Buy commercial curl support. We
help you work out your issues, debug your libcurl applications, use the API,
port to new platforms, add new features and more. With a team lead by the
curl founder Daniel himself.
Some questions about CVE-2017-7407
- Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]
From: 陈星杵 via curl-library <curl-library_at_lists.haxx.se>
Date: Wed, 18 Dec 2024 15:18:33 +0800 (GMT+08:00)
Hello,
Sorry to bother you. I noticed that the "introduce commit" listed on the "https://curl.se/docs/CVE-2017-7407.html"is 90030a49c7facfefeca8, but when I checked the commit, there were no related code changes. I also found that commit "dfec172157" is the initial commit where the vulnerability file was introduced. So the truth introduce commit is "dfec172157"?
Thanks.
Reference:
https://curl.se/docs/CVE-2017-7407.html
https://github.com/curl/curl/commit/90030a49c7facfefeca8
https://github.com/curl/curl/commit/dfec172157
Date: Wed, 18 Dec 2024 15:18:33 +0800 (GMT+08:00)
Hello,
Sorry to bother you. I noticed that the "introduce commit" listed on the "https://curl.se/docs/CVE-2017-7407.html"is 90030a49c7facfefeca8, but when I checked the commit, there were no related code changes. I also found that commit "dfec172157" is the initial commit where the vulnerability file was introduced. So the truth introduce commit is "dfec172157"?
Thanks.
Reference:
https://curl.se/docs/CVE-2017-7407.html
https://github.com/curl/curl/commit/90030a49c7facfefeca8
https://github.com/curl/curl/commit/dfec172157
-- Unsubscribe: https://lists.haxx.se/mailman/listinfo/curl-library Etiquette: https://curl.se/mail/etiquette.htmlReceived on 2024-12-18