------------------------------------------------------------------- Fri Nov 14 15:29:07 UTC 2014 - vcizek@suse.com - update to 7.39.0: - changes: SSLv3 is disabled by default CURLOPT_COOKIELIST: Added "RELOAD" command build: Added WinIDN build configuration options to Visual Studio projects ssh: improve key file search SSL: public key pinning. Use CURLOPT_PINNEDPUBLICKEY and --pinnedpubkey vtls: remove QsoSSL support, use gskit! mk-ca-bundle: added SHA-384 signature algorithm docs: added many examples for libcurl opts and other doc improvements build: Added VC ssh2 target to main Makefile MinGW: Added support to build with nghttp2 NetWare: Added support to build with nghttp2 build: added Watcom support to build with WinSSL build: Added optional specific version generation of VC project files ... and a bunch of bugfixes - refreshed libcurl-ocloexec.patch - removed gpg-offline verification - spec-cleaned curl.spec ------------------------------------------------------------------- Thu Oct 23 15:13:30 UTC 2014 - crrodriguez@opensuse.org - Ensure the curl command line tool always require the same libcurl it was used for build, even expert users got confused. ------------------------------------------------------------------- Wed Sep 10 09:07:59 UTC 2014 - vcizek@suse.com - update to 7.38.0 * fixes CVE-2014-3613 (bnc#894575) and CVE-2014-3620 (bnc#895991) * cookie leaks with IP address as domain and TLDs respectively Changes: supports HTTP/2 draft-14 CURLE_HTTP2 is a new error code CURLAUTH_NEGOTIATE is a new auth define CURL_VERSION_GSSAPI is a new capability bit no longer use fbopenssl for anything schannel: use CryptGenRandom for random numbers axtls: define curlssl_random using axTLS's PRNG cyassl: use RNG_GenerateBlock to generate a good random number findprotocol: show unsupported protocol within quotes version: detect and show LibreSSL version: detect and show BoringSSL imap/pop3/smtp: Kerberos (SASL GSSAPI) authentication via Windows SSPI http2: requires nghttp2 0.6.0 or later Bugfixes: SECURITY ADVISORY: cookie leak with IP address as domain SECURITY ADVISORY: cookie leak for TLDs And many other fixes ------------------------------------------------------------------- Thu Aug 28 21:59:59 UTC 2014 - andreas.stieger@gmx.de - curl 7.37.1: This release includes many bugfixes and the following changes: * bits.close: introduce connection close tracking * darwinssl: Add support for --cacert * polarssl: add ALPN support * docs: Added new option man pages ------------------------------------------------------------------- Thu Jun 12 11:45:03 UTC 2014 - vcizek@suse.com - update to 7.37.0 This release includes many bugfixes and the following changes: * URL parser: IPv6 zone identifiers are now supported * CURLOPT_PROXYHEADER: set headers for proxy-only * CURLOPT_HEADEROPT: added * curl: add --proxy-header * sasl: Added support for DIGEST-MD5 via Windows SSPI * sasl: Added DIGEST-MD5 qop-option validation in native challange handling * imap: Expanded mailbox SEARCH support to use URL query strings [7] * imap: Extended FETCH support to include PARTIAL URL specifier [7] * nss: implement non-blocking SSL handshake * build: Reworked Visual Studio project files * poll: enable poll on darwin13 * mk-ca-bundle: added -p * libtests: add a wait_ms() function - dropped patches: * curl-mkhelp.patch (upstream) * curl-test815.patch (upstream) ------------------------------------------------------------------- Fri Apr 11 06:51:54 UTC 2014 - vcizek@suse.com - remove the useless BuildRequires that were meant for debugging only ------------------------------------------------------------------- Wed Apr 9 11:40:19 UTC 2014 - vcizek@suse.com - update to 7.36 * fixes CVE-2014-0138 (bnc#868627) and CVE-2014-0139 (bnc#868629) * NEW FEATURES: ntlm: Added support for NTLMv2 tool: Added support for URL specific options openssl: add ALPN support gtls: add ALPN support nss: add ALPN and NPN support added CURLOPT_EXPECT_100_TIMEOUT_MS tool: add --no-alpn and --no-npn added CURLOPT_SSL_ENABLE_NPN and CURLOPT_SSL_ENABLE_ALPN http2: build with current nghttp2 version openssl: info message with SSL version used * dropped curl-test172_cookie_expiration.patch (upstream) * added patches to make it build: - curl-mkhelp.patch - curl-test815.patch ------------------------------------------------------------------- Thu Mar 13 13:53:08 CET 2014 - kukuk@suse.de - Disable BuildRequires for openssh, only needed for test suite, but the test suite isn't able to start sshd anyways. Solves the problem that openssh checkins triggers a nearly full rebuild, too. ------------------------------------------------------------------- Tue Feb 4 15:17:18 UTC 2014 - vcizek@suse.com - update to 7.35.0 * security fix: CVE-2014-0015: re-use of wrong HTTP NTLM connection (bnc#858673) * changes: imap/pop3/smtp: Added support for SASL authentication downgrades imap/pop3/smtp: Extended the login options to support multiple auth mechanisms TheArtOfHttpScripting: major update, converted layout and more mprintf: Added support for I, I32 and I64 size specifiers makefile: Added support for VC7, VC11 and VC12 SSL: protocol version can be specified more precisely imap/pop3/smtp: Added graceful cancellation of SASL authentication Add "Happy Eyeballs" for IPv4/IPv6 dual connect attempts base64: Added validation of base64 input strings when decoding curl_easy_setopt: Added the ability to set the login options separately smtp: Added support for additional SMTP commands curl_easy_getinfo: Added