curl / Mailing Lists / curl-users / Single Mail
Buy commercial curl support from WolfSSL. We help you work out your issues, debug your libcurl applications, use the API, port to new platforms, add new features and more. With a team lead by the curl founder himself.

RE: Curl vulnerability

From: Bill Mercer via curl-users <curl-users_at_lists.haxx.se>
Date: Thu, 7 Mar 2024 13:21:22 +0000

It sounds like you are trying to replace the default version of curl.exe which is preinstalled with Windows.

As of the November 2023 Windows update, the curl version is 8.4.0, so updating your Windows environment should give you the version you require.

If for some reason you can’t apply that update, then your best option is to install a newer curl version in another path, then add that path to the PATH environment variable before the system32 folder.


From: curl-users <curl-users-bounces_at_lists.haxx.se> On Behalf Of Singh Bisht \ Anand via curl-users
Sent: Wednesday, March 6, 2024 16:39
To: curl-users_at_lists.haxx.se
Cc: Singh Bisht \ Anand <asinghbisht_at_nisource.com>
Subject: Curl vulnerability
Importance: High

Hi team,

We have vulnerability of Curl in our environment which require to update curl to above or equal to 8.4 version. Could you provide us the steps to upgrade the curl without deleting or modifying the existing curl exe as we will be using deployment tool to update the curl. When we manually try to rename the existing file in order to place latest curl.exe file it gave error which says “ you require permission from trustedinstaller to make changes to file.”

Anand Bisht
EUC Lead
NiSource
Mob: +91-9599411154


-- 
Unsubscribe: https://lists.haxx.se/mailman/listinfo/curl-users
Etiquette:   https://curl.se/mail/etiquette.html
Received on 2024-03-07