start !--> <h2> subj
#define NDATE(date) <span style="float: right">date</span></h2>

#define NCOLS <div>
#define NCOLE </div><!-- stop !-->

#define COLRED  <p class="alert">
#define COLREDE </p><!-- stop !-->

TITLE(News in curl and libcurl land)

#if 0
 template:

 NSUBJ(bla)
 NDATE(14 Oct 1999)
 NCOLS

   Text to show up

 NCOLE
#endif

NSUBJ(curl and libcurl 8.11.0)
NDATE(November 6 2024)
NCOLS

The curl team proudly presents curl and
libcurl <a href="download.html">version 8.11.0</a>. See the
full <a href="/ch/8.11.0.html">changelog</a>.

<p>
Pay special attention to the <a href="/docs/security.html">security
vulnerability</a> fixed in this version.

NCOLE

NSUBJ(curl and libcurl 8.10.1)
NDATE(September 18 2024)
NCOLS

The curl team proudly presents curl and
libcurl <a href="download.html">version 8.10.1</a>. See the
full <a href="/ch/8.10.1.html">changelog</a>.

NCOLE

NSUBJ(curl and libcurl 8.10.0)
NDATE(September 11 2024)
NCOLS

The curl team proudly presents curl and
libcurl <a href="download.html">version 8.10.0</a>. See the
full <a href="/ch/8.10.0.html">changelog</a>.

<p>
Pay special attention to the <a href="/docs/security.html">security
vulnerability</a> fixed in this version.

NCOLE

NSUBJ(curl and libcurl 8.9.1)
NDATE(July 31 2024)
NCOLS

The curl team proudly presents curl and
libcurl <a href="download.html">version 8.9.1</a>. See the
full <a href="/ch/8.9.1.html">changelog</a>.

<p>
Pay special attention to the <a href="/docs/security.html">security
vulnerability</a> fixed in this version.

NCOLE

NSUBJ(curl and libcurl 8.9.0)
NDATE(July 24 2024)
NCOLS

The curl team proudly presents curl and
libcurl <a href="download.html">version 8.9.0</a>. See the
full <a href="/ch/8.9.0.html">changelog</a>.

<p>
Pay special attention to the <a href="/docs/security.html">security
vulnerabilities</a> fixed in this version.

NCOLE

NSUBJ(curl and libcurl 8.8.0)
NDATE(May 22 2024)
NCOLS

The curl team proudly presents curl and
libcurl <a href="download.html">version 8.8.0</a>. See the
full <a href="/ch/8.8.0.html">changelog</a>.

NCOLE

NSUBJ(curl and libcurl 8.7.1)
NDATE(March 27 2024)
NCOLS

The curl team proudly presents curl and
libcurl <a href="download.html">version 8.7.1</a>. See the
full <a href="/ch/8.7.1.html">changelog</a>.

NCOLE

NSUBJ(curl and libcurl 8.7.0)
NDATE(March 27 2024)
NCOLS

The curl team proudly presents curl and
libcurl <a href="download.html">version 8.7.0</a>. See the
full <a href="/ch/8.7.0.html">changelog</a>.

<p>
Pay special attention to the <a href="/docs/security.html">security
vulnerability</a> fixed in this version.

NCOLE

NSUBJ(curl and libcurl 8.6.0)
NDATE(January 31 2024)
NCOLS

The curl team proudly presents curl and
libcurl <a href="download.html">version 8.6.0</a>. See the
full <a href="/ch/8.6.0.html">changelog</a>.

<p>
Pay special attention to the <a href="/docs/security.html">security
vulnerability</a> fixed in this version.

NCOLE

NSUBJ(curl and libcurl 8.5.0)
NDATE(December 6 2023)
NCOLS

The curl team proudly presents curl and
libcurl <a href="download.html">version 8.5.0</a>. See the
full <a href="/ch/8.5.0.html">changelog</a>.

<p>
Pay special attention to the <a href="/docs/security.html">security
vulnerability</a> fixed in this version.

NCOLE

NSUBJ(curl and libcurl 8.4.0)
NDATE(October 11 2023)
NCOLS

The curl team proudly presents curl and
libcurl <a href="download.html">version 8.4.0</a>. See the
full <a href="/ch/8.4.0.html">changelog</a>.

<p>
Pay special attention to the <a href="/docs/security.html">security
vulnerability</a> fixed in this version.

NCOLE

NSUBJ(Severity HIGH security problem to be announced on Oct 11)
NDATE(October 6 2023)
NCOLS

This is just a heads up about what is coming in association with the pending
curl 8.4.0 release. We are collecting the little info that is
available <a href="https://github.com/curl/curl/discussions/12026">here</a>.

NCOLE

NSUBJ(curl and libcurl 8.3.0)
NDATE(September 13 2023)
NCOLS

The curl team proudly presents curl and
libcurl <a href="download.html">version 8.3.0</a>. See the
full <a href="/ch/8.3.0.html">changelog</a>.

<p>
Pay special attention to the <a href="/docs/security.html">security
vulnerability</a> fixed in this version.

NCOLE

 NSUBJ(curl and libcurl 8.2.1)
 NDATE(July 26 2023)
 NCOLS

 The curl team proudly presents curl and
 libcurl <a href="download.html">version 8.2.1</a>. See the
 full <a href="/ch/8.2.1.html">changelog</a>.

 NCOLE

 NSUBJ(curl and libcurl 8.2.0)
 NDATE(July 19 2023)
 NCOLS

 The curl team proudly presents curl and
 libcurl <a href="download.html">version 8.2.0</a>. See the
 full <a href="/ch/8.2.0.html">changelog</a>.

<p>
 Pay special attention to the <a href="/docs/security.html">security
 vulnerability</a> fixed in this version.

 NCOLE

 NSUBJ(curl and libcurl 8.1.2)
 NDATE(May 30 2023)
 NCOLS

 The curl team proudly presents curl and
 libcurl <a href="download.html">version 8.1.2</a>. See the
 full <a href="/ch/8.1.2.html">changelog</a>.

