Commit Graph

136 Commits

Author SHA1 Message Date
Kamil Dudka
5169cd3899 new upstream release - 7.51.0
Resolves: CVE-2016-8615 - Cookie injection for other servers
Resolves: CVE-2016-8616 - Case insensitive password comparison
Resolves: CVE-2016-8617 - Out-of-bounds write via unchecked multiplication
Resolves: CVE-2016-8618 - Double-free in curl_maprintf
Resolves: CVE-2016-8619 - Double-free in krb5 code
Resolves: CVE-2016-8620 - Glob parser write/read out of bounds
Resolves: CVE-2016-8621 - curl_getdate out-of-bounds read
Resolves: CVE-2016-8622 - URL unescape heap overflow via integer truncation
Resolves: CVE-2016-8623 - Use-after-free via shared cookies
Resolves: CVE-2016-8624 - Invalid URL parsing with '#'
Resolves: CVE-2016-8625 - IDNA 2003 makes curl use wrong host
2016-11-02 11:12:40 +01:00
Kamil Dudka
b552e5528d new upstream release - 7.50.3 (fixes CVE-2016-7167) 2016-09-14 10:50:47 +02:00
Kamil Dudka
1db8ad8d42 new upstream release - 7.50.2 2016-09-07 10:33:38 +02:00
Kamil Dudka
2fd0a39aee new upstream release - 7.50.1
Resolves: CVE-2016-5419 CVE-2016-5420 CVE-2016-5421
2016-08-03 10:10:39 +02:00
Kamil Dudka
bed70046cf new upstream release - 7.50.0 2016-07-21 11:32:21 +02:00
Kamil Dudka
baeb46456e new upstream release - 7.49.1 2016-05-30 09:28:06 +02:00
Kamil Dudka
9a03eb6087 new upstream release - 7.49.0 2016-05-18 19:29:26 +02:00
Kamil Dudka
b041400317 new upstream release - 7.48.0 2016-03-23 13:11:48 +01:00
Kamil Dudka
127274be95 new upstream release - 7.47.1 2016-02-08 12:30:15 +01:00
Kamil Dudka
40933f3c05 new upstream release - 7.47.0 (fixes CVE-2016-0755) 2016-01-27 09:20:36 +01:00
Kamil Dudka
62fef86fa4 new upstream release - 7.46.0 2015-12-02 10:51:11 +01:00
Paul Howarth
b1cf0d53ef new upstream release - 7.45.0 2015-10-07 14:43:06 +01:00
Kamil Dudka
bfaeb9dd10 new upstream release - 7.44.0 2015-08-12 12:05:13 +02:00
Kamil Dudka
712c550596 new upstream release - 7.43.0 (fixes CVE-2015-3236 and CVE-2015-3237) 2015-06-17 16:25:33 +02:00
Kamil Dudka
d60ef0c155 new upstream release - 7.42.1 (fixes CVE-2015-3153) 2015-04-29 09:51:18 +02:00
Kamil Dudka
167643f9ce new upstream release - 7.42.0
Fixes CVE-2015-3143, CVE-2015-3144, CVE-2015-3145, and CVE-2015-3148.
