rpms/curl
2
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
437 Commits 42 Branches 269 Tags 2.7 MiB
a89a46eca8
Commit Graph

409 Commits

Author SHA1 Message Date
Kamil Dudka
0f99fceebe new upstream release - 7.54.0 (fixes CVE-2017-7468) 2017-04-20 09:09:40 +02:00
Paul Howarth
db1a758364 add %post and %postun scriptlets for libcurl-minimal 
also:
- libcurl-minimal provides both libcurl and libcurl%{?_isa}
- remove some legacy spec file cruft
 2017-04-13 11:59:46 +01:00
Kamil Dudka
9b62c3eaeb provide (lib)curl-minimal subpackages with lightweight build of (lib)curl 
Discussed at:
https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org/message/CBIGRS63BCULMZBU7O4KBIKDWZZKA7OV/
 2017-04-13 08:15:22 +02:00
Kamil Dudka
0d44d984ff bump release number 2017-04-10 13:55:52 +02:00
Kamil Dudka
a5dd610a20 disable upstream test 2033 (flaky test for HTTP/1 pipelining) 2017-04-10 13:32:42 +02:00
Kamil Dudka
d469b84593 Resolves: CVE-2017-7407 - fix out of bounds read in curl --write-out 2017-04-07 12:13:07 +02:00
Kamil Dudka
4832a02ce4 Resolves: #1428550 - make the dependency on nss-pem arch-specific 2017-03-06 10:30:12 +01:00
Kamil Dudka
c870f5feb8 Related: #1428286 - re-enable valgrind on ix86 because sqlite is fixed 2017-03-02 16:54:10 +01:00
Kamil Dudka
c1fbf35cce new upstream release - 7.53.1 2017-02-24 10:51:31 +01:00
Kamil Dudka
efea9223f3 do not use valgrind on i686 until sqlite is rebuilt 
... by patched GCC (#1423434)
 2017-02-22 12:17:41 +01:00
Kamil Dudka
8afeb9390f new upstream release - 7.53.0 (fixes CVE-2017-2629) 2017-02-22 10:32:55 +01:00
Fedora Release Engineering
9ec0774d38 - Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild 2017-02-10 08:05:00 +00:00
Kamil Dudka
00369df034 new upstream release - 7.52.1 (fixes CVE-2016-9586) 2016-12-23 10:06:25 +01:00
Kamil Dudka
c38149da81 Resolves: #1396719 - map CURL_SSLVERSION_DEFAULT to NSS default, add support for TLS 1.3 2016-11-21 09:54:16 +01:00
Kamil Dudka
40b1d9916f stricter host name checking for file:// URLs 2016-11-15 18:40:23 +01:00
Kamil Dudka
2856bdf841 ssh: check md5 fingerprints case insensitively 2016-11-15 18:34:21 +01:00
Kamil Dudka
c8e1922952 temporarily disable failing libidn2 test-cases 2016-11-02 11:14:11 +01:00
Kamil Dudka
5169cd3899 new upstream release - 7.51.0 
Resolves: CVE-2016-8615 - Cookie injection for other servers
Resolves: CVE-2016-8616 - Case insensitive password comparison
Resolves: CVE-2016-8617 - Out-of-bounds write via unchecked multiplication
Resolves: CVE-2016-8618 - Double-free in curl_maprintf
Resolves: CVE-2016-8619 - Double-free in krb5 code
Resolves: CVE-2016-8620 - Glob parser write/read out of bounds
Resolves: CVE-2016-8621 - curl_getdate out-of-bounds read
Resolves: CVE-2016-8622 - URL unescape heap overflow via integer truncation
Resolves: CVE-2016-8623 - Use-after-free via shared cookies
Resolves: CVE-2016-8624 - Invalid URL parsing with '#'
Resolves: CVE-2016-8625 - IDNA 2003 makes curl use wrong host
 2016-11-02 11:12:40 +01:00
Kamil Dudka
837f1f0f4e drop 0103-curl-7.50.0-stunnel.patch no longer needed 
It paralyzes the test-suite on systems with ancient versions of stunnel.
