openGauss-third_party/dependency/libcurl/CVE-2023-23914-4.patch-代码预览-openGauss-third_party:基于开源生态的数据库依赖编译项目 - AtomGit

Bbuterfix cve-2023-23916 cve-2023-23914 cve-2023-23915

7a2a769e创建于 2023年3月1日历史提交

From a75366c47ffe0895bcde7a5d311e0e7f6a1dcc9c Mon Sep 17 00:00:00 2001
From: Daniel Stenberg <daniel@haxx.se>
Date: Tue, 27 Dec 2022 11:50:23 +0100
Subject: [PATCH 4/5] [Backport] tool_operate: share HSTS between handles

Offering: RTOS
CVE: CVE-2023-23914
Reference: https://github.com/curl/curl/commit/0bf8b796a0ea98395b390c7807187982215f5c11
DTS/AR: DTS2023021511961
type: LTS
reason: share HSTS between handles

(cherry picked from commit 0bf8b796a0ea98395b390c7807187982215f5c11)
Signed-off-by: chenzanyu <chenzanyu@huawei.com>
---
 src/tool_operate.c | 1 +
 1 file changed, 1 insertion(+)

diff --git a/src/tool_operate.c b/src/tool_operate.c
index e6ca575bf..c70259533 100644
--- a/src/tool_operate.c
+++ b/src/tool_operate.c
@@ -2540,6 +2540,7 @@ CURLcode operate(struct GlobalConfig *global, int argc, argv_item_t argv[])
         curl_share_setopt(share, CURLSHOPT_SHARE, CURL_LOCK_DATA_SSL_SESSION);
         curl_share_setopt(share, CURLSHOPT_SHARE, CURL_LOCK_DATA_CONNECT);
         curl_share_setopt(share, CURLSHOPT_SHARE, CURL_LOCK_DATA_PSL);
+        curl_share_setopt(share, CURLSHOPT_SHARE, CURL_LOCK_DATA_HSTS);
 
         /* Get the required arguments for each operation */
         do {
-- 
2.35.1.windows.2