daniel:// stenberg://"Unfortunately in the bank where i work it is not easy to change the version, it requires lots of resources to retest." says reporter who uses a ten years old #curl version with a suspected bug... The problem is not open source.
Steve Loughran@bagder i see that sometimes. This is where "you are free to cherrypick the specific patches and all prerequisites" is a valid response. Because it is true, unlike with closed source dependencies