curl 7.85

curl: POST following PUT confusion

curl: TELNET option IAC injection

curl: HSTS ignored on multiple requests

curl: SFTP path ~ resolving discrepancy

HTTP/2 push headers memory-leak

curl: HTTP proxy double-free

curl: HSTS bypass via IDN

curl: HSTS bypass via IDN

curl: use after free in SSH sha256 fingerprint check

curl: out of heap memory issue due to missing limit on header quantity

gzip integer overflow

wrong proxy connection reuse with credentials

bad reuse of HTTP Negotiate connection

curl: .netrc parser out-of-bounds access

curl: HSTS amnesia with --parallel

curl: HTTP multi-header compression denial of service

curl: information disclosure by exploiting a mixed case flaw

OCSP stapling bypass with GnuTLS

broken TLS options for threaded LDAPS

HSTS subdomain overwrites parent cache entry

curl: Use-after-free triggered by an HTTP proxy deny response

curl: siglongjmp race condition may lead to crash

curl: IDN wildcard match may lead to Improper Cerificate Validation

curl: curl: Proxy credential disclosure via redirects to unauthenticated proxies

curl: curl: Information disclosure due to incorrect TLS connection reuse

token leak with redirect and netrc

libssh global known_hosts override

bearer token leak on cross-protocol redirect

curl: more POST-after-PUT confusion

curl: excessively long file name may lead to unknown HSTS status

missing SFTP host verification with wolfSSH

Usage of disabled protocol

netrc and default credential leak

netrc and redirect credential leak

libssh key passphrase bypass without agent set