Conditions for today’s curl CVE releases (CVE-2023-38545, CVE-2023-38546) and why you’ve got to say ‘NO’ to WAF patching them. For the good of all mankind.