Kamil Dudka
c667b141d6
new upstream release - 7.67.0
2019-11-06 09:26:57 +01:00
Kamil Dudka
e0bf66ef6c
fix memory leaked by parse_metalink()
2019-09-13 10:18:24 +02:00
Kamil Dudka
da9af16256
new upstream release - 7.66.0
...
Resolves: CVE-2019-5481 - double free due to subsequent call of realloc()
Resolves: CVE-2019-5482 - heap buffer overflow in function tftp_receive_packet()
2019-09-12 15:20:21 +02:00
Kamil Dudka
91c50ee6d4
Resolves : #1690971 - avoid reporting spurious error in the HTTP2 framing layer
2019-08-27 18:11:29 +02:00
Kamil Dudka
8559ecc1d9
changelog: fix copy/paste error in the last entry
2019-08-01 16:41:42 +02:00
Kamil Dudka
863394fd95
improve handling of gss_init_sec_context() failures
2019-08-01 16:37:57 +02:00
Fedora Release Engineering
22186831fb
- Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild
...
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
2019-07-24 21:21:56 +00:00
Paul Howarth
a5c984a590
new upstream release - 7.65.3
2019-07-20 12:02:57 +01:00
Kamil Dudka
6e794d5beb
new upstream release - 7.65.2
2019-07-17 10:34:24 +02:00
Kamil Dudka
901da63160
new upstream release - 7.65.1
2019-06-05 09:33:30 +02:00
Kamil Dudka
b6ccff47ac
Resolves : #1714893 - fix spurious timeout events with speed-limit
2019-05-30 15:27:58 +02:00
Kamil Dudka
3c7950da77
new upstream release - 7.65.0
...
Resolves: CVE-2019-5436 - TFTP receive buffer overflow
Resolves: CVE-2019-5435 - integer overflows in curl_url_set()
2019-05-22 10:42:26 +02:00
Kamil Dudka
9dd5d73f3b
do not treat failure of gss_init_sec_context() with --negotiate as fatal
...
This commit fixes a major incompatibility introduced in curl-7.64.1.
Bug: https://github.com/curl/curl/issues/3726
2019-05-09 10:08:03 +02:00
Paul Howarth
8fd906c559
generation of shell completions now needs more perl stuff
2019-04-05 13:38:27 +01:00
Kamil Dudka
bbad3e0a62
new upstream release - 7.64.1
2019-03-27 12:45:46 +01:00
Kamil Dudka
0ed971f14f
fix last but one change log entry
2019-03-25 12:39:00 +01:00
Kamil Dudka
7594f15bce
Related: #1690971 - remove verbose "Expire in" ... messages
2019-03-25 12:35:52 +01:00
Kamil Dudka
902ddefeb5
avoid spurious "Could not resolve host: [host name]" error messages
2019-03-21 09:39:30 +01:00
Kamil Dudka
95008127cf
Resolves : #1683676 - fix NULL dereference if flushing cookies with no CookieInfo set
2019-02-27 18:02:05 +01:00
Kamil Dudka
e97fdf9b7f
Resolves : #1680198 - prevent NetworkManager from leaking file descriptors
2019-02-25 14:24:32 +01:00
Kamil Dudka
9ace613273
make zsh completion work again
2019-02-11 13:22:07 +01:00
Kamil Dudka
2bdb624139
new upstream release - 7.64.0
...
Resolves: CVE-2019-3823 - SMTP end-of-response out-of-bounds read
Resolves: CVE-2019-3822 - NTLMv2 type-3 header stack buffer overflow
Resolves: CVE-2018-16890 - NTLM type-2 out-of-bounds buffer read
2019-02-06 09:56:05 +01:00
Kamil Dudka
3c5dec6602
prevent valgrind from reporting false positives on x86_64
2019-02-04 17:45:12 +01:00
Fedora Release Engineering
9221f774a1
- Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild
...
