Kamil Dudka
|
5169cd3899
|
new upstream release - 7.51.0
Resolves: CVE-2016-8615 - Cookie injection for other servers
Resolves: CVE-2016-8616 - Case insensitive password comparison
Resolves: CVE-2016-8617 - Out-of-bounds write via unchecked multiplication
Resolves: CVE-2016-8618 - Double-free in curl_maprintf
Resolves: CVE-2016-8619 - Double-free in krb5 code
Resolves: CVE-2016-8620 - Glob parser write/read out of bounds
Resolves: CVE-2016-8621 - curl_getdate out-of-bounds read
Resolves: CVE-2016-8622 - URL unescape heap overflow via integer truncation
Resolves: CVE-2016-8623 - Use-after-free via shared cookies
Resolves: CVE-2016-8624 - Invalid URL parsing with '#'
Resolves: CVE-2016-8625 - IDNA 2003 makes curl use wrong host
|
2016-11-02 11:12:40 +01:00 |
|
Kamil Dudka
|
837f1f0f4e
|
drop 0103-curl-7.50.0-stunnel.patch no longer needed
It paralyzes the test-suite on systems with ancient versions of stunnel.
|
2016-10-20 13:39:29 +02:00 |
|
Kamil Dudka
|
6aadc8e2a0
|
use the just built version of libcurl while generating zsh completion
|
2016-10-07 12:23:18 +02:00 |
|
Kamil Dudka
|
b552e5528d
|
new upstream release - 7.50.3 (fixes CVE-2016-7167)
|
2016-09-14 10:50:47 +02:00 |
|
Kamil Dudka
|
1db8ad8d42
|
new upstream release - 7.50.2
|
2016-09-07 10:33:38 +02:00 |
|
Kamil Dudka
|
165cb33f0a
|
work around race condition in PK11_FindSlotByName()
Bug: https://bugzilla.mozilla.org/1297397
|
2016-08-26 15:48:18 +02:00 |
|
Kamil Dudka
|
0f6a97db34
|
Related: CVE-2016-5420 - fix incorrect use of a previously loaded certificate from file
|
2016-08-26 15:48:07 +02:00 |
|
Kamil Dudka
|
2fd0a39aee
|
new upstream release - 7.50.1
Resolves: CVE-2016-5419 CVE-2016-5420 CVE-2016-5421
|
2016-08-03 10:10:39 +02:00 |
|
Kamil Dudka
|
1b9369d1bf
|
run HTTP/2 tests on all arches (#1360319 worked around in nghttp2)
Revert "run HTTP/2 tests only on Intel for now"
This reverts commit 99b64f5ec2 .
|
2016-07-26 17:12:54 +02:00 |
|
Kamil Dudka
|
99b64f5ec2
|
run HTTP/2 tests only on Intel for now
... to work around #1358845
|
2016-07-21 17:21:41 +02:00 |
|
Kamil Dudka
|
9b1375c118
|
require nss-pem no longer included in the nss package (#1347336)
|
2016-07-21 16:36:33 +02:00 |
|
Kamil Dudka
|
518559f4a0
|
fix HTTPS and FTPS tests (work around stunnel bug #1358810)
|
2016-07-21 16:33:22 +02:00 |
|
Kamil Dudka
|
f4e76c10cd
|
add BR for nghttp2 used by the upstream test-suite
|
2016-07-21 14:09:11 +02:00 |
|
Kamil Dudka
|
90cc80745a
|
import needed files missing in the upstream tarball
|
2016-07-21 14:08:30 +02:00 |
|
Kamil Dudka
|
bed70046cf
|
new upstream release - 7.50.0
|
2016-07-21 11:32:21 +02:00 |
|
Kamil Dudka
|
83e65ab057
|
use multilib-rpm-config to install arch-dependent header files
|
2016-06-17 17:49:49 +02:00 |
|
Kamil Dudka
|
81483e8ea1
|
drop a test-suite quirk already applied upstream
https://github.com/curl/curl/commit/effa575f
|
2016-06-15 14:50:58 +02:00 |
|
Kamil Dudka
|
ed398dec4b
|
Resolves: #1340757 - fix SIGSEGV of the curl tool
... while parsing URL with too many globs
|
2016-06-03 13:27:18 +02:00 |
|
Kamil Dudka
|
baeb46456e
|
new upstream release - 7.49.1
|
2016-05-30 09:28:06 +02:00 |
|
Kamil Dudka
|
84382c927b
|
prevent test1140 from failing
... by locally creating docs/libcurl/curl_multi_socket_all.3
|
2016-05-18 19:29:28 +02:00 |
|
Kamil Dudka
|
1e7c2958aa
|
include manpage-scan.pl nroff-scan.pl to fix tests 1139 and 1140
