Gentoo Linux Security Advisory 201709-14 - Multiple vulnerabilities have been found in cURL, the worst of which may allow attackers to bypass intended restrictions. Versions less than 7.55.1 are affected.
40bb3d6b5ff32cb8c093b4d2ce2380042c6cc3679e8da56bb15ce35f4c67f98b
Ubuntu Security Notice 3262-1 - It was discovered that curl incorrectly handled client certificates when resuming a TLS session. A remote attacker could use this to hijack a previously authenticated connection.
4d0f9cc1207ab7e0a120544717caa6484e9e7480b27c6d6a66b424de792e25bc