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
2019-01-31 16:37:02 +00:00
Kamil Dudka
1a6a3b20a6
Resolves: CVE-2018-20483 - xattr: strip credentials from any URL that is stored
2019-01-21 10:13:55 +01:00
Kamil Dudka
da8449decd
replace 0001-curl-7.62.0-http-post-negotiate.patch by upstream patch
2019-01-07 12:42:06 +01:00
Kamil Dudka
32b0144f20
replace 0105-curl-7.63.0-libstubgss-ldadd.patch by upstream patch
2019-01-04 14:18:53 +01:00
Kamil Dudka
49f5a42f96
Resolves : #1658574 - curl -J: do not append to the destination file
2018-12-19 13:43:28 +01:00
Kamil Dudka
c30a9c7fdb
Resolves : #1659329 - revert an upstream commit that broke fedpkg new-sources
2018-12-14 11:21:54 +01:00
Kamil Dudka
c91c27bce9
libtest: avoid symbol lookup error in libstubgss.so
2018-12-12 14:39:00 +01:00
Kamil Dudka
a94ce82de0
new upstream release - 7.63.0
2018-12-12 09:51:10 +01:00
Kamil Dudka
34a4d8f848
new upstream release - 7.62.0
...
Resolves: CVE-2018-16839 - SASL password overflow via integer overflow
Resolves: CVE-2018-16840 - use-after-free in handle close
Resolves: CVE-2018-16842 - warning message out-of-buffer read
2018-10-31 12:47:56 +01:00
Kamil Dudka
9be316eea1
enable TLS 1.3 post-handshake auth in OpenSSL
...
Bug: https://github.com/curl/curl/pull/3027
2018-10-11 16:16:32 +02:00
Kamil Dudka
2346b66a23
update the documentation of --tlsv1.0 in curl(1) man page
2018-10-11 16:16:18 +02:00
Kamil Dudka
800bb58ef3
Resolves : #1631804 - enforce versioned libpsl dependency for libcurl
2018-10-05 13:59:35 +02:00
Kamil Dudka
84125cbefe
test320: update expected output for gnutls-3.6.4
2018-10-05 13:41:48 +02:00
Kamil Dudka
ece57c4aa4
Related: #1622594 - drop 0105-curl-7.61.0-tests-ssh-keygen.patch no longer needed
2018-10-04 15:37:53 +02:00
Kamil Dudka
20b63790e4
new upstream release - 7.61.1
...
Resolves: CVE-2018-14618 - NTLM password overflow via integer overflow
2018-09-05 10:03:29 +02:00
Kamil Dudka
e7b6b91818
make the --tls13-ciphers option work
2018-09-04 15:48:11 +02:00
Kamil Dudka
8bff7e0d6b
Related: #1622594 - tests: make ssh-keygen always produce PEM format
...
The default format produced by openssh-7.8p1 cannot be consumed
by currently available versions of libssh and libssh2.
2018-08-27 16:55:32 +02:00
Kamil Dudka
023b327acc
Resolves : #1595135 - scp/sftp: fix infinite connect loop on invalid private key
2018-08-15 13:57:06 +02:00
Kamil Dudka
178b0fc823
Resolves : #1219544 - ssl: set engine implicitly when a PKCS#11 URI is provided
2018-08-09 15:35:59 +02:00
Kamil Dudka
35134a4aee
Related: #1610888 - relax crypto policy for the test-suite to make it pass again
2018-08-07 16:56:26 +02:00
Kamil Dudka
3fb6e23557
disable flaky test 1900, which covers deprecated HTTP pipelining
...
See https://github.com/curl/curl/pull/2705 for details.
2018-07-31 10:42:03 +02:00
Kamil Dudka
85286dc2b3
adapt test 323 for updated OpenSSL
2018-07-31 10:33:53 +02:00
Kamil Dudka
bcdea58703
temporarily disable test 582 on s390x (client times out)
2018-07-13 13:47:08 +02:00
Fedora Release Engineering
072eac2fb6
- Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
...
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
2018-07-12 22:28:24 +00:00
Kamil Dudka
a89a46eca8
new upstream release - 7.61.0
...
Resolves: CVE-2018-0500 - SMTP send heap buffer overflow
2018-07-11 14:19:28 +02:00
Kamil Dudka
d41d215108
disable test 1455, which occasionally fails in Koji
...
... with 'bind failed with errno 98: Address already in use'
2018-07-10 15:16:40 +02:00
Kamil Dudka
9f5f0d1189
enable support for brotli compression in libcurl-full
2018-07-10 13:51:08 +02:00