 NCOLE
 NSUBJ(curl and libcurl 8.1.1)
 NDATE(May 23 2023)
 NCOLS

 The curl team proudly presents curl and
 libcurl <a href="download.html">version 8.1.1</a>. See the
 full <a href="/ch/8.1.1.html">changelog</a>.

 NCOLE

 NSUBJ(curl and libcurl 8.1.0)
 NDATE(May 17 2023)
 NCOLS

 The curl team proudly presents curl and
 libcurl <a href="download.html">version 8.1.0</a>. See the
 full <a href="/ch/8.1.0.html">changelog</a>.

<p>
 Pay special attention to the four <a href="/docs/security.html">security
 vulnerabilities</a> fixed in this version.

 NCOLE

 NSUBJ(curl and libcurl 8.0.1)
 NDATE(March 20 2023)
 NCOLS

 The curl team proudly presents curl and
 libcurl <a href="download.html">version 8.0.1</a>. See the
 full <a href="/ch/8.0.1.html">changelog</a>.

 NCOLE

 NSUBJ(curl and libcurl 8.0.0)
 NDATE(March 20 2023)
 NCOLS

 The curl team proudly presents curl and
 libcurl <a href="download.html">version 8.0.0</a>. See the
full <a href="/ch/8.0.0.html">changelog</a>.

<p>
 Pay special attention to the
 three <a href="/docs/security.html">security
 vulnerabilities</a> fixed in this version.

 NCOLE

 NSUBJ(curl and libcurl 7.88.1)
 NDATE(February 20 2023)
 NCOLS

 The curl team proudly presents curl and
 libcurl <a href="download.html">version 7.88.1</a>. See the
full <a href="/ch/7.88.1.html">changelog</a>.

 NCOLE

 NSUBJ(curl and libcurl 7.88.0)
 NDATE(February 15 2023)
 NCOLS

 The curl team proudly presents curl and
 libcurl <a href="download.html">version 7.88.0</a>. See the
full <a href="/ch/7.88.0.html">changelog</a>.

<p>
 Pay special attention to the
 three <a href="/docs/security.html">security
 vulnerabilities</a> fixed in this version.

 NCOLE

 NSUBJ(curl and libcurl 7.87.0)
 NDATE(December 21 2022)
 NCOLS

 The curl team proudly presents curl and
 libcurl <a href="download.html">version 7.87.0</a>. See the
full <a href="/ch/7.87.0.html">changelog</a>.

<p>
 Pay special attention to the
 two <a href="https://curl.se/docs/security.html">security vulnerabilities</a>
 fixed in this version.

 NCOLE

 NSUBJ(curl and libcurl 7.86.0)
 NDATE(October 26 2022)
 NCOLS

 The curl team proudly presents curl and
 libcurl <a href="download.html">version 7.86.0</a>. See the
full <a href="/ch/7.86.0.html">changelog</a>.

<p>
 Pay special attention to the
 four <a href="https://curl.se/docs/security.html">security
 vulnerabilities</a> fixed in this version.

 NCOLE

 NSUBJ(curl and libcurl 7.85.0)
 NDATE(August 31 2022)
 NCOLS

 The curl team proudly presents curl and
 libcurl <a href="download.html">version 7.85.0</a>. See the
full <a href="/ch/7.85.0.html">changelog</a>.

<p>
 Pay special attention to the security vulnerability fixed in this
 version <a href="/docs/CVE-2022-35252.html">CVE-2022-35252: control code in
 cookie denial of service</a>.
   
 NCOLE

 NSUBJ(curl and libcurl 7.84.0)
 NDATE(June 27 2022)
 NCOLS

 The curl team proudly presents curl and
 libcurl <a href="download.html">version 7.84.0</a>. See the
full <a href="/ch/7.84.0.html">changelog</a>.

<p>
 Pay special attention to these four security vulnerabilities fixed in this
 version:
 <ul>
  <li> <a href="/docs/CVE-2022-32205.html">CVE-2022-32205: Set-Cookie denial of service</a>
  <li> <a href="/docs/CVE-2022-32206.html">CVE-2022-32206: HTTP compression denial of service</a>
  <li> <a href="/docs/CVE-2022-32207.html">CVE-2022-32207: Unpreserved file permissions</a>
  <li> <a href="/docs/CVE-2022-32208.html">CVE-2022-32208: FTP-KRB bad message verification</a>
 </ul>
   
 NCOLE

 NSUBJ(curl and libcurl 7.83.1)
 NDATE(May 11 2022)
 NCOLS

 The curl team proudly presents curl and
 libcurl <a href="download.html">version 7.83.1</a>. See the
 full <a href="/ch/7.83.1.html">changelog</a>.

<p>
 Pay special attention to these <b>six</b> security vulnerabilities fixed in
 this version:
 <ul>
   <li> <a href="/docs/CVE-2022-27778.html">CVE-2022-27778: curl removes wrong file on error</a>
   <li> <a href="/docs/CVE-2022-27779.html">CVE-2022-27779: cookie for trailing dot TLD</a>
   <li> <a href="/docs/CVE-2022-27780.html">CVE-2022-27780: percent-encoded path separator in URL host</a>
   <li> <a href="/docs/CVE-2022-27781.html">CVE-2022-27781: CERTINFO never-ending busy-loop</a>
   <li> <a href="/docs/CVE-2022-27782.html">CVE-2022-27782: TLS and SSH connection too eager reuse</a>     
   <li> <a href="/docs/CVE-2022-30115.html">CVE-2022-30115: HSTS bypass via trailing dot</a>
</ul>

 NCOLE

 NSUBJ(curl and libcurl 7.83.0)
 NDATE(April 27 2022)
 NCOLS

 The curl team proudly presents curl and
 libcurl <a href="download.html">version 7.83.0</a>. See the
 full <a href="/ch/7.83.0.html">changelog</a>.

