Accepting request 248327 from home:vitezslav_cizek:branches:devel:libraries:c_c++

pool/curl

SHA256

- update to 7.38.0
  * fixes CVE-2014-3613 (bnc#894575) and CVE-2014-3620 (bnc#895991)
  * cookie leaks with IP address as domain and TLDs respectively
  Changes:
    supports HTTP/2 draft-14
    CURLE_HTTP2 is a new error code
    CURLAUTH_NEGOTIATE is a new auth define
    CURL_VERSION_GSSAPI is a new capability bit
    no longer use fbopenssl for anything
    schannel: use CryptGenRandom for random numbers
    axtls: define curlssl_random using axTLS's PRNG
    cyassl: use RNG_GenerateBlock to generate a good random number
    findprotocol: show unsupported protocol within quotes
    version: detect and show LibreSSL
    version: detect and show BoringSSL
    imap/pop3/smtp: Kerberos (SASL GSSAPI) authentication via Windows SSPI
    http2: requires nghttp2 0.6.0 or later
  Bugfixes:
    SECURITY ADVISORY: cookie leak with IP address as domain
    SECURITY ADVISORY: cookie leak for TLDs
    And many other fixes

OBS-URL: https://build.opensuse.org/request/show/248327
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/curl?expand=0&rev=113

This commit is contained in:

Stephan Kulow

2014-09-10 11:58:09 +00:00

committed by

Git OBS Bridge

parent 4ceb9bf8b1

commit 1d9cf0e872

6 changed files with 36 additions and 11 deletions

									
										2

curl.spec
									
												View File
												
				@@ -21,7 +21,7 @@

				%bcond_without testsuite

				Name:           curl

				Version:        7.37.1

				Version:        7.38.0

				Release:        0

				Summary:        A Tool for Transferring Data from URLs

				License:        BSD-3-Clause and MIT

Accepting request 248327 from home:vitezslav_cizek:branches:devel:libraries:c_c++

2 curl.spec Unescape Escape View File

2

curl.spec

View File