The curl packages provide the libcurl library and the curl utility for downloading files from servers using various protocols, including HTTP, FTP, and LDAP. Security Fix: * curl: Content not matching hash in Metalink is not being discarded * curl: Metalink download sends credentials * curl: Bad connection reuse due to flawed path name checks For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section.