<p>
 Pay special attention to these <b>four</b> security vulnerabilities fixed in
 this version:
 <ul>
   <li> <a href="/docs/CVE-2022-22576.html">CVE-2022-22576: OAUTH2 bearer bypass in connection re-use</a>
   <li> <a href="/docs/CVE-2022-27774.html">CVE-2022-27774: Credential leak on redirect</a>
   <li> <a href="/docs/CVE-2022-27775.html">CVE-2022-27775: Bad local IPv6 connection reuse</a>
   <li> <a href="/docs/CVE-2022-27776.html">CVE-2022-27776: Auth/cookie leak on redirect</a>
 </ul>

 NCOLE

 NSUBJ(curl and libcurl 7.82.0)
 NDATE(March 5 2022)
 NCOLS

 The curl team proudly presents curl and
 libcurl <a href="download.html">version 7.82.0</a>. See the
 full <a href="/ch/7.82.0.html">changelog</a>.

 NCOLE

 NSUBJ(curl and libcurl 7.81.0)
 NDATE(January 5 2022)
 NCOLS

 The curl team proudly presents curl and
 libcurl <a href="download.html">version 7.81.0</a>. See the
 full <a href="/ch/7.81.0.html">changelog</a>.

 NCOLE

 NSUBJ(curl and libcurl 7.80.0)
 NDATE(November 10 2021)
 NCOLS

 The curl team proudly presents curl and
 libcurl <a href="download.html">version 7.80.0</a>. See the
 full <a href="/ch/7.80.0.html">changelog</a>.

 NCOLE

 NSUBJ(curl and libcurl 7.79.1)
 NDATE(September 22 2021)
 NCOLS

 The curl team proudly presents curl and
 libcurl <a href="download.html">version 7.79.1</a>. See the
 full <a href="/ch/7.79.1.html">changelog</a>.

 NCOLE

 NSUBJ(curl and libcurl 7.79.0)
 NDATE(September 15 2021)
 NCOLS

 The curl team proudly presents curl and
 libcurl <a href="download.html">version 7.79.0</a>. See the
 full <a href="/ch/7.79.0.html">changelog</a>.

<p>
 Pay special attention to the <b>three</b> security vulnerabilities fixed in
 this version:
 <ul>
   <li> <a href="/docs/CVE-2021-22945.html">CVE-2021-22945: UAF and double-free in MQTT sending</a>
   <li> <a href="/docs/CVE-2021-22946.html">CVE-2021-22946: Protocol downgrade required TLS bypassed</a>
   <li> <a href="/docs/CVE-2021-22947.html">CVE-2021-22947: STARTTLS protocol injection via MITM</a>
 </ul>

 NCOLE

 NSUBJ(curl and libcurl 7.78.0)
 NDATE(July 21 2021)
 NCOLS

 The curl team proudly presents curl and
 libcurl <a href="download.html">version 7.78.0</a>. See the
 full <a href="/ch/7.78.0.html">changelog</a>.

<p>
 Pay special attention to the <b>five</b> security vulnerabilities fixed in
 this version:
 <ul>
   <li> <a href="/docs/CVE-2021-22922.html">CVE-2021-22922: Wrong content via metalink not discarded</a>
   <li> <a href="/docs/CVE-2021-22923.html">CVE-2021-22923: Metalink download sends credentials</a>
   <li> <a href="/docs/CVE-2021-22924.html">CVE-2021-22924: Bad connection reuse due to flawed path name checks</a>
   <li> <a href="/docs/CVE-2021-22925.html">CVE-2021-22925: TELNET stack contents disclosure again</a>
   <li> <a href="/docs/CVE-2021-22926.html">CVE-2021-22926: CURLOPT_SSLCERT mixup with Secure Transport</a>
 </ul>

 NCOLE

 NSUBJ(curl and libcurl 7.77.0)
 NDATE(May 26 2021)
 NCOLS

 The curl team proudly presents curl and
 libcurl <a href="download.html">version 7.77.0</a>. See the
 full <a href="/ch/7.77.0.html">changelog</a>.

<p>
 Pay special attention to the <b>three</b> security vulnerabilities fixed in
 this version:
 <ul>
   <li> <a href="/docs/CVE-2021-22897.html">CVE-2021-22897: schannel cipher selection surprise</a>
   <li> <a href="/docs/CVE-2021-22898.html">CVE-2021-22898: TELNET stack contents disclosure</a>
   <li> <a href="/docs/CVE-2021-22901.html">CVE-2021-22901: TLS session caching disaster</a>
 </ul>

 NCOLE

 NSUBJ(A new IRC channel)
 NDATE(May 20 2021)
 NCOLS

 The curl project officially moved to the <a href="https://libera.chat">Libera.Chat</a>
 IRC network into the <i>#curl</i> channel. The documentation on joining was
 updated accordingly.

 NCOLE

 NSUBJ(curl and libcurl 7.76.1)
 NDATE(April 14 2021)
 NCOLS

 The curl team proudly presents curl and
 libcurl <a href="download.html">version 7.76.1</a>. See
 the <a href="/ch/7.76.1.html">changelog</a>.

 NCOLE

 NSUBJ(curl and libcurl 7.76.0)
 NDATE(March 31 2021)
 NCOLS

 The curl team proudly presents curl and
 libcurl <a href="download.html">version 7.76.0</a>. See
the <a href="/ch/7.76.0.html">changelog</a>.

<p>
 Pay special attention to the two security vulnerabilities fixed in this
 version: <a href="/docs/CVE-2021-22876.html">CVE-2021-22876: Automatic
 referer leaks credentials</a>
 and <a href="/docs/CVE-2021-22890.html">CVE-2021-22890: TLS 1.3 session
 ticket proxy host mixup</a>.

 NCOLE


 NSUBJ(curl and libcurl 7.75.0)
 NDATE(February 3 2021)
 NCOLS

 The curl team proudly presents curl and
 libcurl <a href="download.html">version 7.75.0</a>. See
the <a href="/ch/7.75.0.html">changelog</a>.

