Commit Graph

221 Commits

Author SHA1 Message Date
Kamil Dudka
70c740ceef fix heap-based buffer overflow in curl_easy_unescape() (CVE-2013-2174) 2013-06-22 23:11:28 +02:00
Kamil Dudka
69ef39f2c9 switch SSL socket into non-blocking mode after handshake (#960765) 2013-05-09 13:27:39 +02:00
Kamil Dudka
50e53d0748 prevent an artificial timeout event due to stale speed-check data (#906031) 2013-04-26 17:23:35 +02:00
Kamil Dudka
091c1bdc33 show proper host name on failed resolve (#957173) 2013-04-26 17:21:21 +02:00
Kamil Dudka
b01994e8d6 fix cookie tailmatching to prevent cross-domain leakage (CVE-2013-1944) 2013-04-12 17:15:12 +02:00
Kamil Dudka
be6db4b360 curl_global_init() now accepts the CURL_GLOBAL_ACK_EINTR flag (#919127) 2013-03-12 11:57:42 +01:00
Kamil Dudka
08a21a3079 eliminate unnecessary inotify events on upload via file protocol (#844385) 2012-08-01 10:06:08 +02:00
Kamil Dudka
347af7bb2d print reason phrase from HTTP status line on error (#676596) 2012-08-01 10:04:10 +02:00
Kamil Dudka
41aa23258e use human-readable error messages provided by NSS
upstream commit 72f4b534
2012-08-01 10:00:09 +02:00
Kamil Dudka
082189f94a fix duplicated SSL handshake with multi interface and proxy (#788526) 2012-06-09 12:55:47 +02:00
Kamil Dudka
26e8168f64 do not use valgrind on ppc (#810992) 2012-05-21 12:45:53 +02:00
Kamil Dudka
ac24462596 fix a typo in naming of patches 2012-04-17 12:17:21 +02:00
Kamil Dudka
fe6c76e0be provide human-readable names for NSS errors (upstream commit a60edcc6) 2012-04-17 11:59:32 +02:00
Kamil Dudka
2cec1e76c4 use NSS_InitContext() to initialize NSS if available (#738456) 2012-04-17 11:56:57 +02:00
Kamil Dudka
51012c0f12 curl.spec: fix a typo in the ChangeLog 2012-01-24 12:12:34 +01:00
Kamil Dudka
f28824c4c6 new upstream release (fixes CVE-2012-0036) 2012-01-24 12:10:59 +01:00
Paul Howarth
37907ea2de rebuild for gcc 4.7 2012-01-05 15:50:22 +00:00
Kamil Dudka
58407a0a11 upstream patch that allows to run FTPS tests with nss-3.13 (#760060) 2012-01-02 15:03:06 +01:00
Kamil Dudka
4baedf3240 allow to run FTPS tests with nss-3.13 (#760060) 2011-12-27 14:44:41 +01:00
Kamil Dudka
6322c91ccc avoid unnecessary timeout event when waiting for 100-continue (#767490) 2011-12-25 23:38:33 +01:00
Kamil Dudka
09f474b4c2 curl -JO now uses -O name if no C-D header comes
upstream commit c532604
2011-11-21 18:02:55 +01:00
Kamil Dudka
87bfeb1dcc new upstream release - curl-7.23.0 (#754391) 2011-11-16 14:14:34 +01:00
Kamil Dudka
95558f1c9d nss: select client certificates by DER (#733657) 2011-09-19 14:00:00 +02:00
Kamil Dudka
eaba136aa1 new upstream release
- new upstream release
- curl-config now provides dummy --static-libs option (#733956)
2011-09-13 20:48:12 +02:00
Paul Howarth
8b6f7828aa actually fix SIGSEGV of curl -O -J given more than one URL 2011-08-21 13:23:56 +01:00
Kamil Dudka
7293378155 fixes for #723075, #730444, and #728562
- fix SIGSEGV of curl -O -J given more than one URLs (#723075)
- introduce the --delegation option of curl (#730444)
- initialize NSS with no database if the selected database is broken (#728562)
2011-08-15 22:27:26 +02:00
Kamil Dudka
40c3093ba5 add a new option CURLOPT_GSSAPI_DELEGATION (#719939) 2011-08-03 17:19:42 +02:00
Kamil Dudka
11b552f8cf new upstream release - 7.21.7 (fixes CVE-2011-2192) 2011-06-23 15:29:41 +02:00
Kamil Dudka
a80b6c3aa4 avoid an invalid timeout event on a reused handle (#679709) 2011-06-08 00:43:11 +02:00
Paul Howarth
39828449b7 new upstream release - 7.21.6 2011-04-23 18:56:50 +01:00
Kamil Dudka
fb945ca026 fix the output of curl-config --version (upstream commit 82ecc85) 2011-04-18 16:38:06 +02:00
Kamil Dudka
5ea227a2d7 new upstream release - 7.21.5 2011-04-18 08:52:55 +02:00
Peter Robinson
bc4fc6eacb fix last changelog 2011-04-16 12:46:16 +01:00
Peter Robinson
