Accepting request 586981 from home:pmonrealgonzalez:branches:devel:libraries:c_c++
- Added message about protocol redirection not supported or disabled to the function findprotocol() [bsc#1076446] * Added curl-disabled-redirect-protocol-message.patch - Update to version 7.59.0 [bsc#1084521, CVE-2018-1000120][bsc#1084524, CVE-2018-1000121] [bsc#1084532, CVE-2018-1000122] Changes: * curl: add --proxy-pinnedpubkey * added: CURLOPT_TIMEVALUE_LARGE and CURLINFO_FILETIME_T * CURLOPT_RESOLVE: Add support for multiple IP addresses per entry * Add option CURLOPT_HAPPY_EYEBALLS_TIMEOUT_MS * Add new tool option --happy-eyeballs-timeout-ms * Add CURLOPT_RESOLVER_START_FUNCTION and CURLOPT_RESOLVER_START_DATA Bugfixes: * openldap: check ldap_get_attribute_ber() results for NULL before using * FTP: reject path components with control codes * readwrite: make sure excess reads don't go beyond buffer end * lib555: drop text conversion and encode data as ascii codes * lib517: make variable static to avoid compiler warning * lib544: sync ascii code data with textual data * GSKit: restore pinnedpubkey functionality * darwinssl: Don't import client certificates into Keychain on macOS * parsedate: fix date parsing for systems with 32 bit long * openssl: fix pinned public key build error in FIPS mode * SChannel/WinSSL: Implement public key pinning * cookies: remove verbose "cookie size:" output * progress-bar: don't use stderr explicitly, use bar->out * build: open VC15 projects with VS 2017 * curl_ctype: private is*() type macros and functions OBS-URL: https://build.opensuse.org/request/show/586981 OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/curl?expand=0&rev=222
This commit is contained in:
Tomáš Chvátal
committed by
Git OBS Bridge
Git OBS Bridge
parent
abda1d488f
commit
3b846fa6c7
94
curl.changes
94
curl.changes
@@ -1,3 +1,97 @@
|
||||
-------------------------------------------------------------------
|
||||
Wed Mar 14 14:23:22 UTC 2018 - pmonrealgonzalez@suse.com
|
||||
|
||||
- Added message about protocol redirection not supported or
|
||||
disabled to the function findprotocol() [bsc#1076446]
|
||||
* Added curl-disabled-redirect-protocol-message.patch
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Wed Mar 14 13:08:33 UTC 2018 - pmonrealgonzalez@suse.com
|
||||
|
||||
- Update to version 7.59.0
|
||||
[bsc#1084521, CVE-2018-1000120][bsc#1084524, CVE-2018-1000121]
|
||||
[bsc#1084532, CVE-2018-1000122]
|
||||
Changes:
|
||||
* curl: add --proxy-pinnedpubkey
|
||||
* added: CURLOPT_TIMEVALUE_LARGE and CURLINFO_FILETIME_T
|
||||
* CURLOPT_RESOLVE: Add support for multiple IP addresses per entry
|
||||
* Add option CURLOPT_HAPPY_EYEBALLS_TIMEOUT_MS
|
||||
* Add new tool option --happy-eyeballs-timeout-ms
|
||||
* Add CURLOPT_RESOLVER_START_FUNCTION and CURLOPT_RESOLVER_START_DATA
|
||||
Bugfixes:
|
||||
* openldap: check ldap_get_attribute_ber() results for NULL before using
|
||||
* FTP: reject path components with control codes
|
||||
* readwrite: make sure excess reads don't go beyond buffer end
|
||||
* lib555: drop text conversion and encode data as ascii codes
|
||||
* lib517: make variable static to avoid compiler warning
|
||||
* lib544: sync ascii code data with textual data
|
||||
* GSKit: restore pinnedpubkey functionality
|
||||
* darwinssl: Don't import client certificates into Keychain on macOS
|
||||
* parsedate: fix date parsing for systems with 32 bit long
|
||||
* openssl: fix pinned public key build error in FIPS mode
|
||||
* SChannel/WinSSL: Implement public key pinning
|
||||
* cookies: remove verbose "cookie size:" output
|
||||
* progress-bar: don't use stderr explicitly, use bar->out
