Resolved Bugs
1180064 – CVE-2014-8150 mingw-curl: curl: URL request injection vulnerability in parseurlandfillconn() [epel-7]
1214796 – CVE-2015-3143 CVE-2015-3148 CVE-2015-3145 CVE-2015-3144 mingw-curl: various flaws [epel-7]<br
Update to 7.42.0 which fixes various CVE’s