 2016-10-20 13:39:29 +02:00
Kamil Dudka
6aadc8e2a0 use the just built version of libcurl while generating zsh completion 2016-10-07 12:23:18 +02:00
Kamil Dudka
b552e5528d new upstream release - 7.50.3 (fixes CVE-2016-7167) 2016-09-14 10:50:47 +02:00
Kamil Dudka
1db8ad8d42 new upstream release - 7.50.2 2016-09-07 10:33:38 +02:00
Kamil Dudka
165cb33f0a work around race condition in PK11_FindSlotByName() 
Bug: https://bugzilla.mozilla.org/1297397
 2016-08-26 15:48:18 +02:00
Kamil Dudka
0f6a97db34 Related: CVE-2016-5420 - fix incorrect use of a previously loaded certificate from file 2016-08-26 15:48:07 +02:00
Kamil Dudka
2fd0a39aee new upstream release - 7.50.1 
Resolves: CVE-2016-5419 CVE-2016-5420 CVE-2016-5421
 2016-08-03 10:10:39 +02:00
Kamil Dudka
1b9369d1bf run HTTP/2 tests on all arches (#1360319 worked around in nghttp2) 
Revert "run HTTP/2 tests only on Intel for now"

This reverts commit 99b64f5ec2.
 2016-07-26 17:12:54 +02:00
Kamil Dudka
99b64f5ec2 run HTTP/2 tests only on Intel for now 
... to work around #1358845
 2016-07-21 17:21:41 +02:00
Kamil Dudka
9b1375c118 require nss-pem no longer included in the nss package (#1347336) 2016-07-21 16:36:33 +02:00
Kamil Dudka
518559f4a0 fix HTTPS and FTPS tests (work around stunnel bug #1358810) 2016-07-21 16:33:22 +02:00
Kamil Dudka
f4e76c10cd add BR for nghttp2 used by the upstream test-suite 2016-07-21 14:09:11 +02:00
Kamil Dudka
90cc80745a import needed files missing in the upstream tarball 2016-07-21 14:08:30 +02:00
Kamil Dudka
bed70046cf new upstream release - 7.50.0 2016-07-21 11:32:21 +02:00
Kamil Dudka
83e65ab057 use multilib-rpm-config to install arch-dependent header files 2016-06-17 17:49:49 +02:00
Kamil Dudka
81483e8ea1 drop a test-suite quirk already applied upstream 
https://github.com/curl/curl/commit/effa575f
 2016-06-15 14:50:58 +02:00
Kamil Dudka
ed398dec4b Resolves: #1340757 - fix SIGSEGV of the curl tool 
... while parsing URL with too many globs
 2016-06-03 13:27:18 +02:00
Kamil Dudka
baeb46456e new upstream release - 7.49.1 2016-05-30 09:28:06 +02:00
Kamil Dudka
84382c927b prevent test1140 from failing 
... by locally creating docs/libcurl/curl_multi_socket_all.3
 2016-05-18 19:29:28 +02:00
Kamil Dudka
1e7c2958aa include manpage-scan.pl nroff-scan.pl to fix tests 1139 and 1140 
Upstream-commit: 54e4c6c396a9987f4232c73b5b4d31c01b16f8ae
 2016-05-18 19:29:28 +02:00
Kamil Dudka
9a03eb6087 new upstream release - 7.49.0 2016-05-18 19:29:26 +02:00
Kamil Dudka
b041400317 new upstream release - 7.48.0 2016-03-23 13:11:48 +01:00
Kamil Dudka
e2daf98253 Resolves: #1308791 - do not refuse cookies for localhost 2016-03-03 00:42:56 +01:00
Kamil Dudka