2015-04-22 12:40:08 +02:00
Kamil Dudka
012235acc8 new upstream release - 7.41.0 2015-02-25 10:39:43 +01:00
Kamil Dudka
29b64c7221 new upstream release - 7.40.0 (fixes CVE-2014-8150) 2015-01-08 11:28:17 +01:00
Kamil Dudka
5cb97168a8 new upstream release - 7.39.0 (fixes CVE-2014-3707) 2014-11-05 10:58:01 +01:00
Kamil Dudka
0d94c479b6 new upstream release - 7.38.0 (fixes CVE-2014-3613 and CVE-2014-3620) 2014-09-10 15:35:01 +02:00
Kamil Dudka
d996cc7137 new upstream release - 7.37.1 2014-07-16 17:53:43 +02:00
Kamil Dudka
69703f0045 new upstream release - 7.37.0 2014-05-21 10:42:01 +02:00
Kamil Dudka
4bddb2814c new upstream release - 7.36.0 (fixes CVE-2014-0138) 2014-03-26 08:55:38 +01:00
Kamil Dudka
65da26b4ab new upstream release - 7.35.0 (fixes CVE-2014-0015) 2014-01-29 10:27:37 +01:00
Kamil Dudka
a16bdb8ecc new upstream release - 7.34.0 2013-12-18 16:49:47 +01:00
Kamil Dudka
7b8437e3a1 new upstream release - 7.33.0
FIXME: test906 fails if compiled against NSS
2013-10-15 00:09:48 +02:00
Kamil Dudka
c12a28f9b8 new upstream release - 7.32.0 2013-08-12 14:01:19 +02:00
Kamil Dudka
104dece0d5 new upstream release (fixes CVE-2013-2174) 2013-06-22 21:40:32 +02:00
Kamil Dudka
57f6d9d6a1 new upstream release (fixes CVE-2013-1944) 2013-04-12 12:13:50 +02:00
Kamil Dudka
6896522e35 new upstream release (fixes CVE-2013-0249) 2013-02-06 15:00:19 +01:00
Kamil Dudka
83db90f0ad new upstream release - 7.28.1 2012-11-20 10:56:13 +01:00
Kamil Dudka
0f5dbc27da new upstream release - 7.28.0 2012-10-31 11:45:28 +01:00
Kamil Dudka
c9fa3c1968 new upstream release - 7.27.0 2012-07-28 09:19:54 +02:00
Kamil Dudka
23fcdc59a1 new upstream release 2012-05-25 09:17:42 +02:00
Paul Howarth
60afc952d9 new upstream release - 7.25.0
- new upstream release (#806264)
- fix character encoding of docs with a patch rather than just iconv
- update debug and multilib patches
- don't use macros for commands
- reduce size of %prep output for readability
2012-03-23 15:13:31 +00:00
Kamil Dudka
f28824c4c6 new upstream release (fixes CVE-2012-0036) 2012-01-24 12:10:59 +01:00
Kamil Dudka
87bfeb1dcc new upstream release - curl-7.23.0 (#754391) 2011-11-16 14:14:34 +01:00
Kamil Dudka
eaba136aa1 new upstream release
- new upstream release
- curl-config now provides dummy --static-libs option (#733956)
2011-09-13 20:48:12 +02:00
Kamil Dudka
11b552f8cf new upstream release - 7.21.7 (fixes CVE-2011-2192) 2011-06-23 15:29:41 +02:00
Paul Howarth
39828449b7 new upstream release - 7.21.6 2011-04-23 18:56:50 +01:00
Kamil Dudka
5ea227a2d7 new upstream release - 7.21.5 2011-04-18 08:52:55 +02:00
Kamil Dudka
4fddd46419 new upstream release - 7.21.4 2011-02-17 15:07:01 +01:00
Paul Howarth
0a2e77997c Update to 7.21.3
- New upstream release 7.21.3:
  - added --noconfigure switch to testcurl.pl
  - added --xattr option
  - added CURLOPT_RESOLVE and --resolve
  - added CURLAUTH_ONLY
  - added version-check.pl to the examples dir
  - check for libcurl features for some command line options
  - Curl_setopt: disallow CURLOPT_USE_SSL without SSL support
  - http_chunks: remove debug output
  - URL-parsing: consider ? a divider
  - SSH: avoid using the libssh2_ prefix
  - SSH: use libssh2_session_handshake() to work on win64
  - ftp: prevent server from hanging on closed data connection when stopping
    a transfer before the end of the full transfer (ranges)
  - LDAP: detect non-binary attributes properly
  - ftp: treat server's response 421 as CURLE_OPERATION_TIMEDOUT
  - gnutls->handshake: improved timeout handling
  - security: pass the right parameter to init