Upstream-commit: 54e4c6c396a9987f4232c73b5b4d31c01b16f8ae
|
2016-05-18 19:29:28 +02:00 |
|
Kamil Dudka
|
9a03eb6087
|
new upstream release - 7.49.0
|
2016-05-18 19:29:26 +02:00 |
|
Kamil Dudka
|
b041400317
|
new upstream release - 7.48.0
|
2016-03-23 13:11:48 +01:00 |
|
Kamil Dudka
|
e2daf98253
|
Resolves: #1308791 - do not refuse cookies for localhost
|
2016-03-03 00:42:56 +01:00 |
|
Kamil Dudka
|
e57a741556
|
make SCP and SFTP test-cases work with up2date OpenSSH
|
2016-02-17 13:08:22 +01:00 |
|
Kamil Dudka
|
1e7ba88548
|
Resolves: #1305701 - enable support for Public Suffix List
|
2016-02-10 18:54:34 +01:00 |
|
Kamil Dudka
|
127274be95
|
new upstream release - 7.47.1
|
2016-02-08 12:30:15 +01:00 |
|
Dennis Gilmore
|
5af23e27ef
|
- Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild
|
2016-02-03 18:21:15 +00:00 |
|
Paul Howarth
|
ec00e90a49
|
Prefer %global over %define
|
2016-02-02 11:32:20 +00:00 |
|
Kamil Dudka
|
40933f3c05
|
new upstream release - 7.47.0 (fixes CVE-2016-0755)
|
2016-01-27 09:20:36 +01:00 |
|
Kamil Dudka
|
92a4396c47
|
Resolves: #1288529 - own /usr/share/zsh/site-functions
... instead of requiring zsh
|
2015-12-04 15:41:44 +01:00 |
|
Kamil Dudka
|
7c41b922e3
|
disable silent builds
Suggested-by: Paul Howarth
|
2015-12-02 13:37:59 +01:00 |
|
Kamil Dudka
|
7ee26673d3
|
use default port numbers when running the upstream test-suite
|
2015-12-02 13:17:27 +01:00 |
|
Kamil Dudka
|
638c8f1abc
|
install zsh completion script
|
2015-12-02 12:43:14 +01:00 |
|
Kamil Dudka
|
62fef86fa4
|
new upstream release - 7.46.0
|
2015-12-02 10:51:11 +01:00 |
|
Paul Howarth
|
b1cf0d53ef
|
new upstream release - 7.45.0
|
2015-10-07 14:43:06 +01:00 |
|
Kamil Dudka
|
1dcbbd628a
|
Resolves: #1104597 - prevent NSS from incorrectly re-using a session
|
2015-09-18 18:13:13 +02:00 |
|
Kamil Dudka
|
8b89049610
|
better explain the conditional BR on valgrind
|
2015-08-27 16:06:46 +02:00 |
|
Kamil Dudka
|
bfaeb9dd10
|
new upstream release - 7.44.0
|
2015-08-12 12:05:13 +02:00 |
|
Kamil Dudka
|
c6f2e7c0fe
|
Resolves: #1248389 - prevent dnf from crashing when using both FTP and HTTP
|
2015-07-30 15:27:33 +02:00 |
|
Kamil Dudka
|
cdae22a40d
|
test1801: completely disable the test-case
Bug: https://github.com/bagder/curl/commit/21e82bd6#commitcomment-12226582
|
2015-07-17 16:36:36 +02:00 |
|
Kamil Dudka
|
ad3e87c230
|
test1801: temporarily disable failing data check
|
2015-07-17 14:48:53 +02:00 |
|
Kamil Dudka
|
e40065e6ae
|
build support for the HTTP/2 protocol
|
2015-07-16 13:31:08 +02:00 |
|
Kamil Dudka
|
712c550596
|
new upstream release - 7.43.0 (fixes CVE-2015-3236 and CVE-2015-3237)
|
2015-06-17 16:25:33 +02:00 |
|
Dennis Gilmore
|
a21f0d7f44
|
- Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild
|
2015-06-17 03:33:56 +00:00 |
|
Kamil Dudka
|
88ed685bb7
|
Resolves: #1228363 - curl-config --libs now works on x86_64
... without libcurl-devel.x86_64
|
2015-06-05 13:23:20 +02:00 |
|
Kamil Dudka
|
d60ef0c155
|
new upstream release - 7.42.1 (fixes CVE-2015-3153)
|
2015-04-29 09:51:18 +02:00 |
|
Kamil Dudka
|
1307476790
|
do not run flaky test-cases in %check
|
2015-04-22 15:45:07 +02:00 |
|
Kamil Dudka
|
54e48b0348
|
Resolves: #1195771 - implement public key pinning for NSS backend
|
2015-04-22 15:01:09 +02:00 |
|
Kamil Dudka
|
167643f9ce
|
new upstream release - 7.42.0
Fixes CVE-2015-3143, CVE-2015-3144, CVE-2015-3145, and CVE-2015-3148.