e57a741556 make SCP and SFTP test-cases work with up2date OpenSSH 2016-02-17 13:08:22 +01:00
Kamil Dudka
1e7ba88548 Resolves: #1305701 - enable support for Public Suffix List 2016-02-10 18:54:34 +01:00
Kamil Dudka
127274be95 new upstream release - 7.47.1 2016-02-08 12:30:15 +01:00
Dennis Gilmore
5af23e27ef - Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild 2016-02-03 18:21:15 +00:00
Paul Howarth
ec00e90a49 Prefer %global over %define 2016-02-02 11:32:20 +00:00
Kamil Dudka
40933f3c05 new upstream release - 7.47.0 (fixes CVE-2016-0755) 2016-01-27 09:20:36 +01:00
Kamil Dudka
92a4396c47 Resolves: #1288529 - own /usr/share/zsh/site-functions 
... instead of requiring zsh
 2015-12-04 15:41:44 +01:00
Kamil Dudka
7c41b922e3 disable silent builds 
Suggested-by: Paul Howarth
 2015-12-02 13:37:59 +01:00
Kamil Dudka
7ee26673d3 use default port numbers when running the upstream test-suite 2015-12-02 13:17:27 +01:00
Kamil Dudka
638c8f1abc install zsh completion script 2015-12-02 12:43:14 +01:00
Kamil Dudka
62fef86fa4 new upstream release - 7.46.0 2015-12-02 10:51:11 +01:00
Paul Howarth
b1cf0d53ef new upstream release - 7.45.0 2015-10-07 14:43:06 +01:00
Kamil Dudka
1dcbbd628a Resolves: #1104597 - prevent NSS from incorrectly re-using a session 2015-09-18 18:13:13 +02:00
Kamil Dudka
8b89049610 better explain the conditional BR on valgrind 2015-08-27 16:06:46 +02:00
Kamil Dudka
bfaeb9dd10 new upstream release - 7.44.0 2015-08-12 12:05:13 +02:00
Kamil Dudka
c6f2e7c0fe Resolves: #1248389 - prevent dnf from crashing when using both FTP and HTTP 2015-07-30 15:27:33 +02:00
Kamil Dudka
cdae22a40d test1801: completely disable the test-case 
Bug: https://github.com/bagder/curl/commit/21e82bd6#commitcomment-12226582
 2015-07-17 16:36:36 +02:00
Kamil Dudka
ad3e87c230 test1801: temporarily disable failing data check 2015-07-17 14:48:53 +02:00
Kamil Dudka
e40065e6ae build support for the HTTP/2 protocol 2015-07-16 13:31:08 +02:00
Kamil Dudka
712c550596 new upstream release - 7.43.0 (fixes CVE-2015-3236 and CVE-2015-3237) 2015-06-17 16:25:33 +02:00
Dennis Gilmore
a21f0d7f44 - Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild 2015-06-17 03:33:56 +00:00
Kamil Dudka
88ed685bb7 Resolves: #1228363 - curl-config --libs now works on x86_64 
... without libcurl-devel.x86_64
 2015-06-05 13:23:20 +02:00
Kamil Dudka
d60ef0c155 new upstream release - 7.42.1 (fixes CVE-2015-3153) 2015-04-29 09:51:18 +02:00
Kamil Dudka
1307476790 do not run flaky test-cases in %check 2015-04-22 15:45:07 +02:00
Kamil Dudka
54e48b0348 Resolves: #1195771 - implement public key pinning for NSS backend 2015-04-22 15:01:09 +02:00
Kamil Dudka
167643f9ce new upstream release - 7.42.0 
Fixes CVE-2015-3143, CVE-2015-3144, CVE-2015-3145, and CVE-2015-3148.