  - krb5: use GSS_ERROR to check for error
  - TFTP: resend the correct data
  - configure: fix autoconf 2.68 warning: no AC_LANG_SOURCE call detected
  - GnuTLS: now detects socket errors on Windows
  - symbols-in-versions: updated en masse
  - added a couple of examples that were missing from the tarball
  - Curl_send/recv_plain: return errno on failure
  - Curl_wait_for_resolv (for c-ares): correct timeout
  - ossl_connect_common: detect connection re-use
  - configure: prevent link errors with --librtmp
  - openldap: use remote port in URL passed to ldap_init_fd()
  - url: provide dead_connection flag in Curl_handler::disconnect
  - lots of compiler warning fixes
  - ssh: fix a download resume point calculation
  - fix getinfo CURLINFO_LOCAL* for reused connections
  - multi: the returned running handles counter could turn negative
  - multi: only ever consider pipelining for connections doing HTTP(S)
- Drop upstream patches now in tarball
- Update bz650255 and disable-test1112 patches to apply against new codebase
- Add workaround for false-positive glibc-detected buffer overflow in tftpd
  test server with FORTIFY_SOURCE (similar to #515361)
2010-12-16 16:33:11 +00:00
Kamil Dudka
5be6d627b3 new upstream release - 7.21.2 2010-10-13 00:37:41 +02:00
Kamil Dudka
e3cb81845c new upstream release - 7.21.1 2010-08-12 10:45:38 +02:00
Kamil Dudka
7f060691db - new upstream release, drop applied patches 2010-06-16 13:24:18 +00:00
Kamil Dudka
972da7142b - new upstream release 2010-04-19 16:16:09 +00:00
Kamil Dudka
6d0277e653 - new upstream release 2010-02-11 11:31:31 +00:00
Kamil Dudka
014599c14b - new upstream release, dropped applied patches
- workaround for broken TLS servers (#525496, #527771)
2009-11-04 14:05:38 +00:00
Kamil Dudka
511d592adc remove old tarballs from .cvsignore and sources 2009-08-14 09:37:20 +00:00
Kamil Dudka
c735169085 - new upstream release, dropped applied patches
- changed NSS code to not ignore the value of ssl.verifyhost and produce
    more verbose error messages (#516056)
2009-08-14 09:21:25 +00:00
Ville Skyttä
e28fb68964 - Use lzma compressed upstream tarball.
https://www.redhat.com/archives/fedora-devel-list/2009-August/msg00563.html
2009-08-12 17:04:04 +00:00
Kamil Dudka
73213b4338 update to 7.19.5, dropped applied patches 2009-05-19 18:17:41 +00:00
Jindrich Novy
5144908d02 - update to 7.19.4 (fixes CVE-2009-0037)
- fix leak in curl_easy* functions, thanks to Kamil Dudka
- drop nss-fix patch, applied upstream
2009-03-03 07:08:27 +00:00
Kamil Dudka
3f810df7b4 update to 7.19.3, patch fixing 7.19.3 curl/nss bugs 2009-02-17 11:31:20 +00:00
Jindrich Novy
45696b40ef - update to 7.18.2 2008-06-04 17:30:58 +00:00
Jindrich Novy
43a8fac1dd - update to curl 7.18.1 (fixes #397911)
- add ABI docs for libcurl
- remove --static-libs from curl-config
- drop curl-config patch, obsoleted by @SSL_ENABLED@ autoconf substitution
    (#432667)
2008-03-31 07:47:59 +00:00
Jindrich Novy
c8e160aef5 - update to curl-7.18.0
- drop sslgen patch -> applied upstream
- fix typo in description
2008-01-28 21:00:10 +00:00
Jindrich Novy
c9238ef4e7 - update to curl 7.17.1
- include patch to enable SSL usage in NSS when a socket is opened
    nonblocking, thanks to Rob Crittenden (rcritten@redhat.com)
2007-11-17 16:06:24 +00:00
Jindrich Novy
35d4a39474 - update to 7.16.4 2007-07-11 07:47:08 +00:00
Jindrich Novy
8520523ace - update to 7.16.3
- drop .print patch, applied upstream
- next series of merge review fixes by Paul Howarth
- remove aclocal stuff, no more needed
- simplify makefile arguments