CURLINFO_TLS_SESSION for accessing TLS internals nss: allow to use TLS > 1.0 if built against recent NSS SECURITY: added this document to describe our security processes parseconfig: warn if unquoted white spaces are detected * and many bugfixes - fix test failure because of an expired cookie (bnc#862144) * added curl-test172_cookie_expiration.patch - refresh libcurl-ocloexec.patch ------------------------------------------------------------------- Fri Nov 29 15:30:23 UTC 2013 - vcizek@suse.com - update to 7.33.0 * fixes CVE-2013-4545 (bnc#849596) = curl: ssl cert checks unclear behaviour o test code for testing the event based API o CURLM_ADDED_ALREADY: new error code o test TFTP server: support "writedelay" within o krb4 support has been removed o imap/pop3/smtp: added basic SASL XOAUTH2 support o Pass password to OpenSSL engine by user interface o c-ares: Add support for various DNS binding options o cookies: add expiration o curl: added --oauth2-bearer option ------------------------------------------------------------------- Mon Aug 12 05:29:34 UTC 2013 - crrodriguez@opensuse.org - curl 7.32.0 * curl: allow timeouts to accept decimal values * CURLOPT_XFERINFOFUNCTION: introducing a new progress callback * SIGPIPE: ignored while inside the library * OpenSSL: check for read errors * configure: automake 1.14 compatibility tweak * curl_multi_wait: set revents for extra fds * global dns cache: didn't work (regression) * mk-ca-bundle.1: don't install on make install ------------------------------------------------------------------- Mon Jul 1 18:56:33 UTC 2013 - coolo@suse.com - avoid cycle between curl and krb5 by using krb5-mini-devel ------------------------------------------------------------------- Mon Jun 24 14:00:11 UTC 2013 - vcizek@suse.com - update to 7.31.0 * includes fix for CVE-2013-2174 (bnc#824517) * SECURITY VULNERABILITY: curl_easy_unescape() may parse data beyond the end of the input buffer [26] * Changes: darwinssl: add TLS session resumption darwinssl: add TLS crypto authentication imap/pop3/smtp: Added support for ;auth= in the URL imap/pop3/smtp: Added support for ;auth= to CURLOPT_USERPWD usercertinmem.c: add example showing user cert in memory url: Added smtp and pop3 hostnames to the protocol detection list imap/pop3/smtp: Added support for enabling the SASL initial response curl -E: allow to use ':' in certificate nicknames ------------------------------------------------------------------- Fri Apr 12 11:36:47 UTC 2013 - vcizek@suse.com - update to 7.30.0 includes security fixes for CVE-2013-0249 and CVE-2013-1944 (bugs bnc#814655 and bnc#802411 respectively) (dropped curl-CVE-2013-0249.patch) - Changes: imap: Changed response tag generation to be completely unique imap: Added support for SASL-IR extension imap: Added support for the list command imap: Added support for the append command imap: Added custom request parsing imap: Added support to the fetch command for UID and SECTION properties imap: Added parsing and verification of the UIDVALIDITY mailbox attribute imap/pop3/smtp: Added support for the STARTTLS capability checksrc: ban use of sprintf, vsprintf, strcat, strncat and gets curl_global_init() now accepts the CURL_GLOBAL_ACK_EINTR flag Added CURLMOPT_MAX_HOST_CONNECTIONS, CURLMOPT_MAX_TOTAL_CONNECTIONS for new multi interface connection handling Added CURLMOPT_MAX_PIPELINE_LENGTH, CURLMOPT_CONTENT_LENGTH_PENALTY_SIZE, CURLMOPT_CHUNK_LENGTH_PENALTY_SIZE, CURLMOPT_PIPELINING_SITE_BL and CURLMOPT_PIPELI NING_SERVER_BL for new pipelining control test: offer "automake" output and check for perl better always-multi: always use non-blocking internals imap: Added support for sasl digest-md5 authentication imap: Added support for sasl cram-md5 authentication imap: Added support for sasl ntlm authentication imap: Added support for sasl login authentication imap: Added support for sasl plain text authentication imap: Added support for login disabled server capability mk-ca-bundle: add -f, support passing to stdout and more writeout: -w now supports remote_ip/port and local_ip/port - refreshed patches ------------------------------------------------------------------- Sun Feb 17 17:04:34 UTC 2013 - crrodriguez@opensuse.org - Add curl-secure-getenv.patch: Use secure_getenv if available. libcurl might be linked to a program where "secure execution" is required. ------------------------------------------------------------------- Thu Feb 7 10:54:15 UTC 2013 - vcizek@suse.com - fixed CVE-2013-0249 (bnc#802411) - refreshed patches ------------------------------------------------------------------- Fri Jan 11 21:34:38 CET 2013 - sbrabec@suse.cz - Break build loop and make GPG signature verification optional. ------------------------------------------------------------------- Tue Nov 27 20:05:00 CET 2012 - sbrabec@suse.cz - Verify GPG signature. ------------------------------------------------------------------- Tue Nov 20 23:43:24 UTC 2012 - crrodriguez@opensuse.org - Curl 7.28.1 * FTP: prevent the multi interface from blocking Obsoletes curl-ftp-prevent-the-multi-interface-from-blocking.patch * don't send '#' fragments when using proxy * OpenSSL: Disable SSL/TLS compression - avoid the "CRIME" attack * TFTP: handle resend * memory leak: CURLOPT_RESOLVE with multi interface * SSL: Several SSL-backend related fixes ------------------------------------------------------------------- Sun Nov 4 19:57:33 UTC 2012 - gber@opensuse.org - added curl-ftp-prevent-the-multi-interface-from-blocking.patch in