1From 0bf8b796a0ea98395b390c7807187982215f5c11 Mon Sep 17 00:00:00 2001 2From: Daniel Stenberg <daniel@haxx.se> 3Date: Tue, 27 Dec 2022 11:50:23 +0100 4Subject: [PATCH] tool_operate: share HSTS between handles 5 6CVE: CVE-2023-23914 CVE-2023-23915 7Upstream-Status: Backport [https://github.com/curl/curl/pull/10138/commits/ca17cfed2df001356cfe2841f166569bac0f5e8c] 8Signed-off-by: Pawan Badganchi <Pawan.Badganchi@kpit.com> 9Signed-off-by: Mingli Yu <mingli.yu@windriver.com> 10--- 11 src/tool_operate.c | 1 + 12 1 file changed, 1 insertion(+) 13 14--- a/src/tool_operate.c 15+++ b/src/tool_operate.c 16@@ -2722,6 +2722,7 @@ CURLcode operate(struct GlobalConfig *gl 17 curl_share_setopt(share, CURLSHOPT_SHARE, CURL_LOCK_DATA_SSL_SESSION); 18 curl_share_setopt(share, CURLSHOPT_SHARE, CURL_LOCK_DATA_CONNECT); 19 curl_share_setopt(share, CURLSHOPT_SHARE, CURL_LOCK_DATA_PSL); 20+ curl_share_setopt(share, CURLSHOPT_SHARE, CURL_LOCK_DATA_HSTS); 21 22 /* Get the required arguments for each operation */ 23 do { 24