 2015-04-22 12:40:08 +02:00
Kamil Dudka
094e8186a4 drop 0106-curl-7.36.0-libssh2-valgrind.patch 
... which is already included upstream since curl-7_35_0-269-g02bba0c
 2015-02-25 14:00:41 +01:00
Kamil Dudka
e286d38a5f include extern-scan.pl to make test1135 succeed 
Upstream-commit: 1514b718e3e5ea08acd1816464809de49a211f38
 2015-02-25 12:23:44 +01:00
Kamil Dudka
012235acc8 new upstream release - 7.41.0 2015-02-25 10:39:43 +01:00
Kamil Dudka
8357e0ea3e Resolves: #1187531 - fix a spurious connect failure on dual-stacked hosts 2015-02-23 13:46:07 +01:00
Till Maas
75e18c5969 Rebuilt for Fedora 23 Change 
https://fedoraproject.org/wiki/Changes/Harden_all_packages_with_position-independent_code
 2015-02-21 21:22:45 +01:00
Kamil Dudka
352eca18a1 add BR for python to enable tests 1900 - 1903 2015-01-08 12:44:54 +01:00
Kamil Dudka
29b64c7221 new upstream release - 7.40.0 (fixes CVE-2014-8150) 2015-01-08 11:28:17 +01:00
Kamil Dudka
5cb97168a8 new upstream release - 7.39.0 (fixes CVE-2014-3707) 2014-11-05 10:58:01 +01:00
Kamil Dudka
724cf4a6d4 fix a connection failure when FTPS handle is reused 2014-10-21 12:18:12 +02:00
Kamil Dudka
0d94c479b6 new upstream release - 7.38.0 (fixes CVE-2014-3613 and CVE-2014-3620) 2014-09-10 15:35:01 +02:00
Peter Robinson
acdb7eec10 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild 2014-08-16 01:56:30 +00:00
Rex Dieter
6ee86949ea include arch'd Requires/Provides 2014-08-13 08:15:17 -05:00
Kamil Dudka
8490cd97fe Resolves: #1118751 - fix endless loop with GSSAPI proxy auth 2014-07-16 18:17:54 +02:00
Kamil Dudka
d996cc7137 new upstream release - 7.37.1 2014-07-16 17:53:43 +02:00
Tom Callaway
2aebfc699c fix license handling 2014-07-11 17:11:42 -04:00
Kamil Dudka
ff02afad2f various SSL-related fixes (mainly crash on connection failure) 2014-07-04 16:27:42 +02:00
Dennis Gilmore
0a86866820 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild 2014-06-07 01:30:59 -05:00
Kamil Dudka
69703f0045 new upstream release - 7.37.0 2014-05-21 10:42:01 +02:00
Kamil Dudka
8b3cb24b84 Resolves: #1093348 - auth failure on duplicated 'WWW-Authenticate: Negotiate' header 2014-05-09 23:43:40 +02:00
Kamil Dudka
0f6b1efb14 nss: implement non-blocking SSL handshake 2014-04-25 17:36:51 +02:00
Kamil Dudka
3f180252f8 extend URL parser to support IPv6 zone identifiers (#680996) 2014-04-02 15:25:45 +02:00
Kamil Dudka
e4d3e72cd6 adapt tests 815 and 816 such that they work with the fix for CVE-2014-0138 2014-03-26 23:43:07 +01:00
Kamil Dudka
4bddb2814c new upstream release - 7.36.0 (fixes CVE-2014-0138) 2014-03-26 08:55:38 +01:00
Paul Howarth
e9708b37b5 add all perl build requirements for the test suite, in a portable way 2014-03-17 18:33:11 +00:00
Kamil Dudka
381114ce83 add BR for perl-Digest-MD5, which is required by the test-suite 2014-03-17 15:32:33 +01:00
Kamil Dudka
1128c2bd9a Resolves: #1072273 - avoid spurious failure of test1086 on s390(x) koji builders 2014-03-05 15:17:57 +01:00
Kamil Dudka
dee4c8342e Resolves: #1068967 - refresh expired cookie in test172 from upstream test-suite 2014-02-25 12:50:11 +01:00
Kamil Dudka
65da26b4ab new upstream release - 7.35.0 (fixes CVE-2014-0015) 2014-01-29 10:27:37 +01:00
Kamil Dudka
6ad1a46051 use --enable-symbol-hiding instead of --enable-hidden-symbols 
... which is said to be deprecated
 2014-01-14 14:46:12 +01:00
Kamil Dudka
a16bdb8ecc new upstream release - 7.34.0 2013-12-18 16:49:47 +01:00
Kamil Dudka
4a73ffdc43 allow to use TLS > 1.0 if built against recent NSS 2013-12-02 16:24:33 +01:00
Kamil Dudka
0831955018 fix missing initialization in SSH code 
... causing test 619 to fail
 2013-10-21 19:34:24 +02:00
Kamil Dudka
787e73101d fix missing initialization in NTLM code 
... causing test 906 to fail
 2013-10-18 18:37:29 +02:00