order to prevent the multi interface from blocking when using ftp and the remote end responds very slowly (sf#3579064) ------------------------------------------------------------------- Sun Jul 29 22:14:25 UTC 2012 - crrodriguez@opensuse.org - Curl 7.27.0 * support metalinks * Add sasl authentication support * various bugfixes - Fix previous change, _GNU_SOURCE --> AC_USE_SYSTEM_EXTENSIONS ------------------------------------------------------------------- Mon Jul 9 13:12:24 UTC 2012 - dnh@opensuse.org - define _GNU_SOURCE for oS/SLES <= 11.4, as O_CLOEXEC is defined inside a ifdef __USE_GNU ------------------------------------------------------------------- Sat May 12 23:24:56 UTC 2012 - jengelh@inai.de - Update to new upstream release 7.25.0 * Added CURLOPT_TCP_KEEPALIVE, CURLOPT_TCP_KEEPIDLE, CURLOPT_TCP_KEEPINTVL * use new library-side TCP_KEEPALIVE options * Added a new CURLOPT_MAIL_AUTH option * Added support for --mail-auth * (for more see the shipped CHANGES file) ------------------------------------------------------------------- Wed Feb 8 00:45:18 UTC 2012 - crrodriguez@opensuse.org - Problem with the c-ares backend, workaround for [bnc#745534] ------------------------------------------------------------------- Thu Feb 2 18:47:10 UTC 2012 - crrodriguez@opensuse.org - Update to version curl 7.24.0 - refresh patches to fix broken build ------------------------------------------------------------------- Wed Jan 18 13:49:56 CET 2012 - dmueller@suse.de - use the rpmoptflags unconditionally, don't do own compiler flag magic. Fixes debuginfo package built ------------------------------------------------------------------- Wed Dec 28 10:30:28 UTC 2011 - mmarek@suse.cz - Package /usr/share/aclocal to avoid build dependency on automake. ------------------------------------------------------------------- Wed Nov 30 22:39:35 UTC 2011 - crrodriguez@opensuse.org - Use O_CLOEXEC in library code. ------------------------------------------------------------------- Tue Nov 29 11:51:38 UTC 2011 - jengelh@medozas.de - Remove redundant/unwanted tags/section (cf. specfile guidelines) ------------------------------------------------------------------- Tue Nov 29 08:20:23 UTC 2011 - idoenmez@suse.de - Use original source tarball ------------------------------------------------------------------- Mon Nov 28 12:00:00 UTC 2011 - opensuse@dstoecker.de - Update to version 7.23.1: + Empty headers can be sent in HTTP requests by terminating with a semicolon + SSL session sharing support added to curl_share_setopt() + Added support to MAIL FROM for the optional SIZE parameter + smtp: Added support for NTLM authentication + curl tool: code split into tool_*.[ch] files + lots of bugfixes ------------------------------------------------------------------- Mon Oct 3 15:44:17 UTC 2011 - dimstar@opensuse.org - Update to version 7.22.0: + Added CURLOPT_GSSAPI_DELEGATION + Added support for NTLM delegation to Samba's winbind daemon helper ntlm_auth + Display notes from setup file in testcurl.pl + BSD-style lwIP TCP/IP stack experimental support on Windows + OpenSSL: Use SSL_MODE_RELEASE_BUFFERS if available + --delegation was added to set CURLOPT_GSSAPI_DELEGATION + nss: start with no database if the selected database is broken + telnet: allow programatic use on Windows + for a list of bugfixes, see http://curl.haxx.se/changes.html#7_22_0 - Drop curl-openssl-release-buffers.patch: fixed upstream. - Add curl-fix-m4.patch: Use 'x' in configure scripts. Fixes issues when configure is run with -Werror -Wall. ------------------------------------------------------------------- Sun Sep 18 00:10:42 UTC 2011 - jengelh@medozas.de - Remove redundant tags/sections from specfile - Use %_smp_mflags for parallel build ------------------------------------------------------------------- Fri Sep 16 17:22:44 UTC 2011 - jengelh@medozas.de - Add curl-devel to baselibs ------------------------------------------------------------------- Mon Aug 15 05:05:01 UTC 2011 - crrodriguez@opensuse.org - Use SSL_MODE_RELEASE_BUFFERS if available, accepted in upstream as commit 3d919440c80333c496fb ------------------------------------------------------------------- Tue Jul 12 06:46:02 UTC 2011 - coolo@novell.com - remove support for old suse_versions ------------------------------------------------------------------- Mon Jul 11 11:40:17 CEST 2011 - pth@suse.de - Update to 7.21.7: - Fix libcurl inappropriate GSSAPI delegation. Full details at http://curl.haxx.se/docs/adv_20110623.html - Some other minor fixes. - Use the lzma compressed tarball provided upstreams. ------------------------------------------------------------------- Fri May 20 16:25:34 UTC 2011 - crrodriguez@opensuse.org - remove unintented LDFLAGS from the spec file ------------------------------------------------------------------- Fri May 20 15:37:54 UTC 2011 - crrodriguez@opensuse.org - Update to 7.21.6 * curl-config: fix --version * use HTTPS properly after CONNECT * SFTP: close file before post quote operations ------------------------------------------------------------------- Thu Apr 14 17:02:19 UTC 2011 - crrodriguez@opensuse.org - bnc#598574 has been fixed in upstream commit 8ab137b2bc9630ce20f4 already, so enable c-ares support again. ------------------------------------------------------------------- Sat Apr 9 20:42:27 UTC 2011 - crrodriguez@opensuse.org - Support openSSL compiled without SSLv2 support - Update to version 7.21.4 * SMTP: add brackets for MAIL FROM * multi: connect fail => use next