From 302b721dfa654ecdf11ec72ac95f2d695e8fa13daac89cdb0a3f52a86118c373 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Ismail=20D=C3=B6nmez?= Date: Thu, 8 Sep 2016 08:54:43 +0000 Subject: [PATCH 1/2] - update to 7.50.2 Bugfixes: * mbedtls: Added support for NTLM * SSH: fixed SFTP/SCP transfer problems * multi: make Curl_expire() work with 0 ms timeouts * mk-ca-bundle.pl: -m keeps ca cert meta data in output * TFTP: Fix upload problem with piped input * CURLOPT_TCP_NODELAY: now enabled by default * mbedtls: set verbose TLS debug when MBEDTLS_DEBUG is defined * http2: always wait for readable socket * cmake: Enable win32 large file support by default * cmake: Enable win32 threaded resolver by default * winbuild: Avoid setting redundant CFLAGS to compile commands * curl.h: make CURL_NO_OLDIES define CURL_STRICTER * docs: make more markdown files use .md extension * docs: CONTRIBUTE and LICENSE-MIXING were converted to markdown * winbuild: Allow changing C compiler via environment variable CC * rtsp: accept any RTSP session id * HTTP: retry failed HEAD requests on reused connections too * configure: add zlib search with pkg-config * openssl: accept subjectAltName iPAddress if no dNSName match * MANUAL: Remove invalid link to LDAP documentation * socks: improved connection procedure * proxy: reject attempts to use unsupported proxy schemes * proxy: bring back use of "Proxy-Connection:" * curl: allow "pkcs11:" prefix for client certificates * spnego_sspi: fix memory leak in case *outlen is zero * SOCKS: improve verbose output of SOCKS5 connection sequence * SOCKS: display the hostname returned by the SOCKS5 proxy server * http/sasl: Query authentication mechanism supported by SSPI before using OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/curl?expand=0&rev=171 --- curl-7.50.1.tar.lzma | 3 --- curl-7.50.1.tar.lzma.asc | 11 -------- curl-7.50.2.tar.lzma | 3 +++ curl-7.50.2.tar.lzma.asc | 10 ++++++++ curl.changes | 55 ++++++++++++++++++++++++++++++++++++++++ curl.spec | 2 +- 6 files changed, 69 insertions(+), 15 deletions(-) delete mode 100644 curl-7.50.1.tar.lzma delete mode 100644 curl-7.50.1.tar.lzma.asc create mode 100644 curl-7.50.2.tar.lzma create mode 100644 curl-7.50.2.tar.lzma.asc diff --git a/curl-7.50.1.tar.lzma b/curl-7.50.1.tar.lzma deleted file mode 100644 index b78abb2..0000000 --- a/curl-7.50.1.tar.lzma +++ /dev/null @@ -1,3 +0,0 @@ -version https://git-lfs.github.com/spec/v1 -oid sha256:b2b176f3ef39d945d31e68e788be8564a7e16478af1dfe732462a300c7c58361 -size 5994956 diff --git a/curl-7.50.1.tar.lzma.asc b/curl-7.50.1.tar.lzma.asc deleted file mode 100644 index 3d2d1e2..0000000 --- a/curl-7.50.1.tar.lzma.asc +++ /dev/null @@ -1,11 +0,0 @@ ------BEGIN PGP SIGNATURE----- -Version: GnuPG v2 - -iQEcBAABCgAGBQJXoZGzAAoJEFzJCP23HhLCmj4IAIThxlJHbnqX+vPMHdAj4o/6 -Rr946YLOyQl41eJCwjsCYLbFGj0c2uy0ipKuSTB1aodyOwwuybHGJbsJxE9TKJTd -eWgZ1sG9clE5S5YBHYqJK32PmYLEo7pSoNgamzoXOFKdxdK4OSNnPJBrJy2wDQRY -+FfRR+xOvUDvj3K84eEEeKKbGgXqKSgQ7594s7BFSGxDQEzUIkmpEiMQv9S4ZCOL -03FR8f0PXs4N8/tKSRBmhPc7BwCfTgK1XVpd+puYOTMi7niW3rentnqCONOSQbqo -xvN/XDvvEVN+P17DWAkYPwHkjFCC9L+3uR1OCzFgFgGcoN1Yv9nK/bqRGGGRGr8= -=uBU6 ------END PGP SIGNATURE----- diff --git a/curl-7.50.2.tar.lzma b/curl-7.50.2.tar.lzma new file mode 100644 index 0000000..4dda1b0 --- /dev/null +++ b/curl-7.50.2.tar.lzma @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:7ebd149b05877a894aa821d6bd2af726a0c04069e754b0e72f10025d7bf0b434 +size 5996976 diff --git a/curl-7.50.2.tar.lzma.asc b/curl-7.50.2.tar.lzma.asc new file mode 100644 index 0000000..be078c5 --- /dev/null +++ b/curl-7.50.2.tar.lzma.asc @@ -0,0 +1,10 @@ +-----BEGIN PGP SIGNATURE----- + +iQEcBAABCgAGBQJXz6qdAAoJEFzJCP23HhLC6twH/3QeGbEA0pOOaA77CBI83SgY +76BieyDb2WPz1krUv09zMijIhKyy9+F+aCygBotzcUMDsrT0cLf/6xZKI3chAcGo +H6S/ewRJvcx0IxAuaVlj+r3K5ZB7PY4GoDqGIngRgHSDyMkHEioOnUeG57FuTNJ3 +1gmeFnfkwtDGUcctGNndG7XbfUcFCyN60q6BAFUn5eXaHEm19xNiveeo9+mt2jse +phsvmKrzTqCMFNZgeU0OoFQnVPL41J9nBcHlGDzpv5yAW8gM46dS9pV8t2lSUW02 +jGtGpLQLLDOgmJrpkQEDUp/xWKFifPmNog8NsUQ4lxe8fGf1DkHrmIRVPKsge/k= +=L2bZ +-----END PGP SIGNATURE----- diff --git a/curl.changes b/curl.changes index 88234fd..2805605 100644 --- a/curl.changes +++ b/curl.changes @@ -1,3 +1,58 @@ +------------------------------------------------------------------- +Thu Sep 8 08:31:40 UTC 2016 - idonmez@suse.com + +- update to 7.50.2 + Bugfixes: + * mbedtls: Added support for NTLM + * SSH: fixed SFTP/SCP transfer problems + * multi: make Curl_expire() work with 0 ms timeouts + * mk-ca-bundle.pl: -m keeps ca cert meta data in output + * TFTP: Fix upload problem with piped input + * CURLOPT_TCP_NODELAY: now enabled by default + * mbedtls: set verbose TLS debug when MBEDTLS_DEBUG is defined + * http2: always wait for readable socket + * cmake: Enable win32 large file support by default + * cmake: Enable win32 threaded resolver by default + * winbuild: Avoid setting redundant CFLAGS to compile commands + * curl.h: make CURL_NO_OLDIES define CURL_STRICTER + * docs: make more markdown files use .md extension + * docs: CONTRIBUTE and LICENSE-MIXING were converted to markdown + * winbuild: Allow changing C compiler via environment variable CC + * rtsp: accept any RTSP session id + * HTTP: retry failed HEAD requests on reused connections too + * configure: add zlib search with pkg-config + * openssl: accept subjectAltName iPAddress if no dNSName match + * MANUAL: Remove invalid link to LDAP documentation + * socks: improved connection procedure + * proxy: reject attempts to use unsupported proxy schemes + * proxy: bring back use of "Proxy-Connection:" + * curl: allow "pkcs11:" prefix for client certificates + * spnego_sspi: fix memory leak in case *outlen is zero + * SOCKS: improve verbose output of SOCKS5 connection sequence + * SOCKS: display the hostname returned by the SOCKS5 proxy server + * http/sasl: Query authentication mechanism supported by SSPI before using + * sasl: Don't use GSSAPI authentication when domain name not specified + * win: Basic support for Universal Windows Platform apps + * nss: fix incorrect use of a previously loaded certificate from file, + CVE-2016-5420 + * nss: work around race condition in PK11_FindSlotByName() + * ftp: fix wrong poll on the secondary socket + * openssl: build warning-free with 1.1.0 (again) + * HTTP: stop parsing headers when switching to unknown protocols + * test219: Add http as a required feature + * TLS: random file/egd doesn't have to match for conn reuse + * schannel: Disable ALPN for Wine since it is causing problems + * http2: make sure stream errors don't needlessly close the connection + * http2: return CURLE_HTTP2_STREAM for unexpected stream close + * darwinssl: --cainfo is intended for backward compatibility only + * speed caps: not based on average speeds anymore + * configure: make the cpp -P detection not clobber CPPFLAGS + * http2: use named define instead of magic constant in read callback + * http2: skip the content-length parsing, detect unknown size + * http2: return EOF when done uploading without known size + * darwinssl: test for errSecSuccess in PKCS12 import rather than noErr + * openssl: fix CURLINFO_SSL_VERIFYRESULT + ------------------------------------------------------------------- Fri Aug 5 12:41:43 UTC 2016 - pjanouch@suse.de diff --git a/curl.spec b/curl.spec index 3fe93f3..af921d6 100644 --- a/curl.spec +++ b/curl.spec @@ -20,7 +20,7 @@ %bcond_with mozilla_nss %bcond_without testsuite Name: curl -Version: 7.50.1 +Version: 7.50.2 Release: 0 Summary: A Tool for Transferring Data from URLs License: BSD-3-Clause and MIT From 2204f88cb52dbd1cc997a90f6ae033f32e5afff87e4c830180370cb1298a758c Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Ismail=20D=C3=B6nmez?= Date: Thu, 8 Sep 2016 08:56:16 +0000 Subject: [PATCH 2/2] - OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/curl?expand=0&rev=172 --- curl.changes | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/curl.changes b/curl.changes index 2805605..59e53d9 100644 --- a/curl.changes +++ b/curl.changes @@ -34,7 +34,7 @@ Thu Sep 8 08:31:40 UTC 2016 - idonmez@suse.com * sasl: Don't use GSSAPI authentication when domain name not specified * win: Basic support for Universal Windows Platform apps * nss: fix incorrect use of a previously loaded certificate from file, - CVE-2016-5420 + https://curl.haxx.se/docs/adv_20160907.html * nss: work around race condition in PK11_FindSlotByName() * ftp: fix wrong poll on the secondary socket * openssl: build warning-free with 1.1.0 (again)