From 0bf8b796a0ea98395b390c7807187982215f5c11 Mon Sep 17 00:00:00 2001 From: Daniel Stenberg Date: Tue, 27 Dec 2022 11:50:23 +0100 Subject: [PATCH] tool_operate: share HSTS between handles CVE: CVE-2023-23914 CVE-2023-23915 Upstream-Status: Backport [https://github.com/curl/curl/pull/10138/commits/ca17cfed2df001356cfe2841f166569bac0f5e8c] Signed-off-by: Pawan Badganchi Signed-off-by: Mingli Yu --- src/tool_operate.c | 1 + 1 file changed, 1 insertion(+) --- a/src/tool_operate.c +++ b/src/tool_operate.c @@ -2722,6 +2722,7 @@ CURLcode operate(struct GlobalConfig *gl curl_share_setopt(share, CURLSHOPT_SHARE, CURL_LOCK_DATA_SSL_SESSION); curl_share_setopt(share, CURLSHOPT_SHARE, CURL_LOCK_DATA_CONNECT); curl_share_setopt(share, CURLSHOPT_SHARE, CURL_LOCK_DATA_PSL); + curl_share_setopt(share, CURLSHOPT_SHARE, CURL_LOCK_DATA_HSTS); /* Get the required arguments for each operation */ do {