IP address * pubkey_show: allocate buffer to fit any-size result * Curl_do: avoid using stale conn pointer * tftpd test server: avoid buffer overflow report from glibc * OpenSSL get_cert_chain: support larger data sets * SCP/SFTP transfers: acknowledge speedcheck * connect problem: use UDP correctly * OpenSSL: improved error message on SSL_CTX_new failures * HTTP: memory leak on multiple Location: * curl.1: typo in -v description * CURLOPT_SOCKOPTFUNCTION: return proper error code --keepalive-time * file: add support for CURLOPT_TIMECONDITION * multi: fix CURLM_STATE_TOOFAST for multi_socket ------------------------------------------------------------------- Fri Oct 22 16:37:03 UTC 2010 - cristian.rodriguez@opensuse.org - Update to version 7.21.2 * curl -T: ignore file size of special files * Added GOPHER protocol support * Added mk-ca-bundle.vbs script * c-ares build now requires c-ares >= 1.6.0 * --remote-header-name security vulnerability fixed * multi: support the timeouts correctly, fixes known bug #62 * multi: use timeouts properly for MAX_RECV/SEND_SPEED * negotiation: Wrong proxy authorization * multi: avoid sending multiple complete messages * cmdline: make -F type= accept ;charset= * RESUME_FROM: clarify what ftp uploads do * http: handle trailer headers in all chunked responses * Curl_is_connected: use correct errno * progress: callback for POSTs less than MAX_INITIAL_POST_SIZE * Link curl and the test apps with -lrt explicitly when necessary * chunky parser: only rewind stream internally if needed * remote-header-name: don't output filename when NULL * Curl_timeleft: avoid returning "no timeout" by mistake * timeout: use the correct start value as offset * FTP: fix wrong timeout trigger * rtsp: avoid SIGSEGV on malformed header * LDAP: Support for tunnelling queries through HTTP proxy * curl_easy_duphandle: clone the c-ares handle correctly * support URL containing colon without trailing port number * parsedate: allow time specified without seconds * curl_easy_escape: don't escape "unreserved" characters * SFTP: avoid downloading negative sizes * Lots of GSS/KRB FTP fixes * TFTP: Work around tftpd-hpa upload bug * libcurl.m4: several fixes * HTTP: remove special case for 416 * globbing: fix crash on unballanced open brace ------------------------------------------------------------------- Wed Jun 2 14:12:54 UTC 2010 - lnussel@suse.de - allowing switching to nss instead of openssl via bcond ------------------------------------------------------------------- Mon May 10 01:12:22 UTC 2010 - crrodriguez@opensuse.org - disable c-ares support while bnc598574 is fixed. ------------------------------------------------------------------- Sat Apr 24 10:58:50 UTC 2010 - coolo@novell.com - buildrequire pkg-config to fix provides ------------------------------------------------------------------- Fri Apr 23 00:53:19 UTC 2010 - crrodriguez@opensuse.org - Update to libcurl 7.20.1 * off-by-one in the chunked encoding trailer parser * CURLOPT_CERTINFO memory leak * threaded resolver double free when closing curl handle * url_multi_remove_handle() caused use after free * SSL possible double free when reusing curl handle * alarm()-based DNS timeout bug ------------------------------------------------------------------- Wed Mar 24 18:39:57 UTC 2010 - crrodriguez@opensuse.org - enable libssh2 support unconditionally. ------------------------------------------------------------------- Wed Mar 10 13:46:45 UTC 2010 - crrodriguez@opensuse.org - enable libcares support unconditionally. ------------------------------------------------------------------- Sat Feb 13 21:39:56 CET 2010 - dimstar@opensuse.org - Update to version 7.20.0: * support SSL_FILETYPE_ENGINE for client certificate * curl-config can now show the arguments used when building curl * non-blocking TFTP * send Expect: 100-continue for POSTs with unknown sizes * added support for IMAP(S), POP3(S), SMTP(S) and RTSP * added new curl_easy_setopt() options for SMTP and RTSP * added --mail-from and --mail-rcpt for SMTP * VMS build system enhancements * added support for the PRET ftp command * curl supports --ssl and --ssl-reqd * added -J/--remote-header-name for using server-provided filename with -O * enhanced asynchronous DNS lookups * symbol CURL_FORMAT_OFF_T is obsoleted * many bugfixes ------------------------------------------------------------------- Tue Jan 26 11:33:14 CET 2010 - mmarek@suse.cz - updated to 7.19.7 * -T. is now for non-blocking uploading from stdin * SYST handling on FTP for OS/400 FTP server cases * libcurl refuses to read a single HTTP header longer than 100K * added the --crlfile option to curl * many bugfixes ------------------------------------------------------------------- Mon Jan 11 11:38:16 CET 2010 - meissner@suse.de - add baselibs.conf as source ------------------------------------------------------------------- Thu Aug 13 21:30:37 CEST 2009 - mmarek@suse.cz - updated to 7.19.6 * CURLOPT_FTPPORT (and curl's -P/--ftpport) support port ranges * Added CURLOPT_SSH_KNOWNHOSTS, CURLOPT_SSH_KEYFUNCTION, CURLOPT_SSH_KEYDATA * CURLOPT_QUOTE, CURLOPT_POSTQUOTE and CURLOPT_PREQUOTE can be told to ignore error responses when used with FTP * fixed CVE-2009-2417 (matching certificates with embedded NUL bytes) * many other bugfixes ------------------------------------------------------------------- Tue May 19 15:03:25 CEST 2009 - mmarek@suse.cz - remove the Obsoletes: curl-ca-bundle, it breaks parallel installation of older libcurl packages (bnc#484044). ------------------------------------------------------------------- Tue May 19 15:00:02 CEST 2009 - mmarek@suse.cz - updated to 7.19.5 * libcurl now closes all dead connections whenever you attempt to open a new connection * libssh2's version number can now be figured out run-time instead of using the build-time fixed number * CURLOPT_SEEKFUNCTION may now return CURL_SEEKFUNC_CANTSEEK * curl can now upload with resume even when reading from a pipe * a build-time configured curl_socklen_t is now used instead of socklen_t - by default, don't abort if the testsuite fails. ------------------------------------------------------------------- Thu Mar 5 11:12:41 CET 2009 - mmarek@suse.cz - don't run autoreconf -fi as it breaks on older distros and upstream uses recent autotools already. ------------------------------------------------------------------- Mon Mar 2 15:44:14 CET 2009 - mmarek@suse.cz - updated to 7.19.4 * don't follow redirects to file:// and scp:// by default; add new curl_easy_setopt options CURLOPT_PROTOCOLS and CURLOPT_REDIR_PROTOCOLS to specify which protocols are allowed and which protocols are allowed to redirect to (bnc#475103, CVE-2009-0037) * Added CURLOPT_NOPROXY and the corresponding --noproxy * the OpenSSL-specific code disables TICKET (rfc5077) which is enabled by default in openssl 0.9.8j * Added CURLOPT_TFTP_BLKSIZE * Added CURLOPT_SOCKS5_GSSAPI_SERVICE and CURLOPT_SOCKS5_GSSAPI_NEC - with the corresponding curl options --socks5-gssapi-service and --socks5-gssapi-nec * Improved IPv6 support when built with with c-ares >= 1.6.1 * Added CURLPROXY_HTTP_1_0 and --proxy1.0 * Added docs/libcurl/symbols-in-versions * Added CURLINFO_CONDITION_UNMET * Added support for Digest and NTLM authentication using GnuTLS * CURLOPT_FTP_CREATE_MISSING_DIRS can now be set to 2 to retry the CWD even when MKD fails * GnuTLS initing moved to curl_global_init() * CURLAUTH_DIGEST_IE bit added for CURLOPT_HTTPAUTH and CURLOPT_PROXYAUTH * pkg-config can now show supported_protocols and supported_features * Added CURLOPT_CERTINFO and CURLINFO_CERTINFO * Added CURLOPT_POSTREDIR * Better detect HTTP 1.0 servers and don't do HTTP 1.1 requests on them * configure --disable-proxy disables proxy support * Added CURLOPT_USERNAME and CURLOPT_PASSWORD * --interface now works with IPv6 connections on glibc systems * Added CURLOPT_PROXYUSERNAME and CURLOPT_PROXYPASSWORD ------------------------------------------------------------------- Wed Dec 10 12:34:56 CET 2008 - olh@suse.de - use Obsoletes: -XXbit only for ppc64 to help solver during distupgrade (bnc#437293) ------------------------------------------------------------------- Thu Oct 30 12:34:56 CET 2008 - olh@suse.de - obsolete old -XXbit packages (bnc#437293) ------------------------------------------------------------------- Mon Sep 15 11:26:06 CEST 2008 - mmarek@suse.cz - only buildrequire stunnel when built --with stunnel ------------------------------------------------------------------- Thu Sep 11 09:20:08 CEST 2008 - mmarek@suse.cz - test 279 no longer fails with runtests.pl -b ------------------------------------------------------------------- Tue Sep 2 14:23:51 CEST 2008 - mmarek@suse.cz - updated to 7.19.0 * curl_off_t gets its size/typedef somewhat differently than before. This _may_ cause an ABI change for you. See /usr/share/doc/packages/curl/README.curl_off_t for a full explanation. (Should not affect our package as it has LFS enabled) * Added CURLINFO_PRIMARY_IP * Added CURLOPT_CRLFILE and CURLE_SSL_CRL_BADFILE * Added CURLOPT_ISSUERCERT and CURLE_SSL_ISSUER_ERROR * curl's option parser for boolean options reworked * Added --remote-name-all * Added CURLINFO_APPCONNECT_TIME * Added test selection by key word in runtests.pl * the curl tool's -w option support the %{ssl_verify_result} variable * Added CURLOPT_ADDRESS_SCOPE and scope parsing of the URL according to RFC4007 * Support --append on SFTP uploads (not with OpenSSH, though) * Added curlbuild.h and curlrules.h to the external library interface * lots of bugfixes ------------------------------------------------------------------- Wed Jun 4 18:05:43 CEST 2008 - mmarek@suse.cz - updated to 7.18.2 * CURLFORM_STREAM was added * CURLOPT_NOBODY is now supported over SFTP * curl can now run on Symbian OS * curl -w redirect_url and CURLINFO_REDIRECT_URL * added curl_easy_send() and curl_easy_recv() * some bugfixes ------------------------------------------------------------------- Sat May 17 19:22:10 CEST 2008 - coolo@suse.de - fix renaming of xxbit packages ------------------------------------------------------------------- Mon Apr 28 11:30:24 CEST 2008 - mmarek@suse.cz - disable c-ares support again until bnc#381709 is fixed - build with libssh2 support in the devel:libraries:c_c++ project ------------------------------------------------------------------- Fri Apr 11 14:22:20 CEST 2008 - mmarek@suse.cz - build with c-ares support - fixed build for older dists ------------------------------------------------------------------- Thu Apr 10 12:54:45 CEST 2008 - ro@suse.de - added baselibs.conf file to build xxbit packages for multilib support ------------------------------------------------------------------- Wed Apr 2 13:53:43 CEST 2008 - mmarek@suse.de - obsolete curl-ca-bundle by the library package ------------------------------------------------------------------- Mon Mar 31 10:16:30 CEST 2008 - mmarek@suse.cz - updated to 7.18.1 * minor fixes since last update ------------------------------------------------------------------- Fri