Kamil Dudka
6e794d5beb
new upstream release - 7.65.2
2019-07-17 10:34:24 +02:00
Kamil Dudka
901da63160
new upstream release - 7.65.1
2019-06-05 09:33:30 +02:00
Kamil Dudka
3c7950da77
new upstream release - 7.65.0
...
Resolves: CVE-2019-5436 - TFTP receive buffer overflow
Resolves: CVE-2019-5435 - integer overflows in curl_url_set()
2019-05-22 10:42:26 +02:00
Kamil Dudka
bbad3e0a62
new upstream release - 7.64.1
2019-03-27 12:45:46 +01:00
Kamil Dudka
2bdb624139
new upstream release - 7.64.0
...
Resolves: CVE-2019-3823 - SMTP end-of-response out-of-bounds read
Resolves: CVE-2019-3822 - NTLMv2 type-3 header stack buffer overflow
Resolves: CVE-2018-16890 - NTLM type-2 out-of-bounds buffer read
2019-02-06 09:56:05 +01:00
Kamil Dudka
a94ce82de0
new upstream release - 7.63.0
2018-12-12 09:51:10 +01:00
Kamil Dudka
34a4d8f848
new upstream release - 7.62.0
...
Resolves: CVE-2018-16839 - SASL password overflow via integer overflow
Resolves: CVE-2018-16840 - use-after-free in handle close
Resolves: CVE-2018-16842 - warning message out-of-buffer read
2018-10-31 12:47:56 +01:00
Kamil Dudka
20b63790e4
new upstream release - 7.61.1
...
Resolves: CVE-2018-14618 - NTLM password overflow via integer overflow
2018-09-05 10:03:29 +02:00
Kamil Dudka
a89a46eca8
new upstream release - 7.61.0
...
Resolves: CVE-2018-0500 - SMTP send heap buffer overflow
2018-07-11 14:19:28 +02:00
Kamil Dudka
5a0fa9250b
new upstream release, which fixes the following vulnerabilities
...
Resolves: CVE-2018-1000300 - FTP shutdown response buffer overflow
Resolves: CVE-2018-1000301 - RTSP bad headers buffer over-read
2018-05-16 15:02:28 +02:00
Kamil Dudka
bdef0a1bf6
new upstream release - 7.59.0
...
Resolves: CVE-2018-1000120 - FTP path trickery leads to NIL byte out of bounds write
Resolves: CVE-2018-1000121 - LDAP NULL pointer dereference
Resolves: CVE-2018-1000122 - RTSP RTP buffer over-read
2018-03-14 10:28:05 +01:00
Kamil Dudka
93c55561d3
new upstream release - 7.58.0
...
Resolves: CVE-2018-1000005 - curl: HTTP/2 trailer out-of-bounds read
Resolves: CVE-2018-1000007 - curl: HTTP authentication leak in redirects
2018-01-24 11:55:14 +01:00
Kamil Dudka
ed352e927e
new upstream release - 7.57.0
...
Resolves: CVE-2017-8816 - curl: NTLM buffer overflow via integer overflow
Resolves: CVE-2017-8817 - curl: FTP wildcard out of bounds read
Resolves: CVE-2017-8818 - curl: SSL out of buffer access
2017-11-29 14:03:21 +01:00
Kamil Dudka
5d4a9257c3
new upstream release - 7.56.1 (fixes CVE-2017-1000257)
2017-10-23 10:13:16 +02:00
Kamil Dudka
46c8abb050
new upstream release - 7.56.0 (fixes CVE-2017-1000254)
2017-10-04 09:36:05 +02:00
Kamil Dudka
019e1c424c
new upstream release - 7.55.1
2017-08-14 09:39:22 +02:00
Kamil Dudka
46042daf78
new upstream release - 7.55.0
...
Resolves: CVE-2017-1000099 - FILE buffer read out of bounds
Resolves: CVE-2017-1000100 - TFTP sends more than buffer size
Resolves: CVE-2017-1000101 - URL globbing out of bounds read
2017-08-09 10:52:10 +02:00
Kamil Dudka
0aa20e6c92
new upstream release - 7.54.1
2017-06-14 10:50:24 +02:00
Kamil Dudka
0f99fceebe
new upstream release - 7.54.0 (fixes CVE-2017-7468)
2017-04-20 09:09:40 +02:00
Kamil Dudka
c1fbf35cce
new upstream release - 7.53.1
2017-02-24 10:51:31 +01:00
Kamil Dudka
8afeb9390f
new upstream release - 7.53.0 (fixes CVE-2017-2629)
2017-02-22 10:32:55 +01:00
Kamil Dudka
00369df034
new upstream release - 7.52.1 (fixes CVE-2016-9586)
2016-12-23 10:06:25 +01:00
Kamil Dudka
5169cd3899
new upstream release - 7.51.0
...