- don't reference standard library paths in libcurl.pc
- include docs/CONTRIBUTE
2007-06-25 10:40:19 +00:00
Jindrich Novy
b676540bee - update to 7.16.2 2007-04-11 18:20:54 +00:00
Jindrich Novy
c1c2d7895d - upload new source tarball 2007-01-30 12:16:38 +00:00
Jindrich Novy
f25b2a9485 - update to curl-7.16.0 2006-10-30 09:18:31 +00:00
Jindrich Novy
aa86cfdd76 - update to curl-7.15.5
- use %%{?dist}
2006-08-24 15:11:25 +00:00
Ivana Varekova
2b7fe0804d - update to 7.15.4 2006-06-30 06:56:45 +00:00
Ivana Varekova
07f6714fb9 - fix multilib problem using pkg-config
- update to 7.15.3
2006-03-21 09:15:51 +00:00
Ivana Varekova
8893e9eee6 - update to 7.15.1 (bug 175191) 2005-12-08 09:10:34 +00:00
Ivana Varekova
35f3c7bebf - update to 7.15.0 2005-10-18 11:22:52 +00:00
Ivana Varekova
6e0b53dcdd - update to 7.14.1 2005-10-13 08:38:18 +00:00
Ivana Varekova
727df8abca - rebuild new version 2005-06-16 08:37:30 +00:00
Ivana Varekova
d4c41419ea rebuilt (the new version is 7.13.1) 2005-03-09 13:47:20 +00:00
Florian La Roche
da94baedb4 - 7.13.0 2005-02-13 15:07:59 +00:00
havill
cad16d6198 - Upgrade to 7.12.3, which uses poll() for FDSETSIZE limit (#134794)
- require libidn-devel for devel subpkg (#141341)
- remove proftpd kludge; included upstream
2005-01-28 20:19:07 +00:00
jorton
b3f4b3cbdd Remove old sources. 2005-01-26 16:37:05 +00:00
havill
28401a2365 - upgrade to 7.12.1
- enable GSSAPI auth (#129353)
- enable I18N domain names (#134595)
- workaround for broken ProFTPD SSL auth (#134133). Thanks to Aleksandar
    Milivojevic
2004-10-06 20:07:35 +00:00
cvsdist
ddd67bb44b auto-import changelog data from curl-7.12.0-1.src.rpm
Mon Jul 26 2004 Jindrich Novy <jnovy@redhat.com>
- updated to 7.12.0
- updated nousr patch
2004-09-09 04:02:35 +00:00
cvsdist
0797ced8e6 auto-import changelog data from curl-7.11.1-1.src.rpm
Wed Apr 07 2004 Adrian Havill <havill@redhat.com> 7.11.1-1
- upgraded; updated nousr patch
- added COPYING (#115956)
-
2004-09-09 04:02:28 +00:00
cvsdist
da9386fe88 auto-import changelog data from curl-7.10.8-2.1.src.rpm
Tue Mar 02 2004 Elliot Lee <sopwith@redhat.com>
- rebuilt
Fri Feb 13 2004 Elliot Lee <sopwith@redhat.com>
- rebuilt
Sat Jan 31 2004 Florian La Roche <Florian.LaRoche@redhat.de>
- update to 7.10.8
- remove patch2, already upstream
2004-09-09 04:02:15 +00:00
cvsdist
fcf12792e5 auto-import changelog data from curl-7.10.6-7.src.rpm
Wed Oct 15 2003 Adrian Havill <havill@redhat.com> 7.10.6-7
- aclocal before libtoolize
- move OpenLDAP license so it's present as a doc file, present in both the
    source and binary as per conditions
Mon Oct 13 2003 Adrian Havill <havill@redhat.com> 7.10.6-6
- add OpenLDAP copyright notice for usage of code, add OpenLDAP license for
    this code
Tue Oct 07 2003 Adrian Havill <havill@redhat.com> 7.10.6-5
- match serverAltName certs with SSL (#106168)
Tue Sep 16 2003 Adrian Havill <havill@redhat.com> 7.10.6-4.1
- bump n-v-r for RHEL
Tue Sep 16 2003 Adrian Havill <havill@redhat.com> 7.10.6-4
- restore ca cert bundle (#104400)
- require openssl, we want to use its ca-cert bundle
Sun Sep 07 2003 Joe Orton <jorton@redhat.com> 7.10.6-3
- rebuild
Fri Sep 05 2003 Joe Orton <jorton@redhat.com> 7.10.6-2.2
- fix to include libcurl.so
Mon Aug 25 2003 Adrian Havill <havill@redhat.com> 7.10.6-2.1
- bump n-v-r for RHEL
Mon Aug 25 2003 Adrian Havill <havill@redhat.com> 7.10.6-2
- devel subpkg needs openssl-devel as a Require (#102963)
Mon Jul 28 2003 Adrian Havill <havill@redhat.com> 7.10.6-1
- bumped version
Tue Jul 01 2003 Adrian Havill <havill@redhat.com> 7.10.5-1
