THE recent release of curl v8.21.0 addresses 18 security vulnerabilities, marking a significant update for the utility used on over 30 billion devices. Notable improvements include support for HTTP/3 proxy connections, enhanced SSH host verification, and refined state management protocols.
Key vulnerabilities addressed range from medium-severity issues, such as SASL Double Free and Cross-Proxy Digest Authentication State Leakage, to low-severity issues like trailing dot domain vulnerabilities and inadequate SSH verification. Users are strongly encouraged to upgrade to this release for improved performance and security.