c49625d4cf no valgrind on ARMv5 arches 2011-04-16 12:41:27 +01:00
Dennis Gilmore
0fa65fb125 no valgrind on sparc arches 2011-03-05 00:37:38 -06:00
Kamil Dudka
e0ab81d1c1 do not ignore failure of SSL handshake
(upstream commit 7aa2d10)
2011-02-22 14:34:40 +01:00
Kamil Dudka
65e324d678 work around valgrind bug (#678518) 2011-02-18 17:54:16 +01:00
Kamil Dudka
579095349b nss: avoid memory leak on SSL connection failure 2011-02-17 17:58:19 +01:00
Kamil Dudka
4fddd46419 new upstream release - 7.21.4 2011-02-17 15:07:01 +01:00
Dennis Gilmore
abe6f10c1e - Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild 2011-02-08 06:21:36 -06:00
Kamil Dudka
f6ba54655d build libcurl with --enable-hidden-symbols 2011-01-12 15:52:26 +01:00
Kamil Dudka
dd545452bb drop 0004-curl-7.21.3-bz650255.patch
This has been already fixed upstream (commits 5c7c9a7 and 5965d45).
2010-12-16 18:10:25 +01:00
Paul Howarth
0a2e77997c Update to 7.21.3
- New upstream release 7.21.3:
  - added --noconfigure switch to testcurl.pl
  - added --xattr option
  - added CURLOPT_RESOLVE and --resolve
  - added CURLAUTH_ONLY
  - added version-check.pl to the examples dir
  - check for libcurl features for some command line options
  - Curl_setopt: disallow CURLOPT_USE_SSL without SSL support
  - http_chunks: remove debug output
  - URL-parsing: consider ? a divider
  - SSH: avoid using the libssh2_ prefix
  - SSH: use libssh2_session_handshake() to work on win64
  - ftp: prevent server from hanging on closed data connection when stopping
    a transfer before the end of the full transfer (ranges)
  - LDAP: detect non-binary attributes properly
  - ftp: treat server's response 421 as CURLE_OPERATION_TIMEDOUT
  - gnutls->handshake: improved timeout handling
  - security: pass the right parameter to init
  - krb5: use GSS_ERROR to check for error
  - TFTP: resend the correct data
  - configure: fix autoconf 2.68 warning: no AC_LANG_SOURCE call detected
  - GnuTLS: now detects socket errors on Windows
  - symbols-in-versions: updated en masse
  - added a couple of examples that were missing from the tarball
  - Curl_send/recv_plain: return errno on failure
  - Curl_wait_for_resolv (for c-ares): correct timeout
  - ossl_connect_common: detect connection re-use
  - configure: prevent link errors with --librtmp
  - openldap: use remote port in URL passed to ldap_init_fd()
  - url: provide dead_connection flag in Curl_handler::disconnect
  - lots of compiler warning fixes
  - ssh: fix a download resume point calculation
  - fix getinfo CURLINFO_LOCAL* for reused connections
  - multi: the returned running handles counter could turn negative
  - multi: only ever consider pipelining for connections doing HTTP(S)
- Drop upstream patches now in tarball
- Update bz650255 and disable-test1112 patches to apply against new codebase
- Add workaround for false-positive glibc-detected buffer overflow in tftpd
  test server with FORTIFY_SOURCE (similar to #515361)
2010-12-16 16:33:11 +00:00
Kamil Dudka
451e44f944 ftp: fix for #650255, not yet applied upstream
- do not send QUIT to a dead FTP control connection (#650255)
- pull back glibc's implementation of str[n]casecmp(), #626470 appears
  fixed
2010-11-12 17:45:37 +01:00
Kamil Dudka
e8de0ee342 ftp: fixes for #649347 and #650255 2010-11-09 17:55:44 +01:00
Kamil Dudka
3ae3f6ea19 prevent FTP server from hanging on closed data connection (#643656) 2010-10-29 12:21:37 +02:00
Paul Howarth
d12630e4ca enforce versioned libssh2 dependency for libcurl (#642796) 2010-10-14 15:26:16 +01:00
Kamil Dudka
5be6d627b3 new upstream release - 7.21.2 2010-10-13 00:37:41 +02:00
Jesse Keating
8e7aa28b79 - Rebuilt for gcc bug 634757 2010-09-29 14:04:23 -07:00
Kamil Dudka
9c24c2b172 make it possible to run SCP/SFTP tests on x86_64 (#632914) 2010-09-11 23:39:36 +02:00