 NCOLE

 NSUBJ(curl and libcurl 7.74.0)
 NDATE(December 9 2020)
 NCOLS

 The curl team proudly presents curl and
 libcurl <a href="download.html">version 7.74.0</a>. See
 the <a href="/ch/7.74.0.html">changelog</a>.

<p>
 Pay special attention to these security vulnerabilities fixed in this
 version: <a href="/docs/CVE-2020-8284.html">CVE-2020-8284: trusting FTP PASV
 responses</a>, <a href="/docs/CVE-2020-8285.html">CVE-2020-8285: FTP wildcard
 stack overflow</a> and <a href="/docs/CVE-2020-8286.html">CVE-2020-8286:
 Inferior OCSP verification</a>.

 NCOLE

 NSUBJ(curl.se moved to a new server)
 NDATE(23 Oct 2020)
 NCOLS

 The website curl.se and others
 were <a href="https://daniel.haxx.se/blog/2020/10/23/a-server-transition/">moved
 over to a new host today</a>. No major problems or outages were discovered. A
 few minor breakages occurred but were fixed within shortly. A good
 transition! It was fifteen years since the previous host move!

 NCOLE

 NSUBJ(curl and libcurl 7.73.0)
 NDATE(October 14 2020)
 NCOLS

 The curl team proudly presents curl and
 libcurl <a href="download.html">version 7.73.0</a>. See
 the <a href="/ch/7.73.0.html">changelog</a>.

 NCOLE

NSUBJ(curl and libcurl 7.72.0)
 NDATE(August 19 2020)
 NCOLS

 The curl team proudly presents curl and
 libcurl <a href="download.html">version 7.72.0</a>. See
 the <a href="/ch/7.72.0.html">changelog</a>.

<p>
 Pay special attention to the security vulnerability fixed in this
 version: <a href="/docs/CVE-2020-8231.html">CVE-2020-8231: libcurl:
 wrong connect-only connection</a>.

 NCOLE

 NCOLE

 NSUBJ(curl and libcurl 7.71.1)
 NDATE(July 1 2020)
 NCOLS

 The curl team proudly presents curl and
 libcurl <a href="download.html">version 7.71.1</a>. See
 the <a href="/ch/7.71.1.html">changelog</a>.

 NCOLE

 NSUBJ(curl and libcurl 7.71.0)
 NDATE(June 24 2020)
 NCOLS

 The curl team proudly presents curl and
 libcurl <a href="download.html">version 7.71.0</a>. See
 the <a href="/ch/7.71.0.html">changelog</a>.

<p>
 Pay special attention to the <b>two</b> security vulnerabilities fixed in
 this version: <a href="/docs/CVE-2020-8169.html">CVE-2020-8169: Partial
 password leak over DNS on HTTP redirect</a>
 and <a href="/docs/CVE-2020-8177.html">CVE-2020-8177: curl overwrite local
 file with -J</a>.

 NCOLE

 NSUBJ(curl and libcurl 7.70.0)
 NDATE(April 29 2020)
 NCOLS

 The curl team proudly presents curl and
 libcurl <a href="download.html">version 7.70.0</a>. See
 the <a href="/ch/7.70.0.html">changelog</a>.

 NCOLE

 NSUBJ(curl and libcurl 7.69.1)
 NDATE(March 11 2020)
 NCOLS

 The curl team proudly presents curl and
 libcurl <a href="download.html">version 7.69.1</a>. See
 the <a href="/ch/7.69.1.html">changelog</a>.

 NCOLE

 NSUBJ(curl and libcurl 7.69.0)
 NDATE(March 4 2020)
 NCOLS

 The curl team proudly presents curl and
 libcurl <a href="download.html">version 7.69.0</a>. See
 the <a href="/ch/7.69.0.html">changelog</a>.

 NCOLE

 NSUBJ(curl and libcurl 7.68.0)
 NDATE(January 8 2020)
 NCOLS

 The curl team proudly presents curl and libcurl
 <a href="download.html">version 7.68.0</a>. See
 the <a href="/ch/7.68.0.html">changelog</a>.

<p>
 Pay special attention to the security vulnerability fixed in this
 version: <a href="/docs/CVE-2019-15601.html">CVE-2019-15601: SMB access
 smuggling via FILE URL on Windows </a>.

 NCOLE

 NSUBJ(curl and libcurl 7.67.0)
 NDATE(November 6 2019)
 NCOLS

 The curl team proudly presents curl and libcurl
 <a href="download.html">version 7.67.0</a>. See
 the <a href="/ch/7.67.0.html">changelog</a>.

 NCOLE

 NSUBJ(curl and libcurl 7.66.0)
 NDATE(September 11 2019)
 NCOLS

 The curl team proudly presents curl and libcurl
 <a href="download.html">version 7.66.0</a>. See
 the <a href="/ch/7.66.0.html">changelog</a>.

<p>
 Pay special attention to the two security vulnerabilities fixed in this
 version: <a href="/docs/CVE-2019-5481.html">CVE-2019-5481: ftp-krb
 double-free</a> and <a href="/docs/CVE-2019-5482.html">CVE-2019-5482: TFTP
 heap buffer overflow</a>.

 NCOLE

 NSUBJ(curl and libcurl 7.65.3)
 NDATE(July 19 2019)
 NCOLS

 The curl team proudly presents curl and libcurl
 <a href="download.html">version 7.65.3</a>. A patch release fixing a single
 but annoying regression. See the <a href="/ch/7.65.3.html">changelog</a>.

 NCOLE

 NSUBJ(curl and libcurl 7.65.2)
 NDATE(July 17 2019)
 NCOLS

 The curl team proudly presents curl and libcurl
 <a href="download.html">version 7.65.2</a>. A patch release. All bug-fixes
 are documented in the <a href="/ch/7.65.2.html">changelog</a>.

