The new #curl CVE-2024-11053 we call "netrc and redirect credential leak"
While graded severity low, it will of course still be relevant to whomever uses the unlucky combination of options.
curl.se/docs/CVE-2024-11053.ht…
https://mastodon.social/@bagder/113632978982393745
https://curl.se/docs/CVE-2024-11053.html
@bagder hmm, I think this CVE fix may have broken my use of ~/.netrc with the GitHub REST API. Ran into an issue where my normal usage pattern of curl, which includes a "netrc-optional" entry […]
────
────