Here's an update for curl to 7.16.4:
http://www.dickman.org/openbsd/ports_net_curl_7.16.4.patch
Recent changes are as follows:
Fixed in 7.16.4 - July 10 2007
Changes:
* added CURLOPT_NEW_FILE_PERMS and CURLOPT_NEW_DIRECTORY_PERMS
* improved hashing of sockets for the multi_socket API
* ftp kerberos5 support added
Bugfixes:
* adjusted how libcurl treats HTTP 1.1 responses without
content-lenth or chunked encoding
* fixed the 10-at-a-time.c example
* FTP over SOCKS proxy
* improved error messages on SCP upload failures
* security flaw in which libcurl failed to properly reject some
outdated or not yet valid server certificates when built with GnuTLS
Fixed in 7.16.3 - June 25 2007
Changes:
* added curl_multi_socket_action()
* deprecated curl_multi_socket()
* uses less memory in non-pipelined use cases
* CURLOPT_HTTP200ALIASES matched transfers assume HTTP 1.0 compliance
* more than one test harness can run at the same time without conflict
* SFTP now supports quote commands before a transfer
* CURLMOPT_MAXCONNECTS added to curl_multi_setopt()
* upload resume works for file:// URLs
* asynchronous name resolves now require c-ares 1.4.0 or later
* added SOCKS test cases
* CURLOPT_FTP_CREATE_MISSING_DIRS and --ftp-create-dirs now work
for SFTP operations as well
Bugfixes:
* if2up too long interface name memory leak
* test case 534 started to fail 2007-04-13 due to the existance of
a new host on the net with the same silly domain the test was using
for a host which was supposed not to exist.
* test suite SSL certificate works better with newer stunnel
* internal progress meter update frequency back to once per second
* avoid some unnecessary calls to function gettimeofday
* a double-free in the SSL-layer
* GnuTLS free of NULL credentials
* NSS-fix for closing down SSL
* bad warning from configure when gnutls was selected
* compilation on VMS 64-bit mode
* SCP/SFTP downloads could hang on the last bytes of a transfer
* curl_easy_duphandle() crash
* curl -V / curl_version*() works even when GnuTLS is used on a
system without a good random source
* curl_multi_socket() not "noticing" newly added handles
* lack of Content-Length and chunked encoding now requires HTTP
1.1 as well to be treated as without response body
* connection cache growth in multi handles
* better handling of out of memory conditions
* overwriting an uploaded file with sftp now truncates it first
* SFTP quote commands chmod, chown, chgrp can now set a value of 0
* TFTP connect timouts less than 5 seconds
* improved curl -w for TFTP transfers
* memory leak when failed OpenSSL certificate CN field checking
* memory leak when OpenSSL failed PKCS #12 parsing
* FPL-SSL when built with NSS
* out-of-boundary write in Curl_select()
* -s/--silent can now be used to toggle off the silence again
* builds fine on 64bit HP-UX
* multi interface HTTP CONNECT glitch
* list FTP root directories when login dir is not root
* no longer slows down when getting very many URLs on the same command line
* lock share before decreasing dirty counter
* no-body FTP requests on re-used connections