 NCOLE

 NSUBJ(curl and libcurl 7.65.1)
 NDATE(June 5 2019)
 NCOLS

 The curl team proudly presents curl and libcurl
 <a href="download.html">version 7.65.1</a>. A patch release. All bug-fixes
 are documented in the <a href="/ch/7.65.1.html">changelog</a>.

 NCOLE

 NSUBJ(curl and libcurl 7.65.0)
 NDATE(May 22 2019)
 NCOLS

 The curl team proudly presents curl and libcurl
 <a href="download.html">version 7.65.0</a>. All changes and bug-fixes are
 documented in the <a href="/ch/7.65.0.html">changelog</a>.

<p>
 Pay special attention to the two security vulnerabilities fixed in this
 version: <a href="/docs/CVE-2019-5435.html">CVE-2019-5435</a>
 and <a href="/docs/CVE-2019-5436.html">CVE-2019-5436</a>. Both with severity
 low.

 NCOLE

 NSUBJ(curl and libcurl 7.64.1)
 NDATE(March 27 2019)
 NCOLS

 The curl team proudly presents curl and libcurl
 <a href="download.html">version 7.64.1</a>. A patch release. All bug-fixes
 are documented in the <a href="/ch/7.64.1.html">changelog</a>.

 NCOLE

 NSUBJ(curl and libcurl 7.64.0)
 NDATE(February 6 2019)
 NCOLS

 The curl team proudly presents curl and libcurl
 <a href="download.html">version 7.64.0</a>. All bug-fixes are documented in
 the <a href="/ch/7.64.0.html">changelog</a>.

<p>
 Pay special attention to three security vulnerabilities fixed in this
 version: <a href="/docs/CVE-2018-16890.html">CVE-2018-16890</a>, <a href="/docs/CVE-2019-3822.html">CVE-2019-3822</a>w
 and <a href="/docs/CVE-2019-3823.html">CVE-2019-3823</a>.

 NCOLE

 NSUBJ(curl and libcurl 7.63.0)
 NDATE(December 12 2018)
 NCOLS

 The curl team proudly presents curl and libcurl
 <a href="download.html">version 7.63.0</a>. All bug-fixes are documented in
 the <a href="/ch/7.63.0.html">changelog</a>.

 NCOLE

 NSUBJ(curl and libcurl 7.62.0)
 NDATE(October 31 2018)
 NCOLS

 The curl team proudly presents curl and libcurl
 <a href="download.html">version 7.62.0</a>. All bug-fixes are documented in
 the <a href="/ch/7.62.0.html">changelog</a>.

<p>
 Pay special attention to two security vulnerabilities fixed in this
 version: <a href="/docs/CVE-2018-16839.html">CVE-2018-16839</a>
 and <a href="/docs/CVE-2018-16840.html">CVE-2018-16840</a>.

 NCOLE

 NSUBJ(curl and libcurl 7.61.1)
 NDATE(September 5 2018)
 NCOLS

 The curl team proudly presents curl and libcurl
 <a href="download.html">version 7.61.1</a>. All bug-fixes are documented in
 the <a href="/ch/7.61.1.html">changelog</a>.

<p>
 Pay special attention to the security vulnerability fixed in this
 version: <a href="/docs/CVE-2018-14618.html">CVE-2018-14618</a>.

 NCOLE

 NSUBJ(curl and libcurl 7.61.0)
 NDATE(July 11 2018)
 NCOLS

 The curl team proudly presents curl and libcurl
 <a href="download.html">version 7.61.0</a>. All changes are documented in
 the <a href="/ch/7.61.0.html">changelog</a>.

<p>
 Pay special attention to the security vulnerability fixed in this
 version:
 <a href="/docs/CVE-2018-0500.html">CVE-2018-0500</a>.

 NCOLE

 NSUBJ(curl and libcurl 7.60.0)
 NDATE(May 16 2018)
 NCOLS

 The curl team proudly presents curl and libcurl
 <a href="download.html">version 7.60.0</a>. All changes are documented in
 the <a href="/ch/7.60.0.html">changelog</a>.

<p>
 Pay special attention to the two security vulnerabilities fixed in this
 version:
 <a href="/docs/CVE-2018-1000300.html">CVE-2018-1000300</a> and
 <a href="/docs/CVE-2018-1000301.html">CVE-2018-1000301</a>

 NCOLE

 NSUBJ(curl and libcurl 7.59.0)
 NDATE(March 14 2018)
 NCOLS

 The curl team proudly presents curl and libcurl
 <a href="download.html">version 7.59.0</a>. All changes are documented in
 the <a href="/ch/7.59.0.html">changelog</a>.

<p>
 Pay special attention to the three security vulnerabilities fixed in this
 version:
 <a href="/docs/CVE-2018-1000120.html">CVE-2018-1000120</a>,
 <a href="/docs/CVE-2018-1000121.html">CVE-2018-1000121</a> and
 <a href="/docs/CVE-2018-1000122.html">CVE-2018-1000122</a>

 NCOLE

 NSUBJ(curl and libcurl 7.58.0)
 NDATE(January 24 2018)
 NCOLS

 The curl team proudly presents curl and libcurl
 <a href="download.html">version 7.58.0</a>. All changes are documented in
 the <a href="/ch/7.58.0.html">changelog</a>.

<p>
 Pay special attention to the two security vulnerabilities fixed in this version:
 <a href="/docs/CVE-2018-1000005.html">CVE-2018-1000005</a> and
 <a href="/docs/CVE-2018-1000007.html">CVE-2018-1000007</a>

 NCOLE

 NSUBJ(curl and libcurl 7.57.0)
 NDATE(November 29 2017)
 NCOLS

 The curl team proudly presents curl and libcurl
 <a href="download.html">version 7.57.0</a>. All changes are documented in
 the <a href="/ch/7.57.0.html">changelog</a>.