Mar 21 17:42:35 CET 2008 - mmarek@suse.cz - updated to cvs snapshot 20080321 * added support for HttpOnly cookies * we no longer distribute or install a ca cert bundle * SSLv2 is now disabled by default for SSL operations * the test509-style setting URL in callback is officially no longer supported * support a full chain of certificates in a given PKCS12 certificate * resumed transfers work with SFTP * added type checking macros for curl_easy_setopt() and curl_easy_getinfo(), watch out for new warnings in code using libcurl (needs gcc-4.3 and currently only works in C mode) * curl_easy_setopt(), curl_easy_getinfo(), curl_share_setopt() and curl_multi_setopt() uses are now checked to use exactly three arguments ------------------------------------------------------------------- Mon Mar 10 11:03:56 CET 2008 - mmarek@suse.cz - clean up curl-config --libs output, thanks to Cristian Rodríguez for pointing it out ------------------------------------------------------------------- Fri Mar 7 11:03:25 CET 2008 - mmarek@suse.cz - build with gssapi support (thanks to Michael Calmer) ------------------------------------------------------------------- Mon Feb 18 15:00:12 CET 2008 - mmarek@suse.cz - removed Requires: openssl-certs - doesn't exist on older dists and is required by libopenssl otherwise - allow to build the package even if the testsuite fails ------------------------------------------------------------------- Fri Feb 8 10:21:10 CET 2008 - mmarek@suse.cz - use /etc/ssl/certs instead of own curl-ca-bundle.crt * more up-to-date ca cert collection (bnc#334690) * allows for easier updates of ca certs ------------------------------------------------------------------- Tue Jan 29 10:01:27 CET 2008 - mmarek@suse.cz - updated to 7.18.0 * --data-urlencode * CURLOPT_PROXY_TRANSFER_MODE * --no-keepalive - now curl does connections with keep-alive enabled by default * --socks4a added (proxy type CURLPROXY_SOCKS4A for libcurl) * --socks5-hostname added (CURLPROXY_SOCKS5_HOSTNAME for libcurl) * curl_easy_pause() * CURLOPT_SEEKFUNCTION and CURLOPT_SEEKDATA * --keepalive-time * curl --help output was re-ordered * bugfixes - fixed test553 to work with different port number ------------------------------------------------------------------- Thu Jan 10 16:21:34 CET 2008 - mmarek@suse.cz - only print -lcurl in curl-config to reduce dependencies ------------------------------------------------------------------- Tue Dec 11 17:59:57 CET 2007 - mmarek@suse.cz - backported the CURLOPT_PROXY_TRANSFER_MODE patch [#306272#c26] ------------------------------------------------------------------- Fri Nov 16 12:06:39 CET 2007 - mmarek@suse.cz - fixed the testsuite on hosts that have no IPv6 support [#341994] curl-testsuite-safely-skip-http-ipv6.patch curl-testsuite-remember-broken-servers.patch - added stunnel to BuildRequires to enable SSL tests ------------------------------------------------------------------- Tue Oct 30 09:14:04 CET 2007 - mmarek@suse.cz - updated to 7.17.1 * automatically append ";type=" when using HTTP proxies for FTP urls [#306272] * improved NSS support * added --proxy-negotiate * added --post301 and CURLOPT_POST301 * builds with c-ares 1.5.0 * added CURLOPT_SSH_HOST_PUBLIC_KEY_MD5 and --hostpubmd5 * renamed CURLE_SSL_PEER_CERTIFICATE to CURLE_PEER_FAILED_VERIFICATION * added CURLOPT_OPENSOCKETFUNCTION and CURLOPT_OPENSOCKETDATA * CULROPT_COOKIELIST supports "FLUSH" * added CURLOPT_COPYPOSTFIELDS * added --static-libs to curl-config * many bugfixes, inc. fix for bug #332917 ------------------------------------------------------------------- Thu Oct 11 16:19:56 CEST 2007 - mszeredi@suse.de - Add missing dependency (openldap2-devel) for libcurl-devel ------------------------------------------------------------------- Mon Oct 8 17:28:01 CEST 2007 - mmarek@suse.cz - updated to 7.17.0 * curl_easy_setopt() now allocates strings passed to it * LDAP libraries are now linked "regularly" and not with dlopen (the strict-aliasing patch can go away) * HTTP transfers have the download size info "available" earlier * FTP transfers have the download size info "available" earlier * several error codes and options were marked as obsolete and subject to future removal (set CURL_NO_OLDIES to see if your application is using them) * some bugfixes (see /usr/share/doc/packages/curl/RELEASE-NOTES) - added fixes for some post-7.17 bugs - removed some less useful %%doc files ------------------------------------------------------------------- Fri Sep 14 09:20:35 CEST 2007 - mmarek@suse.cz - set transfer mode (binary/ascii) when retrieving ftp:// urls via an http proxy (curl-ftp-httpproxy.patch) [#306272] ------------------------------------------------------------------- Wed Aug 29 12:25:59 CEST 2007 - mmarek@suse.cz - s/openssl-devel/libopenssl-devel/ [#305815] ------------------------------------------------------------------- Fri Aug 3 13:53:05 CEST 2007 - mmarek@suse.cz - updated to 7.16.4 * added CURLOPT_NEW_FILE_PERMS and CURLOPT_NEW_DIRECTORY_PERMS * improved hashing of sockets for the multi_socket API * ftp kerberos5 support added * some bugfixes (see /usr/share/doc/packages/curl/RELEASE-NOTES) - fixed libcurl-devel Provides: [#293401] ------------------------------------------------------------------- Mon Jul 9 10:35:48 CEST 2007 - mmarek@suse.cz - updated to 7.16.3 * many bugfixes * support for running multiple testsuites in paralell - removed lfs patch leftover ------------------------------------------------------------------- Mon