Hi. Vulnerability is present apparently in this version (under 8.14.0.)
Appreciate patching.
Thanks!
4947 applied to connecting to naked IP addresses, 5025 applies to pinned certificates – I don’t believe Audacity uses either feature. It’s probably worth updating it next release anyway @kryksyh
3 Likes
Aaand libcurl is updated to the latest version, thanks for the report.
I want to ask you to use Github issues for this kind of request, as the devs rarely get on the forum. I know this is unfortunate, but that’s how it is.