<p>
 Pay special attention to the three security vulnerabilities fixed in this version:
 <a href="/docs/adv_2017-11e7.html">CVE-2017-8816</a>,
 <a href="/docs/CVE-2017-8817.html">CVE-2017-8817</a>
 and <a href="/docs/CVE-2017-8818.html">CVE-2017-8818</a>.

 NCOLE

 NSUBJ(curl and libcurl 7.56.1)
 NDATE(October 23 2017)
 NCOLS

 The curl team proudly presents curl and libcurl
 <a href="download.html">version 7.56.1</a>. All changes are documented in
 the <a href="/ch/7.56.1.html">changelog</a>.

<p>
 Pay special attention to
 the <a href="/docs/CVE-2017-1000257.html">CVE-2017-1000257</a> security
 vulnerability we fixed.

 NCOLE

 NSUBJ(curl and libcurl 7.56.0)
 NDATE(October 4 2017)
 NCOLS

 The curl team proudly presents curl and
 libcurl <a href="download.html">version 7.56.0</a>. All changes are
 documented in the <a href="/ch/7.56.0.html">changelog</a>.

<p>
 Pay special attention to
 the <a href="/docs/CVE-2017-1000254.html">CVE-2017-1000254</a> security
 vulnerability we fixed.

 NCOLE

 NSUBJ(curl and libcurl 7.55.1)
 NDATE(August 14 2017)
 NCOLS

 The curl team proudly presents curl and
 libcurl <a href="download.html">version 7.55.1</a>. All changes are
 documented in the <a href="/ch/7.55.1.html">changelog</a>.

 NCOLE

NSUBJ(curl and libcurl 7.54.1)
 NDATE(June 14 2017)
 NCOLS

 The curl team proudly presents curl and
 libcurl <a href="download.html">version 7.54.1</a>. The bug fixes are
 documented in the <a href="/ch/7.54.1.html">changelog</a>.
<p>
 Pay special attention to
 the <a href="/docs/CVE-2017-9502.html">CVE-2017-9502</a> security
 vulnerability we fixed.

 NCOLE

NSUBJ(curl and libcurl 7.54.0)
 NDATE(April 19 2017)
 NCOLS

 The curl team proudly presents curl and
 libcurl <a href="download.html">version 7.54.0</a>. The bug fixes are
 documented in the <a href="/ch/7.54.0.html">changelog</a>.
<p>
 Pay special attention to
 the <a href="/docs/CVE-2017-7468.html">CVE-2017-7468</a> security
 vulnerability we fixed.

 NCOLE

 NSUBJ(curl and libcurl 7.53.1)
 NDATE(February 24 2017)
 NCOLS

 The curl team proudly presents curl and
 libcurl <a href="download.html">version 7.53.1</a>. The bug fixes are
 documented in the <a href="/ch/7.53.1.html">changelog</a>.
<p>
 We did this patch release this soon after our previous version primarily to
 address a build error that caused people on Windows some annoyances.

 NCOLE

 NSUBJ(curl and libcurl 7.53.0)
 NDATE(February 22 2017)
 NCOLS

 The curl team proudly presents curl and
 libcurl <a href="download.html">version 7.53.0</a>. The bug fixes are
 documented in the <a href="/ch/7.53.0.html">changelog</a>.
<p>
 Pay special attention to the <a href="/docs/CVE-2017-2629.html">CVE-2017-2629
 security vulnerability</a> we fixed.

 NCOLE

 NSUBJ(curl and libcurl 7.52.1)
 NDATE(December 23 2016)
 NCOLS

 The curl team proudly presents curl and
 libcurl <a href="download.html">version 7.52.1</a>. The bug fixes are
 documented in the <a href="/ch/7.52.1.html">changelog</a>.
<p>
 We hurried out this release due to
 the <a href="/docs/CVE-2016-9594.html">security vulnerability</a> we found in
 7.52.0.

 NCOLE

 NSUBJ(curl and libcurl 7.52.0)
 NDATE(December 21 2016)
 NCOLS

 The curl team proudly presents curl and
 libcurl <a href="download.html">version 7.52.0</a>. All changes and bug fixes
are documented in the <a href="/ch/7.52.0.html">changelog</a>.
<p>
 Pay special attention to the new <a href="/docs/vulnerabilities.html">security vulnerabilities</a>.

 NCOLE

 NSUBJ(curl and libcurl 7.51.0)
 NDATE(November 2 2016)
 NCOLS

 The curl team proudly presents curl and
 libcurl <a href="download.html">version 7.51.0</a>. All changes and bug fixes
are documented in the <a href="/ch/7.51.0.html">changelog</a>.
<p>
 Pay special attention to the new <a href="/docs/vulnerabilities.html">security vulnerabilities</a>.

 NCOLE

 NSUBJ(curl and libcurl 7.50.3)
 NDATE(September 14 2016)
 NCOLS

 The curl team proudly presents curl and
 libcurl <a href="download.html">version 7.50.3</a>. All changes and bug fixes
are documented in the <a href="/ch/7.50.3.html">changelog</a>.
<p>
 Pay special attention to the new security vulnerability <a href="https://curl.se/docs/CVE-2016-7167.html">CVE-2016-7167</a>.

 NCOLE

 NSUBJ(curl and libcurl 7.50.2)
 NDATE(September 7 2016)
 NCOLS

 The curl team proudly presents curl and
 libcurl <a href="download.html">version 7.50.2</a>. All changes and bug fixes
 are documented in the <a href="/ch/7.50.2.html">changelog</a>.

 NCOLE

 NSUBJ(curl and libcurl 7.50.1)
 NDATE(August 3 2016)
 NCOLS

 The curl team proudly presents curl and
 libcurl <a href="download.html">version 7.50.1</a>. All changes and bug fixes
 are documented in the <a href="/ch/7.50.1.html">changelog</a>. Pay
 special attention to the three new security vulnerabilities mentioned there.