|
2015-04-22 12:40:08 +02:00 |
|
Kamil Dudka
|
094e8186a4
|
drop 0106-curl-7.36.0-libssh2-valgrind.patch
... which is already included upstream since curl-7_35_0-269-g02bba0c
|
2015-02-25 14:00:41 +01:00 |
|
Kamil Dudka
|
e286d38a5f
|
include extern-scan.pl to make test1135 succeed
Upstream-commit: 1514b718e3e5ea08acd1816464809de49a211f38
|
2015-02-25 12:23:44 +01:00 |
|
Kamil Dudka
|
012235acc8
|
new upstream release - 7.41.0
|
2015-02-25 10:39:43 +01:00 |
|
Kamil Dudka
|
8357e0ea3e
|
Resolves: #1187531 - fix a spurious connect failure on dual-stacked hosts
|
2015-02-23 13:46:07 +01:00 |
|
Till Maas
|
75e18c5969
|
Rebuilt for Fedora 23 Change
https://fedoraproject.org/wiki/Changes/Harden_all_packages_with_position-independent_code
|
2015-02-21 21:22:45 +01:00 |
|
Kamil Dudka
|
352eca18a1
|
add BR for python to enable tests 1900 - 1903
|
2015-01-08 12:44:54 +01:00 |
|
Kamil Dudka
|
29b64c7221
|
new upstream release - 7.40.0 (fixes CVE-2014-8150)
|
2015-01-08 11:28:17 +01:00 |
|
Kamil Dudka
|
5cb97168a8
|
new upstream release - 7.39.0 (fixes CVE-2014-3707)
|
2014-11-05 10:58:01 +01:00 |
|
Kamil Dudka
|
724cf4a6d4
|
fix a connection failure when FTPS handle is reused
|
2014-10-21 12:18:12 +02:00 |
|
Kamil Dudka
|
0d94c479b6
|
new upstream release - 7.38.0 (fixes CVE-2014-3613 and CVE-2014-3620)
|
2014-09-10 15:35:01 +02:00 |
|
Peter Robinson
|
acdb7eec10
|
- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild
|
2014-08-16 01:56:30 +00:00 |
|
Rex Dieter
|
6ee86949ea
|
include arch'd Requires/Provides
|
2014-08-13 08:15:17 -05:00 |
|
Kamil Dudka
|
8490cd97fe
|
Resolves: #1118751 - fix endless loop with GSSAPI proxy auth
|
2014-07-16 18:17:54 +02:00 |
|
Kamil Dudka
|
d996cc7137
|
new upstream release - 7.37.1
|
2014-07-16 17:53:43 +02:00 |
|
Tom Callaway
|
2aebfc699c
|
fix license handling
|
2014-07-11 17:11:42 -04:00 |
|
Kamil Dudka
|
ff02afad2f
|
various SSL-related fixes (mainly crash on connection failure)
|
2014-07-04 16:27:42 +02:00 |
|
Dennis Gilmore
|
0a86866820
|
- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
|
2014-06-07 01:30:59 -05:00 |
|
Kamil Dudka
|
69703f0045
|
new upstream release - 7.37.0
|
2014-05-21 10:42:01 +02:00 |
|
Kamil Dudka
|
8b3cb24b84
|
Resolves: #1093348 - auth failure on duplicated 'WWW-Authenticate: Negotiate' header
|
2014-05-09 23:43:40 +02:00 |
|
Kamil Dudka
|
0f6b1efb14
|
nss: implement non-blocking SSL handshake
|
2014-04-25 17:36:51 +02:00 |
|
Kamil Dudka
|
3f180252f8
|
extend URL parser to support IPv6 zone identifiers (#680996)
|
2014-04-02 15:25:45 +02:00 |
|
Kamil Dudka
|
e4d3e72cd6
|
adapt tests 815 and 816 such that they work with the fix for CVE-2014-0138
|
2014-03-26 23:43:07 +01:00 |
|
Kamil Dudka
|
4bddb2814c
|
new upstream release - 7.36.0 (fixes CVE-2014-0138)
|
2014-03-26 08:55:38 +01:00 |
|
Paul Howarth
|
e9708b37b5
|
add all perl build requirements for the test suite, in a portable way
|
2014-03-17 18:33:11 +00:00 |
|
Kamil Dudka
|
381114ce83
|
add BR for perl-Digest-MD5, which is required by the test-suite
|
