@@ -1,5 +1,5 @@
# Locally calculated after checking pgp signature
-# https://curl.se/download/curl-8.9.1.tar.xz.asc
+# https://curl.se/download/curl-8.10.0.tar.xz.asc
# signed with key 27EDEAF22F3ABCEB50DB9A125CC908FDB71E12C2
-sha256 f292f6cc051d5bbabf725ef85d432dfeacc8711dd717ea97612ae590643801e5 curl-8.9.1.tar.xz
+sha256 e6b142f0e85e954759d37e26a3627e2278137595be80e3a860c4353e4335e5a0 curl-8.10.0.tar.xz
sha256 adb1fc06547fd136244179809f7b7c2d2ae6c4534f160aa513af9b6a12866a32 COPYING
@@ -4,7 +4,7 @@
#
################################################################################
-LIBCURL_VERSION = 8.9.1
+LIBCURL_VERSION = 8.10.0
LIBCURL_SOURCE = curl-$(LIBCURL_VERSION).tar.xz
LIBCURL_SITE = https://curl.se/download
LIBCURL_DEPENDENCIES = host-pkgconf \
Changelog: https://curl.se/changes.html#8_10_0 Fixes CVE-2024-8096. Signed-off-by: Bernd Kuhls <bernd@kuhls.net> --- package/libcurl/libcurl.hash | 4 ++-- package/libcurl/libcurl.mk | 2 +- 2 files changed, 3 insertions(+), 3 deletions(-)