 NCOLE

 NSUBJ(curl and libcurl 7.50.0)
 NDATE(July 21 2016)
 NCOLS

 The curl team proudly presents curl and
 libcurl <a href="download.html">version 7.50.0</a>. All changes and bug fixes
 are documented in the <a href="/ch/7.50.0.html">changelog</a>.

 NCOLE

 NSUBJ(Windows DLL hijacking)
 NDATE(May 30 2016)
 NCOLS

 curl and libcurl are vulnerable to
 a <a href="https://curl.se/docs/CVE-2016-4802.html">Windows DLL
 hijacking</a> (known as CVE-2016-4802). Affecting versions running on
 Microsoft Windows.

 NCOLE

 NSUBJ(curl and libcurl 7.49.1)
 NDATE(May 30 2016)
 NCOLS

 The curl team proudly presents curl and
 libcurl <a href="download.html">version 7.49.1</a>. All changes and bug fixes
 are documented in the <a href="/ch/7.49.1.html">changelog</a>.

 NCOLE

 NSUBJ(curl and libcurl 7.49.0)
 NDATE(May 18 2016)
 NCOLS

 The curl team proudly presents curl and
 libcurl <a href="download.html">version 7.49.0</a>. All changes and bug fixes
 are documented in the <a href="/ch/7.49.0.html">changelog</a>.

 NCOLE

 NSUBJ(TLS certificate check bypass with mbedTLS/PolarSSL)
 NDATE(May 18 2016)
 NCOLS

 curl and libcurl are vulnerable to
 a <a href="https://curl.se/docs/CVE-2016-3739.html">TLS certificate check
 bypass</a> (known as CVE-2016-3739) when built to use mbedTLS or PolarSSL.

 NCOLE

 NSUBJ(curl and libcurl 7.48.0)
 NDATE(March 23 2016)
 NCOLS

 The curl team proudly presents yet another version in the never ending train
 of curl releases. curl and libcurl <a href="download.html">version 7.48.0</a>
 is out. Read up on all the changes and bug fixes in
 the <a href="/ch/7.48.0.html">changelog</a>.

 NCOLE

 NSUBJ(curl and libcurl 7.47.1)
 NDATE(February 8 2016)
 NCOLS

 The curl team proudly presents curl and
 libcurl <a href="download.html">version 7.47.1</a>. Read up on all the
 changes and bug fixes in the <a href="/ch/7.47.1.html">changelog</a>.

 NCOLE

 NSUBJ(git repo moved on github)
 NDATE(February 3 2016)
 NCOLS

 The git repositories on github for
 the <a href="https://github.com/curl/curl">source</a> and
 the <a href="https://github.com/curl/curl-www">website</a> have now been
 moved over to its new home there: the <a href="https://github.com/curl">curl
 organization</a>.


 NCOLE

 NSUBJ(website over HTTPS)
 NDATE(January 29 2016)
 NCOLS

  The curl website is now served over HTTPS and with HTTP/2 - with
  certificates from Let's Encrypt. Starting February 3, the curl site
  automatically redirects all http accesses to its https version. No more HTTP
  accesses to contents.

 NCOLE

 NSUBJ(curl and libcurl 7.47.0)
 NDATE(January 27 2016)
 NCOLS

 The curl team proudly presents curl and
 libcurl <a href="download.html">version 7.47.0</a>. Read up on all the
 changes and bug fixes in the <a href="/ch/7.47.0.html">changelog</a>.
<p>
 This release comes bundled with two security
 advisories: <a href="//curl.se/docs/CVE-2016-0754.html">CVE-2016-0754:
 local drive traversal when saving file on Windows</a>
 and <a href="//curl.se/docs/CVE-2016-0755.html">CVE-2016-0755: NTLM
 credentials not-checked for proxy connection re-use</a>.

 NCOLE

 NSUBJ(curl and libcurl 7.46.0)
 NDATE(December 2 2015)
 NCOLS

 The curl team proudly presents curl and
 libcurl <a href="download.html">version 7.46.0</a>. Read up on all the
 changes and bug fixes in the <a href="/ch/7.46.0.html">changelog</a>.
<p>
 This is the 150th release counted from the beginning!

 NCOLE

NSUBJ(curl and libcurl 7.45.0)
 NDATE(October 7 2015)
 NCOLS

 The curl team proudly presents the best release ever: curl and
 libcurl <a href="download.html">version 7.45.0</a>. Read up on all the
 changes and bug fixes in the <a href="/ch/7.45.0.html">changelog</a>.

 NCOLE

 NSUBJ(curl HTTP cheat sheet)
 NDATE(September 24 2015)
 NCOLS

  As a little side-project,
  a <a href="https://bagder.github.io/curl-cheat-sheet/http-sheet.html">curl
  cheat sheet</a> is being worked on, as a small page showing the most
  commonly used curl HTTP options.

<p>
  Help us improve it! It will most probably move into the curl site umbrella
  at some point.

 NCOLE

 NSUBJ(curl and libcurl 7.44.0)
 NDATE(August 12 2015)
 NCOLS

 The curl team proudly presents curl and
 libcurl <a href="download.html">version 7.44.0</a>. Read up on all the
 changes and bug fixes in the <a href="/ch/7.44.0.html">changelog</a>.

 NCOLE

 NSUBJ([SECURITY NOTICE] libidn with bad UTF8 input)
 NDATE(June 29 2015)
 NCOLS

  A recent security review of libcurl showed that a remote attacker can
  abuse libcurl's support for international domain names to disclose
  memory of a libcurl application or cause other unintended behaviors by
  passing in a malformed unicode string in the URL parameter.

<p>
  <a href="//curl.se/mail/lib-2015-06/0143.html">The entire libidn
  notice</a>

 NCOLE

 NSUBJ(Release archives over HTTPS)
 NDATE(June 29 2015)
 NCOLS

 As long as the main curl site is still on HTTP only, we now offer HTTPS
 downloads of the <a href="/download.html">source archives</a> over HTTPS from
 github. We also modified the look of the release archives list slightly.
<p>
 Enjoy!

