Accepting request 1087553 from devel:libraries:c_c++

OBS-URL: https://build.opensuse.org/request/show/1087553 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/curl?expand=0&rev=184
2023-05-18 13:18:22 +00:00 · 2023-05-18 13:18:22 +00:00 · 3265a52277
commit 3265a52277
parent b13f5cfcf1 ffa320e2d1
6 changed files with 33 additions and 15 deletions
--- a/curl-8.0.1.tar.xz
+++ b/curl-8.0.1.tar.xz
@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:0a381cd82f4d00a9a334438b8ca239afea5bfefcfa9a1025f2bf118e79e0b5f0
-size 2575544
--- a/curl-8.0.1.tar.xz.asc
+++ b/curl-8.0.1.tar.xz.asc
@ -1,11 +0,0 @@
-----BEGIN PGP SIGNATURE-----
-
-iQEzBAABCgAdFiEEJ+3q8i86vOtQ25oSXMkI/bceEsIFAmQYZbIACgkQXMkI/bce
-EsIBhQf/WBWHXCc2+NoyjY/AOO0iGhx6ulp1u57AzDCiIpBSbzJYfk6LpmlUcAo+
-urAje0GbgTBIjs4oG+Hnr8nSqo05TWuQK43g/4BFcFv3Q8aFX2w3i6x/at9zKULy
-yRTAvhyhTXcJsZR+MKWHltHhiO5g/d4P46+OBG7f1sY93ztBiFLdrZhMu5v27RjX
-G8sgysXDzZP/VEGEuQsRPNjlQPMsO3ZyOCcUsj+L6u1nWW2Ru1c/7vvGzZtQEONi
-fB3X2dX2QUdG7vR1t02aFgjzws01TmBvN0XW2EbDT36IEtngTGlgIXMWGcXQlVyG
-6J0DqzOrXntl6HTLHIfHAorrzWvV3A==
-=mEwS
-----END PGP SIGNATURE-----
--- a/curl-8.1.0.tar.xz
+++ b/curl-8.1.0.tar.xz
@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:6bd80ad4f07187015911216ee7185b90d285ac5162aed1bded144f9f93232a3c
+size 2612568
--- a/curl-8.1.0.tar.xz.asc
+++ b/curl-8.1.0.tar.xz.asc
@ -0,0 +1,11 @@
+-----BEGIN PGP SIGNATURE-----
+
+iQEzBAABCgAdFiEEJ+3q8i86vOtQ25oSXMkI/bceEsIFAmRkb2YACgkQXMkI/bce
+EsIbNQgAo0VwmDj8VDpSRtjM+dHQ/9CO7MrK9IHT4PyQENrq8SkrX8bbrVaKoqs3
+NUhcqnE2AZugjpUg3Az7LjZcPKt/5wjS1TmFAJ5es+PM89F67icCgW1vy50gjrM1
+YlhgFMcCURBGu0w4D3CQyKlMuUoeaThcPiq6gkF+52NN1Z7z3S3O5qLPkDr34ALU
+2i4hEvIC1TjU/aFrocjICWcp3GAVtOFTN56JBEF/uhBePH7jMCz35WzlxzZ/KYVs
+qdjvP9fEa/PfeNDOkabXFxmz5pOaTfrnODvF32lk6lrOfAZa83QFN0s47iCS6NBR
+/5U6lZXAL3frmCEfLyft1Rql139wtg==
+=if2A
+-----END PGP SIGNATURE-----
--- a/curl.changes
+++ b/curl.changes
@ -1,3 +1,21 @@
+-------------------------------------------------------------------
+Wed May 17 08:13:32 UTC 2023 - David Anes <david.anes@suse.com>
+
+- Update to 8.1.0:
+  * Security fixes:
+    - UAF in SSH sha256 fingerprint [bsc#1211230, CVE-2023-28319]
+    - siglongjmp race condition [bsc#1211231, CVE-2023-28320]
+    - IDN wildcard match [bsc#1211232, CVE-2023-28321]
+    - POST-after-PUT confusion [bsc#1211233, CVE-2023-28322]
+    - See also: https://curl.se/docs/security.html
+  * Changes:
+    - curl: add --proxy-http2
+    - CURLPROXY_HTTPS2: for HTTPS proxy that may speak HTTP/2
+    - hostip: refuse to resolve the .onion TLD
+    - tool_writeout: add URL component variables  
+  * Bugfixes:
+    - See full changelog here: https://curl.se/changes.html#8_1_0
+
 -------------------------------------------------------------------
 Tue Mar 21 08:44:52 UTC 2023 - Pedro Monreal <pmonreal@suse.com>

--- a/curl.spec
+++ b/curl.spec
@ -21,7 +21,7 @@
 # need ssl always for python-pycurl
 %bcond_without openssl
 Name:           curl
-Version:        8.0.1
+Version:        8.1.0
 Release:        0
 Summary:        A Tool for Transferring Data from URLs
 License:        curl