- update to 7.50.3

Bugfixes: * CVE-2016-7167: escape and unescape integer overflows * mk-ca-bundle.pl: use SHA256 instead of SHA1 * checksrc: detect strtok() use * errors: new alias CURLE_WEIRD_SERVER_REPLY * http2: support > 64bit sized uploads * openssl: fix bad memory free (regression) * CMake: hide private library symbols * http: refuse to pass on response body when NO_NODY is set * cmake: fix curl-config --static-libs * mbedtls: switch off NTLM in build if md4 isn't available * curl: --create-dirs on windows groks both forward and backward slashes OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/curl?expand=0&rev=174
2016-09-14 07:41:51 +00:00 · 2016-09-14 07:41:51 +00:00 · bde7f7c470
commit bde7f7c470
parent 2204f88cb5
6 changed files with 32 additions and 14 deletions
--- a/curl-7.50.2.tar.lzma
+++ b/curl-7.50.2.tar.lzma
@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:7ebd149b05877a894aa821d6bd2af726a0c04069e754b0e72f10025d7bf0b434
-size 5996976
--- a/curl-7.50.2.tar.lzma.asc
+++ b/curl-7.50.2.tar.lzma.asc
@ -1,10 +0,0 @@
-----BEGIN PGP SIGNATURE-----
-
-iQEcBAABCgAGBQJXz6qdAAoJEFzJCP23HhLC6twH/3QeGbEA0pOOaA77CBI83SgY
-76BieyDb2WPz1krUv09zMijIhKyy9+F+aCygBotzcUMDsrT0cLf/6xZKI3chAcGo
-H6S/ewRJvcx0IxAuaVlj+r3K5ZB7PY4GoDqGIngRgHSDyMkHEioOnUeG57FuTNJ3
-1gmeFnfkwtDGUcctGNndG7XbfUcFCyN60q6BAFUn5eXaHEm19xNiveeo9+mt2jse
-phsvmKrzTqCMFNZgeU0OoFQnVPL41J9nBcHlGDzpv5yAW8gM46dS9pV8t2lSUW02
-jGtGpLQLLDOgmJrpkQEDUp/xWKFifPmNog8NsUQ4lxe8fGf1DkHrmIRVPKsge/k=
-=L2bZ
-----END PGP SIGNATURE-----
--- a/curl-7.50.3.tar.lzma
+++ b/curl-7.50.3.tar.lzma
@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:8c5457e2ecfc38d7e1103bf5e0f87895222340200de9ceefd300c3420698f5ea
+size 6003154
--- a/curl-7.50.3.tar.lzma.asc
+++ b/curl-7.50.3.tar.lzma.asc
@ -0,0 +1,10 @@
+-----BEGIN PGP SIGNATURE-----
+
+iQEcBAABCgAGBQJX2OcWAAoJEFzJCP23HhLCOUkH/A+cGespPSg0Z8DH8P+VGBf2
+r4kKlx+BktOFmD9v35EGTUpLAmJ7rH573kOXXTuu4uBLN5P05Vy2Y6Pb3RJkutJA
+uXPg0tvIyopGWKSEPEsffk83YkunKr0DaCfILM2XyMZpAEvS6hUf+RZmSTOqNn8Y
+Yn6zO1FnhG/407w1T63eFovbfbjo4Qwh+CYkfLhzj9niGEEinocUqkni4F1AH1vj
+W1iCLCEa13bcBU1lw1AuPPYz8S5hAeOmZB2PQUj/Qa9rQq5iAfwfCuVAU8u/mVo1
+0LFzwh7/iV0a73GXL1KaCJ1MkiDgZwoSdtjLm+k0hcpOJR0NwU4TjLC7EyXEBrI=
+=s7H5
+-----END PGP SIGNATURE-----
--- a/curl.changes
+++ b/curl.changes
@ -1,3 +1,21 @@
+-------------------------------------------------------------------
+Wed Sep 14 07:13:02 UTC 2016 - idonmez@suse.com
+
+- update to 7.50.3
+   Bugfixes:
+   * CVE-2016-7167: escape and unescape integer overflows
+   * mk-ca-bundle.pl: use SHA256 instead of SHA1
+   * checksrc: detect strtok() use
+   * errors: new alias CURLE_WEIRD_SERVER_REPLY
+   * http2: support > 64bit sized uploads
+   * openssl: fix bad memory free (regression)
+   * CMake: hide private library symbols
+   * http: refuse to pass on response body when NO_NODY is set
+   * cmake: fix curl-config --static-libs
+   * mbedtls: switch off NTLM in build if md4 isn't available
+   * curl: --create-dirs on windows groks both forward and
+     backward slashes
+
 -------------------------------------------------------------------
 Thu Sep  8 08:31:40 UTC 2016 - idonmez@suse.com

--- a/curl.spec
+++ b/curl.spec
@ -20,7 +20,7 @@
 %bcond_with mozilla_nss
 %bcond_without testsuite
 Name:           curl
-Version:        7.50.2
+Version:        7.50.3
 Release:        0
 Summary:        A Tool for Transferring Data from URLs
 License:        BSD-3-Clause and MIT