Resolves: CVE-2016-8615 - Cookie injection for other servers
Resolves: CVE-2016-8616 - Case insensitive password comparison
Resolves: CVE-2016-8617 - Out-of-bounds write via unchecked multiplication
Resolves: CVE-2016-8618 - Double-free in curl_maprintf
Resolves: CVE-2016-8619 - Double-free in krb5 code
Resolves: CVE-2016-8620 - Glob parser write/read out of bounds
Resolves: CVE-2016-8621 - curl_getdate out-of-bounds read
Resolves: CVE-2016-8622 - URL unescape heap overflow via integer truncation
Resolves: CVE-2016-8623 - Use-after-free via shared cookies
Resolves: CVE-2016-8624 - Invalid URL parsing with '#'
Resolves: CVE-2016-8625 - IDNA 2003 makes curl use wrong host
2016-11-02 11:12:40 +01:00
Kamil Dudka
b552e5528d
new upstream release - 7.50.3 (fixes CVE-2016-7167)
2016-09-14 10:50:47 +02:00
Kamil Dudka
1db8ad8d42
new upstream release - 7.50.2
2016-09-07 10:33:38 +02:00
Kamil Dudka
2fd0a39aee
new upstream release - 7.50.1
...
Resolves: CVE-2016-5419 CVE-2016-5420 CVE-2016-5421
2016-08-03 10:10:39 +02:00
Kamil Dudka
bed70046cf
new upstream release - 7.50.0
2016-07-21 11:32:21 +02:00
Kamil Dudka
baeb46456e
new upstream release - 7.49.1
2016-05-30 09:28:06 +02:00
Kamil Dudka
9a03eb6087
new upstream release - 7.49.0
2016-05-18 19:29:26 +02:00
Kamil Dudka
b041400317
new upstream release - 7.48.0
2016-03-23 13:11:48 +01:00
Kamil Dudka
127274be95
new upstream release - 7.47.1
2016-02-08 12:30:15 +01:00
Kamil Dudka
40933f3c05
new upstream release - 7.47.0 (fixes CVE-2016-0755)
2016-01-27 09:20:36 +01:00
Kamil Dudka
62fef86fa4
new upstream release - 7.46.0
2015-12-02 10:51:11 +01:00
Paul Howarth
b1cf0d53ef
new upstream release - 7.45.0
2015-10-07 14:43:06 +01:00
Kamil Dudka
bfaeb9dd10
new upstream release - 7.44.0
2015-08-12 12:05:13 +02:00
Kamil Dudka
712c550596
new upstream release - 7.43.0 (fixes CVE-2015-3236 and CVE-2015-3237)
2015-06-17 16:25:33 +02:00
Kamil Dudka
d60ef0c155
new upstream release - 7.42.1 (fixes CVE-2015-3153)
2015-04-29 09:51:18 +02:00
Kamil Dudka
167643f9ce
new upstream release - 7.42.0
...
Fixes CVE-2015-3143, CVE-2015-3144, CVE-2015-3145, and CVE-2015-3148.
2015-04-22 12:40:08 +02:00
Kamil Dudka
012235acc8
new upstream release - 7.41.0
2015-02-25 10:39:43 +01:00
Kamil Dudka
29b64c7221
new upstream release - 7.40.0 (fixes CVE-2014-8150)
2015-01-08 11:28:17 +01:00
Kamil Dudka
5cb97168a8
new upstream release - 7.39.0 (fixes CVE-2014-3707)
2014-11-05 10:58:01 +01:00
Kamil Dudka
0d94c479b6
new upstream release - 7.38.0 (fixes CVE-2014-3613 and CVE-2014-3620)
2014-09-10 15:35:01 +02:00
Kamil Dudka
d996cc7137
new upstream release - 7.37.1
2014-07-16 17:53:43 +02:00
Kamil Dudka
69703f0045
new upstream release - 7.37.0
2014-05-21 10:42:01 +02:00
Kamil Dudka
4bddb2814c
new upstream release - 7.36.0 (fixes CVE-2014-0138)
2014-03-26 08:55:38 +01:00
Kamil Dudka
65da26b4ab
new upstream release - 7.35.0 (fixes CVE-2014-0015)
2014-01-29 10:27:37 +01:00
Kamil Dudka
a16bdb8ecc
new upstream release - 7.34.0
2013-12-18 16:49:47 +01:00
Kamil Dudka
7b8437e3a1
new upstream release - 7.33.0
...
FIXME: test906 fails if compiled against NSS
2013-10-15 00:09:48 +02:00
Kamil Dudka
c12a28f9b8
new upstream release - 7.32.0
2013-08-12 14:01:19 +02:00
Kamil Dudka
104dece0d5
new upstream release (fixes CVE-2013-2174)
2013-06-22 21:40:32 +02:00