 NCOLE

 NSUBJ(ISP blacklisted by Spamhaus)
 NDATE(June 18 2015)
 NCOLS

  Right now a large amount of mail servers in the world refuse to accept mails
  from our primary mail server
  since <a href="https://www.spamhaus.org/sbl/query/SBL212408">Spamhaus deems
  our ISP to be irresponsible</a> and blacklists us.
<p>
  We have a fixed IP and we have done nothing wrong here, but apparently
  collective punishment is a method.

 NCOLE

 NSUBJ(daniel weekly 37)
 NDATE(June 17 2015)
 NCOLS

 <iframe width="560" height="315" src="https://www.youtube.com/embed/nSojqPVJAjA" frameborder="0" allowfullscreen></iframe>

 NCOLE

 NSUBJ(curl and libcurl 7.43.0)
 NDATE(June 17 2015)
 NCOLS

 The curl team proudly presents curl and
 libcurl <a href="download.html">version 7.43.0</a>. Read up on all the
 changes and bug fixes in the <a href="/ch/7.43.0.html">changelog</a>.

<p>
 This release comes bundled with two security advisories:
 <a href="//curl.se/docs/CVE-2015-3236.html">CVE-2015-3236:
 lingering HTTP credentials in connection re-use</a>
 and <a href="//curl.se/docs/CVE-2015-3237.html">CVE-2015-3237: SMB
 send off unrelated memory contents</a>.

 NCOLE

 NSUBJ(daniel weekly 36)
 NDATE(June 9 2015)
 NCOLS

 <iframe width="400" height="225"
 src="https://www.youtube.com/embed/p2oorXa2f-A" frameborder="0"
 allowfullscreen></iframe>

 NCOLE

 NSUBJ(daniel weekly 35)
 NDATE(June 3 2015)
 NCOLS

 <iframe width="400" height="225"
 src="https://www.youtube.com/embed/nQFWlAvM4Kw" frameborder="0"
 allowfullscreen></iframe>

 NCOLE

 NSUBJ(curl user poll 2015 analysis)
 NDATE(May 26 2015)
 NCOLS

  The <a href="https://daniel.haxx.se/media/curl%20user%20poll%202015%20analysis.pdf">30
  page document</a> with all details and analyses of the curl user poll 2015
  is now available. It shows details of all the questions, most of them with a
  comparison with last year’s survey. The write-ins are also full of good
  advice, wisdom and some signs of ignorance or unawareness.

 NCOLE

 NSUBJ(curl and libcurl 7.42.1)
 NDATE(April 29 2015)
 NCOLS

 The curl team proudly presents another curl and libcurl
 release: <a href="download.html">version 7.42.1</a>. Read up on all the
 changes and bug fixes in the <a href="/ch/7.42.1.html">changelog</a>.

<p>
 This release comes bundled another security advisory:
 <a href="//curl.se/docs/CVE-2015-3153.html">CVE-2015-3153: sensitive
 HTTP server headers also sent to proxies</a>.

 NCOLE

 NSUBJ(curl and libcurl 7.42.0)
 NDATE(April 22 2015)
 NCOLS

 The curl team proudly presents another curl and libcurl
 release: <a href="download.html">version 7.42.0</a>. Read up on all the
 changes and bug fixes in the <a href="/ch/7.42.0.html">changelog</a>.

<p>
 This release comes bundled with no less than four different security
 advisories:
 <ul>
  <li> <a href="//curl.se/docs/CVE-2015-3144.html">hostname out of boundary memory access</a>
  <li> <a href="//curl.se/docs/CVE-2015-3145.html">cookie parser out of boundary memory access</a>
  <li> <a href="//curl.se/docs/CVE-2015-3148.html">Negotiate not treated as connection-oriented</a>
  <li> <a href="//curl.se/docs/CVE-2015-3143.html">Re-using authenticated connection when unauthenticated</a>
 </ul>

 NCOLE

 NSUBJ(becoming more github friendly)
 NDATE(March 2 2015)
 NCOLS

  We are trying to lower barriers and friction for newcomers. We have a new
  positive attitude to pull requests and issues filed directly
  at <a href="https://github.com/curl/curl">github</a>. Welcome!

<p>
  Existing hackers: consider clicking 'watch' on that repo to get notified.

 NCOLE

 NSUBJ(curl and libcurl 7.41.0)
 NDATE(February 25 2015)
 NCOLS

 The curl team proudly presents another curl and libcurl
 release: <a href="download.html">version 7.41.0</a>. Read up on all the
 changes and bug fixes in the <a href="/ch/7.41.0.html">changelog</a>.

 NCOLE


 NSUBJ(Enhanced vulnerability overview)
 NDATE(January 9 2015)
 NCOLS

  The <a href="/docs/vulnerabilities.html">vulnerability table</a> on the web
  site has gotten an overhaul. It is the complete list of all published curl
  vulnerabilities together with which curl versions that are vulnerable.
<p>
  The new layout is <i>much</i> smaller HTML, and it now features links to
  specific summaries for each individual curl release through the
  history. Each summarizing its own vulnerability situation.
<p>
  For example, you can look at the vulnerability situation
  for <a href="/docs/vuln-7.37.0.html">curl 7.37.0</a> as well as all the
  others - back to <a href="/docs/vuln-6.0.html">6.0</a>, released in 1999.

 NCOLE


 NSUBJ(curl and libcurl 7.40.0)
 NDATE(January 8 2015)
 NCOLS

 The curl team proudly presents another curl and libcurl
 release: <a href="download.html">version 7.40.0</a>. Read up on all the
 changes and bug fixes on the <a href="/ch/7.40.0.html">changes</a> page.

<p>
 We also publish two security advisories in association with this
 release. See <a href="/docs/CVE-2014-8151.html">CVE-2014-8151</a>
 and <a href="/docs/CVE-2014-8150.html">CVE-2014-8150</a> for all the details.

 NCOLE

#include "_footer.html"
</body>
</html>