rpms/curl
2
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
358 Commits 42 Branches 269 Tags 2.7 MiB
f4a6154810
Commit Graph

358 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Kamil Dudka
f4a6154810 Resolves: CVE-2016-8621 - fix out-of-bounds read in curl_getdate() 2016-11-02 17:21:38 +01:00
Kamil Dudka
7c7cf92ea9 Resolves: CVE-2016-8622 - fix URL unescape heap overflow via integer truncation 2016-11-02 17:16:59 +01:00
Kamil Dudka
6e32112b9a Resolves: CVE-2016-8623 - fix use-after-free via shared cookies 2016-11-02 16:56:45 +01:00
Kamil Dudka
8cc82f17a1 Resolves: CVE-2016-8624 - urlparse: accept '#' as end of host name 2016-11-02 16:50:01 +01:00
Kamil Dudka
6c0c913605 run autoreconf in %prep to avoid patching Makefile.in files from now on 2016-11-02 16:47:42 +01:00
Kamil Dudka
d178d238e4 Resolves: CVE-2016-7167 - reject negative string lengths in curl_easy_[un]escape() 2016-09-14 11:59:13 +02:00
Kamil Dudka
c1383a09aa work around race condition in PK11_FindSlotByName() 
Bug: https://bugzilla.mozilla.org/1297397
 2016-08-26 15:46:58 +02:00
Kamil Dudka
4207564392 Related: CVE-2016-5420 - fix incorrect use of a previously loaded certificate from file 2016-08-26 15:43:09 +02:00
Kamil Dudka
8ef834caac Resolves: CVE-2016-5420 - fix re-using connections with wrong client cert 2016-08-03 17:01:07 +02:00
Kamil Dudka
22a15a2535 Resolves: CVE-2016-5419 - fix TLS session resumption client cert bypass 2016-08-03 17:00:57 +02:00
Kamil Dudka
8288db1fc2 Resolves: CVE-2016-5421 - fix use of connection struct after free 2016-08-03 17:00:44 +02:00
Kamil Dudka
fb0bc4b8e6 Resolves: #1340757 - fix SIGSEGV of the curl tool 
... while parsing URL with too many globs
 2016-06-03 13:34:39 +02:00
Kamil Dudka
e2daf98253 Resolves: #1308791 - do not refuse cookies for localhost 2016-03-03 00:42:56 +01:00
Kamil Dudka
e57a741556 make SCP and SFTP test-cases work with up2date OpenSSH 2016-02-17 13:08:22 +01:00
Kamil Dudka
1e7ba88548 Resolves: #1305701 - enable support for Public Suffix List 2016-02-10 18:54:34 +01:00
Kamil Dudka
127274be95 new upstream release - 7.47.1 2016-02-08 12:30:15 +01:00
Dennis Gilmore
5af23e27ef - Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild 2016-02-03 18:21:15 +00:00
Paul Howarth
ec00e90a49 Prefer %global over %define 2016-02-02 11:32:20 +00:00
Kamil Dudka
40933f3c05 new upstream release - 7.47.0 (fixes CVE-2016-0755) 2016-01-27 09:20:36 +01:00
Kamil Dudka
92a4396c47 Resolves: #1288529 - own /usr/share/zsh/site-functions 
... instead of requiring zsh
 2015-12-04 15:41:44 +01:00
Kamil Dudka
7c41b922e3 disable silent builds 
Suggested-by: Paul Howarth
 2015-12-02 13:37:59 +01:00
Kamil Dudka
7ee26673d3 use default port numbers when running the upstream test-suite 2015-12-02 13:17:27 +01:00
Kamil Dudka
638c8f1abc install zsh completion script 2015-12-02 12:43:14 +01:00
Kamil Dudka
62fef86fa4 new upstream release - 7.46.0 2015-12-02 10:51:11 +01:00
Paul Howarth
b1cf0d53ef new upstream release - 7.45.0 2015-10-07 14:43:06 +01:00