2014-03-17 15:32:33 +01:00 |
|
Kamil Dudka
|
1128c2bd9a
|
Resolves: #1072273 - avoid spurious failure of test1086 on s390(x) koji builders
|
2014-03-05 15:17:57 +01:00 |
|
Kamil Dudka
|
dee4c8342e
|
Resolves: #1068967 - refresh expired cookie in test172 from upstream test-suite
|
2014-02-25 12:50:11 +01:00 |
|
Kamil Dudka
|
65da26b4ab
|
new upstream release - 7.35.0 (fixes CVE-2014-0015)
|
2014-01-29 10:27:37 +01:00 |
|
Kamil Dudka
|
6ad1a46051
|
use --enable-symbol-hiding instead of --enable-hidden-symbols
... which is said to be deprecated
|
2014-01-14 14:46:12 +01:00 |
|
Kamil Dudka
|
a16bdb8ecc
|
new upstream release - 7.34.0
|
2013-12-18 16:49:47 +01:00 |
|
Kamil Dudka
|
4a73ffdc43
|
allow to use TLS > 1.0 if built against recent NSS
|
2013-12-02 16:24:33 +01:00 |
|
Kamil Dudka
|
0831955018
|
fix missing initialization in SSH code
... causing test 619 to fail
|
2013-10-21 19:34:24 +02:00 |
|
Kamil Dudka
|
787e73101d
|
fix missing initialization in NTLM code
... causing test 906 to fail
|
2013-10-18 18:37:29 +02:00 |
|
Kamil Dudka
|
b98b240818
|
test906: Fixed failing test on some platforms
|
2013-10-16 19:37:22 +02:00 |
|
Kamil Dudka
|
7b8437e3a1
|
new upstream release - 7.33.0
FIXME: test906 fails if compiled against NSS
|
2013-10-15 00:09:48 +02:00 |
|
Kamil Dudka
|
4ae7271a09
|
do not limit the speed of SCP upload on a fast connection
|
2013-10-11 14:17:13 +02:00 |
|
Kamil Dudka
|
d26889345a
|
avoid delay if FTP is aborted in CURLOPT_HEADERFUNCTION callback (#1005686)
|
2013-09-09 13:40:57 +02:00 |
|
Paul Howarth
|
159ba1a770
|
no need to remove manpage for mk-ca-bundle as it's no longer installed
|
2013-08-12 15:22:55 +01:00 |
|
Kamil Dudka
|
1e8099ab00
|
nss: make sure that NSS is initialized
... prior to calling PK11_GenerateRandom()
|
2013-08-12 15:24:36 +02:00 |
|
Kamil Dudka
|
c12a28f9b8
|
new upstream release - 7.32.0
|
2013-08-12 14:01:19 +02:00 |
|
Dennis Gilmore
|
786f95d7bd
|
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
|
2013-08-03 01:25:16 -05:00 |
|
Kamil Dudka
|
233f010767
|
mention all option listed in 'curl --help' in curl.1 man page
|
2013-07-09 16:05:20 +02:00 |
|
Kamil Dudka
|
ad17697486
|
restore the functionality of 'curl -u :'
|
2013-07-01 11:42:49 +02:00 |
|
Kamil Dudka
|
05df56af61
|
make the curl tool link SSL libraries also used by src/tool_metalink.c
|
2013-06-26 18:09:08 +02:00 |
|
Kamil Dudka
|
82daaf7e98
|
build the curl tool with metalink support
|
2013-06-26 18:09:08 +02:00 |
|
Kamil Dudka
|
c5085749c3
|
rename patches to reflect the curl version they apply to
|
2013-06-26 18:05:26 +02:00 |
|
Kamil Dudka
|
5ebb52d092
|
test1230: avoid using hard-wired port number
|
2013-06-22 22:19:59 +02:00 |
|
Kamil Dudka
|
104dece0d5
|
new upstream release (fixes CVE-2013-2174)
|
2013-06-22 21:40:32 +02:00 |
|
Kamil Dudka
|
97702c76cc
|
prevent an artificial timeout event due to stale speed-check data (#906031)
|
2013-04-26 16:45:33 +02:00 |
|
Kamil Dudka
|
8fe6215904
|
limit the excessive use of sed in %prep
|
2013-04-26 16:35:17 +02:00 |
|