From 12c957ce79190afbff9c7dbb82f69a857738d437 Mon Sep 17 00:00:00 2001
From: xielh <5604895+xielhxie@user.noreply.gitee.com>
Date: Tue, 19 Jan 2021 19:07:43 +0800
Subject: [PATCH] fix CVE-2020-8286

---
 curl.spec | 9 ++++++++-
 1 file changed, 8 insertions(+), 1 deletion(-)

diff --git a/curl.spec b/curl.spec
index 2e4429e..5a5be1d 100644
--- a/curl.spec
+++ b/curl.spec
@@ -6,7 +6,7 @@
 
 Name:           curl
 Version:        7.71.1
-Release:        4
+Release:        5
 Summary:        Curl is used in command lines or scripts to transfer data
 License:        MIT
 URL:            https://curl.haxx.se/
@@ -20,6 +20,7 @@ Patch106:       0106-curl-fix-CVE-2019-15601.patch
 Patch107:       0107-curl-close-unused-connect-only-connections.patch
 Patch108:       0108-curl-fix-CVE-2020-8231.patch
 Patch109:       backport-CVE-2020-8284.patch
+Patch110:       backport-CVE-2020-8286.patch
 
 BuildRequires:  automake brotli-devel coreutils gcc groff krb5-devel
 BuildRequires:  libidn2-devel libmetalink-devel libnghttp2-devel libpsl-devel
@@ -161,6 +162,12 @@ rm -rf ${RPM_BUILD_ROOT}%{_libdir}/libcurl.la
 %{_mandir}/man3/*
 
 %changelog
+* Tue Jan 19 2021 xielh2000 <xielh2000@163.com> - 7.71.1-5
+- Type:CVE
+- CVE:CVE-2020-8286
+- SUG:NA
+- DESC:fix CVE-2020-8286
+
 * Mon Jan 18 2021 xihaochen <xihaochen@huawei.com> - 7.71.1-4
 - Type:CVE
 - CVE:CVE-2020-8284