- bumped version
Wed Jun 04 2003 Elliot Lee <sopwith@redhat.com>
- rebuilt
Sat Apr 12 2003 Florian La Roche <Florian.LaRoche@redhat.de>
- update to 7.10.4
- adapt nousr patch
2004-09-09 04:01:52 +00:00
cvsdist
51c72f3418 auto-import changelog data from curl-7.9.8-1.src.rpm
Mon Jul 22 2002 Trond Eivind Glomsrød <teg@redhat.com> 7.9.8-1
- 7.9.8 (# 69473)
2004-09-09 04:01:05 +00:00
cvsdist
81ebd0ccb2 auto-import changelog data from curl-7.9.7-3.src.rpm
Fri Jun 21 2002 Tim Powers <timp@redhat.com>
- automated rebuild
Sun May 26 2002 Tim Powers <timp@redhat.com>
- automated rebuild
Thu May 16 2002 Trond Eivind Glomsrød <teg@redhat.com> 7.9.7-1
- 7.9.7
Wed Apr 24 2002 Trond Eivind Glomsrød <teg@redhat.com> 7.9.6-1
- 7.9.6
2004-09-09 04:01:02 +00:00
cvsdist
88707830c5 auto-import changelog data from curl-7.9.5-1.src.rpm
Fri Mar 08 2002 Trond Eivind Glomsrød <teg@redhat.com> 7.9.5-1
- 7.9.5
Tue Feb 26 2002 Trond Eivind Glomsrød <teg@redhat.com> 7.9.3-2
- Rebuild
Wed Jan 23 2002 Nalin Dahyabhai <nalin@redhat.com> 7.9.3-1
- update to 7.9.3
Wed Jan 09 2002 Tim Powers <timp@redhat.com> 7.9.2-2
- automated rebuild
Wed Jan 09 2002 Trond Eivind Glomsrød <teg@redhat.com> 7.9.2-1
- 7.9.2
2004-09-09 04:00:40 +00:00
cvsdist
ded6b37603 auto-import changelog data from curl-7.8-1.src.rpm
Fri Aug 17 2001 Nalin Dahyabhai <nalin@redhat.com>
- include curl-config in curl-devel
- update to 7.8 to fix memory leak and strlcat() symbol pollution from
    libcurl
2004-09-09 04:00:24 +00:00
cvsdist
757418abfe auto-import changelog data from curl-7.7.2-3.src.rpm
Wed Jul 18 2001 Crutcher Dunnavant <crutcher@redhat.com>
- added openssl-devel build req
Mon May 21 2001 Tim Powers <timp@redhat.com>
- built for the distro
Tue Apr 24 2001 Jeff Johnson <jbj@redhat.com>
- upgrade to curl-7.7.2.
- enable IPv6.
Fri Mar 02 2001 Tim Powers <timp@redhat.com>
- rebuilt against openssl-0.9.6-1
Thu Jan 04 2001 Tim Powers <timp@redhat.com>
- fixed mising ldconfigs
- updated to 7.5.2, bug fixes
Mon Dec 11 2000 Tim Powers <timp@redhat.com>
- updated to 7.5.1
Mon Nov 06 2000 Tim Powers <timp@redhat.com>
- update to 7.4.1 to fix bug #20337, problems with curl -c
- not using patch anymore, it's included in the new source. Keeping for
    reference
Fri Oct 20 2000 Nalin Dahyabhai <nalin@redhat.com>
- fix bogus req in -devel package
Fri Oct 20 2000 Tim Powers <timp@redhat.com>
- devel package needed defattr so that root owns the files
Mon Oct 16 2000 Nalin Dahyabhai <nalin@redhat.com>
- update to 7.3
- apply vsprintf/vsnprintf patch from Colin Phipps via Debian
Mon Aug 21 2000 Nalin Dahyabhai <nalin@redhat.com>
- enable SSL support
- fix packager tag
- move buildroot to %{_tmppath}
Tue Aug 01 2000 Tim Powers <timp@redhat.com>
- fixed vendor tag for bug #15028
Mon Jul 24 2000 Prospector <prospector@redhat.com>
- rebuilt
Tue Jul 11 2000 Tim Powers <timp@redhat.com>
- workaround alpha build problems with optimizations
Mon Jul 10 2000 Tim Powers <timp@redhat.com>
- rebuilt
Mon Jun 05 2000 Tim Powers <timp@redhat.com>
- put man pages in correct place
- use %makeinstall
Mon Apr 24 2000 Tim Powers <timp@redhat.com>
- updated to 6.5.2
Wed Nov 03 1999 Tim Powers <timp@redhat.com>
- updated sources to 6.2
- gzip man page
Mon Aug 30 1999 Tim Powers <timp@redhat.com>
- changed group
Thu Aug 26 1999 Tim Powers <timp@redhat.com>
- changelog started
- general cleanups, changed prefix to /usr, added manpage to files section
- including in Powertools
2004-09-09 04:00:18 +00:00
cvsdist
0e6b04390f Setup of module curl 2004-09-09 04:00:16 +00:00