|
||||
* build: open VC15 projects with VS 2017
|
||||
* curl_ctype: private is*() type macros and functions
|
||||
* configure: set PATH_SEPARATOR to colon for PATH w/o separator
|
||||
* curl_easy_reset: clear digest auth state
|
||||
* curl/curl.h: fix comment typo for CURLOPT_DNS_LOCAL_IP6
|
||||
* range: commonize FTP and FILE range handling
|
||||
* progress-bar docs: update to match implementation
|
||||
* fnmatch: do not match the empty string with a character set
|
||||
* fnmatch: accept an alphanum to be followed by a non-alphanum in char set
|
||||
* build: fix termios issue on android cross-compile
|
||||
* getdate: return -1 for out of range
|
||||
* formdata: use the mime-content type function
|
||||
* openssl: Don't add verify locations when verifypeer==0
|
||||
* fnmatch: optimize processing of consecutive *s and ?s pattern characters
|
||||
* schannel: fix compiler warnings
|
||||
* content_encoding: Add "none" alias to "identity"
|
||||
* get_posix_time: only check for overflows if they can happen
|
||||
* http_chunks: don't write chunks twice with CURLOPT_HTTP_TRANSFER_DECODING
|
||||
* README: language fix
|
||||
* sha256: build with OpenSSL < 0.9.8
|
||||
* smtp: fix processing of initial dot in data
|
||||
* --tlsauthtype: works only if libcurl is built with TLS-SRP support
|
||||
* tests: new tests for http raw mode
|
||||
* libcurl-security.3: man page discussion security concerns when using libcurl
|
||||
* curl_gssapi: make sure this file too uses our *printf()
|
||||
* BINDINGS: fix curb link (and remove ruby-curl-multi)
|
||||
* nss: use PK11_CreateManagedGenericObject() if available
|
||||
* travis: add build with iconv enabled
|
||||
* ssh: add two missing state names
|
||||
* CURLOPT_HEADERFUNCTION.3: mention folded headers
|
||||
* http: fix the max header length detection logic
|
||||
* header callback: don't chop headers into smaller pieces
|
||||
* CURLOPT_HEADER.3: clarify problems with different data sizes
|
||||
* curl --version: show PSL if the run-time lib has it enabled
|
||||
* examples/sftpuploadresume: resume upload via CURLOPT_APPEND
|
||||
* Return error if called recursively from within callbacks
|
||||
* sasl: prefer PLAIN mechanism over LOGIN
|
||||
* winbuild: Use CALL to run batch scripts
|
||||
* curl_share_setopt.3: connection cache is shared within multi handles
|
||||
* projects/README: remove reference to dead IDN link/package
|
||||
* lib655: silence compiler warning
|
||||
* configure: Fix version check for OpenSSL 1.1.1
|
||||
* docs/MANUAL: formfind.pl is not accessible on the site anymore
|
||||
* unit1307: proper cleanup on OOM to fix torture tests
|
||||
* curl_ctype: fix macro redefinition warnings
|
||||
* build: get CFLAGS (including -werror) used for examples and tests
|
||||
* NO_PROXY: fix for IPv6 numericals in the URL
|
||||
* krb5: use nondeprecated functions
|
||||
* http2: mark the connection for close on GOAWAY
|
||||
* limit-rate: kick in even before "limit" data has been received
|
||||
* HTTP: allow "header;" to replace an internal header with a blank one
|
||||
* http2: verbose output new MAX_CONCURRENT_STREAMS values
|
||||
* SECURITY: distros' max embargo time is 14 days
|
||||
* curl tool: accept --compressed also if Brotli is enabled and zlib is not
|
||||
* WolfSSL: adding TLSv1.3
|
||||
* checksrc.pl: add -i and -m options
|
||||
* CURLOPT_COOKIEFILE.3: "-" as file name means stdin
|
||||
|
||||
- Refreshed patch libcurl-ocloexec.patch
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Tue Feb 20 09:48:49 UTC 2018 - tchvatal@suse.com
|
||||
|
||||
|
||||
Reference in New Issue
Block a user