Jun 4 10:16:40 CEST 2007 - mmarek@suse.cz - install libcurl.m4 [#275462] ------------------------------------------------------------------- Fri Jun 1 11:57:28 CEST 2007 - dmueller@suse.de - fix obsoletes for alpha3 update - fix ldconfig call ------------------------------------------------------------------- Wed May 23 16:22:39 CEST 2007 - bk@suse.de - updated to 7.16.2 (lots of fixes, fixes a segfault in git-http) ------------------------------------------------------------------- Fri May 4 14:55:41 CEST 2007 - mmarek@suse.cz - also avoid non-versioned obsoletes ------------------------------------------------------------------- Mon Apr 16 10:49:55 CEST 2007 - mmarek@suse.de - avoid non-versioned provides - removed old curl_ssl provides/obsoletes from 7.1 times ------------------------------------------------------------------- Mon Apr 2 17:38:04 CEST 2007 - rguenther@suse.de - split off libcurl4 and curl-ca-bundle packages, rename curl-devel to libcurl-devel ------------------------------------------------------------------- Sat Mar 31 18:53:00 CEST 2007 - rguenther@suse.de - add zlib-devel BuildRequires ------------------------------------------------------------------- Fri Feb 16 16:07:34 CET 2007 - mmarek@suse.cz - better patch for #246179 ------------------------------------------------------------------- Fri Feb 16 14:04:38 CET 2007 - mmarek@suse.cz - fix CURLOPT_RANGE reset for ftp transfers [#246179] (ftp_range.patch) - updated to 7.16.1 (other bugfixes) ------------------------------------------------------------------- Fri Jan 26 09:55:19 CET 2007 - mmarek@suse.cz - remove libcurl.a and libcurl.la (rationale: there are security updates of curl from time to time, so statically linking it is not acceptable) ------------------------------------------------------------------- Thu Jan 25 15:36:29 CET 2007 - mmarek@suse.cz - fixed strict aliasing warnings ------------------------------------------------------------------- Tue Dec 19 14:59:34 CET 2006 - mmarek@suse.cz - updated to 7.16.0 * removed CURLOPT_SOURCE_* options and --3p* command line option (breaks python-curl atm) * for a complete list of changes, see /usr/share/doc/packages/curl/RELEASE-NOTES ------------------------------------------------------------------- Tue Aug 15 11:23:58 CEST 2006 - mmarek@suse.cz - configure with --enable-hidden-symbols to compile libcurl with -fvisibility=hidden, exporting only symbols from the API ------------------------------------------------------------------- Tue Aug 15 10:41:28 CEST 2006 - mmarek@suse.cz - updated to version 7.15.5 * added --ftp-ssl-reqd * modified the prototype for the socket callback set with CURLMOPT_SOCKETFUNCTION * added curl_multi_assign() * added CURLOPT_FTP_ALTERNATIVE_TO_USER and --ftp-alternative-to-user * added a vcproj file for building libcurl * added curl_formget() * added CURLOPT_MAX_SEND_SPEED_LARGE and CURLOPT_MAX_RECV_SPEED_LARGE * Made -K on a file that couldn't be read cause a warning to be displayed * some bugfixes - dropped epsv-firewall.patch which was intergrated in 7.15.2 ------------------------------------------------------------------- Sat Jul 1 21:28:06 CEST 2006 - cthiel@suse.de - update to version 7.15.4, changes & fixes for this version: * NTLM2 session response support * CURLOPT_COOKIELIST set to "SESS" clears all session cookies * CURLINFO_LASTSOCKET returned sockets are now checked more before returned * curl-config got a --checkfor option to compare version numbers * line end conversions for FTP ASCII transfers * curl_multi_socket() API added (still mostly untested) * conversion callback options for EBCDIC <=> ASCII conversions * added CURLINFO_FTP_ENTRY_PATH * less blocking for the multi interface during (Open)SSL connect negotiation * builds fine on cygwin * md5-sess with Digest authentication * dict with letters such as space in a word * dict with url-encoded words in the URL * libcurl.m4 when default=yes but no libcurl was found * numerous bugs fixed in the TFTP code * possible memory leak when adding easy handles to multi stack * TFTP works in a more portable fashion (== on more platforms) * WSAGetLastError() is now used (better) on Windows * GnuTLS non-block case that could cause data trashing * deflate code survives lack of zlib header * CURLOPT_INTERFACE works with hostname * configure runs fine with ICC * closed control connection with FTP when easy handle was removed from multi * curl --trace crash when built with VS2005 * SSL connect time-out * improved NTLM functionality * following redirects with more than one question mark in source URL * fixed debug build crash with -d * generates a fine AIX Toolbox RPM spec * treat FTP AUTH failures properly * TFTP transfers could trash data * -d + -G combo crash ------------------------------------------------------------------- Wed Jun 14 17:36:10 CEST 2006 - mmarek@suse.cz - fixed syntax error in configure ------------------------------------------------------------------- Sun May 28 16:16:33 CEST 2006 - cthiel@suse.de - update to version 7.15.3, changes & fixes for this version: * added docs for --ftp-method and CURLOPT_FTP_FILEMETHOD * TFTP Packet Buffer Overflow Vulnerability (CVE-2006-1061) * properly detecting problems with sending the FTP command USER * wrong error message shown when certificate verification failed * multi-part formpost with multi interface crash * the CURLFTPSSL_CONTROL setting for CURLOPT_FTP_SSL is acknowledged * "SSL: couldn't set callback" is now treated