A single missing line in a CVE-2023-28321 #security update backport broke libcurl wildcard certificate validation in #Ubuntu - regardless who is to blame for the initial mistake in the patch, this raises serious questions about quality and quantity of testing performed.

https://git.launchpad.net/ubuntu/+source/curl/commit/?id=2d99b873a5d4c70f069ce07beb0ae27d196defe0