Kamil Dudka
1dcbbd628a Resolves: #1104597 - prevent NSS from incorrectly re-using a session 2015-09-18 18:13:13 +02:00
Kamil Dudka
8b89049610 better explain the conditional BR on valgrind 2015-08-27 16:06:46 +02:00
Kamil Dudka
bfaeb9dd10 new upstream release - 7.44.0 2015-08-12 12:05:13 +02:00
Kamil Dudka
c6f2e7c0fe Resolves: #1248389 - prevent dnf from crashing when using both FTP and HTTP 2015-07-30 15:27:33 +02:00
Kamil Dudka
cdae22a40d test1801: completely disable the test-case 
Bug: https://github.com/bagder/curl/commit/21e82bd6#commitcomment-12226582
 2015-07-17 16:36:36 +02:00
Kamil Dudka
ad3e87c230 test1801: temporarily disable failing data check 2015-07-17 14:48:53 +02:00
Kamil Dudka
e40065e6ae build support for the HTTP/2 protocol 2015-07-16 13:31:08 +02:00
Kamil Dudka
712c550596 new upstream release - 7.43.0 (fixes CVE-2015-3236 and CVE-2015-3237) 2015-06-17 16:25:33 +02:00
Dennis Gilmore
a21f0d7f44 - Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild 2015-06-17 03:33:56 +00:00
Kamil Dudka
88ed685bb7 Resolves: #1228363 - curl-config --libs now works on x86_64 
... without libcurl-devel.x86_64
 2015-06-05 13:23:20 +02:00
Kamil Dudka
d60ef0c155 new upstream release - 7.42.1 (fixes CVE-2015-3153) 2015-04-29 09:51:18 +02:00
Kamil Dudka
1307476790 do not run flaky test-cases in %check 2015-04-22 15:45:07 +02:00
Kamil Dudka
54e48b0348 Resolves: #1195771 - implement public key pinning for NSS backend 2015-04-22 15:01:09 +02:00
Kamil Dudka
167643f9ce new upstream release - 7.42.0 
Fixes CVE-2015-3143, CVE-2015-3144, CVE-2015-3145, and CVE-2015-3148.
 2015-04-22 12:40:08 +02:00
Kamil Dudka
094e8186a4 drop 0106-curl-7.36.0-libssh2-valgrind.patch 
... which is already included upstream since curl-7_35_0-269-g02bba0c
 2015-02-25 14:00:41 +01:00
Kamil Dudka
e286d38a5f include extern-scan.pl to make test1135 succeed 
Upstream-commit: 1514b718e3e5ea08acd1816464809de49a211f38
 2015-02-25 12:23:44 +01:00
Kamil Dudka
012235acc8 new upstream release - 7.41.0 2015-02-25 10:39:43 +01:00
Kamil Dudka
8357e0ea3e Resolves: #1187531 - fix a spurious connect failure on dual-stacked hosts 2015-02-23 13:46:07 +01:00
Till Maas
75e18c5969 Rebuilt for Fedora 23 Change 
https://fedoraproject.org/wiki/Changes/Harden_all_packages_with_position-independent_code
 2015-02-21 21:22:45 +01:00
Kamil Dudka
352eca18a1 add BR for python to enable tests 1900 - 1903 2015-01-08 12:44:54 +01:00
Kamil Dudka
29b64c7221 new upstream release - 7.40.0 (fixes CVE-2014-8150) 2015-01-08 11:28:17 +01:00
Kamil Dudka
5cb97168a8 new upstream release - 7.39.0 (fixes CVE-2014-3707) 2014-11-05 10:58:01 +01:00
Kamil Dudka
724cf4a6d4 fix a connection failure when FTPS handle is reused 2014-10-21 12:18:12 +02:00
Kamil Dudka
0d94c479b6 new upstream release - 7.38.0 (fixes CVE-2014-3613 and CVE-2014-3620) 2014-09-10 15:35:01 +02:00
Peter Robinson
acdb7eec10 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild 2014-08-16 01:56:30 +00:00