as a less serious problem * Interix build fix * fixed curl "hang" when out of file handles at start * prevent FTP uploads to URLs with trailing slash - changes & fixes in 7.15.2 * Support for SOCKS4 proxies (added --socks4) * CURLOPT_CONNECT_ONLY and CURLINFO_LASTSOCKET added * CURLOPT_LOCALPORT and CURLOPT_LOCALPORTRANGE (--local-port) added * Dropped support for the LPRT ftp command * Gopher is now officially abandoned as a protocol (lib)curl tries to support * curl_global_init() and curl_global_cleanup() are now using a refcount so that it is now legal to call them multiple times. See updated info for details * two bugs concerning using curl_multi_remove_handle() before the transfer was complete * multi-pass authentication and compressed content * minor format string mistake in the GSS/Negotiate code * cached DNS entries could remain in the cache too long * improved GnuTLS check in configure * re-used FTP connections when the second request didn't do a transfer * plain --limit-rate [num] means bytes * re-creating a dead connection is no longer counted internally as a followed redirect and thus prevents a weird error that would occur if a FTP connection died on an attempted re-use * Try PASV after failing to connect to the port the EPSV response contained * -P [IP] with non-local address with ipv6-enabled curl * -P [hostname] with ipv6-disabled curl * libcurl.m4 was updated * configure no longer warns if the current path contains a space * test suite kill race condition * FTP_SKIP_PASV_IP and FTP_USE_EPSV when doing FTP over HTTP proxy * Doing a second request with FTP on the same bath path, would make libcurl confuse what current working directory it had * FTP over HTTP proxy now sends the second CONNECT properly * numerous compiler warnings and build quirks for various compilers have been addressed * supports name and passwords up to 255 bytes long, embedded in URLs * the HTTP_ONLY define disables the TFTP support - removed curl-7.15.1-CVE-2006-1061.patch, included upstream - removed curl-7.15.1-aliasing.patch ------------------------------------------------------------------- Tue Mar 14 12:35:53 CET 2006 - mmarek@suse.cz - fix buffer overflow in TFTP code [#157874] (CVE-2006-1061.patch) ------------------------------------------------------------------- Wed Feb 15 02:53:15 CET 2006 - ro@suse.de - added libidn-devel to requires of devel package ------------------------------------------------------------------- Mon Feb 13 16:32:40 CET 2006 - mmarek@suse.cz - build with libidn support [#150313] ------------------------------------------------------------------- Fri Jan 27 01:07:37 CET 2006 - mls@suse.de - converted neededforbuild to BuildRequires ------------------------------------------------------------------- Mon Jan 23 17:20:59 CET 2006 - mmarek@suse.cz - fallback to PASV if some firewall doesn't let an EPSV connection trough ------------------------------------------------------------------- Thu Jan 12 15:45:18 CET 2006 - mmarek@suse.cz - build with -fstack-protector - add dependency on curl = %%{version} to curl-devel ------------------------------------------------------------------- Tue Jan 10 15:24:29 CET 2006 - mmarek@suse.cz - remove non-existent path /usr/ssl, which caused -L/usr/ssl/lib to appeared in curl-config output - use make -j ------------------------------------------------------------------- Tue Dec 13 13:23:13 CET 2005 - mmarek@suse.cz - updated to 7.15.1, fixing previous vulnerabilities ------------------------------------------------------------------- Thu Oct 13 16:00:00 CEST 2005 - mmarek@suse.cz - fix stack buffer overflow in lib/http_ntlm.c [#128065] ------------------------------------------------------------------- Mon Oct 10 14:20:12 CEST 2005 - mmarek@suse.cz - updated to 7.14.1 - updated curl-7.14.1-aliasing.patch ------------------------------------------------------------------- Mon Jun 20 16:38:34 CEST 2005 - anicka@suse.cz - update to 7.14.0 - remove obsolete patch curl-ntlm.patch ------------------------------------------------------------------- Tue Apr 12 16:37:59 CEST 2005 - tcrhak@suse.cz - packaged curl-ca-bundle.crt (bug #64301) ------------------------------------------------------------------- Thu Feb 24 10:07:13 CET 2005 - meissner@suse.de - enable make test. fixed test 241 to use ::1 directly. ------------------------------------------------------------------- Tue Feb 22 10:46:21 CET 2005 - mcihar@suse.cz - fix buffer overflow in NTLM (bug #65752) ------------------------------------------------------------------- Tue Feb 8 18:36:38 CET 2005 - mcihar@suse.cz - update to 7.13.0 ------------------------------------------------------------------- Wed Aug 11 11:31:07 CEST 2004 - tcrhak@suse.cz - update to 7.12.0 ------------------------------------------------------------------- Wed Apr 28 19:57:41 CEST 2004 - tcrhak@suse.cz - strict aliasing fix ------------------------------------------------------------------- Tue Mar 16 17:31:01 CET 2004 - tcrhak@suse.cz - fix for lfs for in transfer.c (bug #36040) ------------------------------------------------------------------- Wed Feb 25 19:29:05 CET 2004 - tcrhak@suse.cz - ignore leading slashes of url-path in URLs like ftp://user@name//url-path, i.e don't change to the root directory (RFC 1738, bug #34471) ------------------------------------------------------------------- Tue Feb 10 17:39:28 CET 2004 - tcrhak@suse.cz - update to version 7.11.0 ------------------------------------------------------------------- Sat Jan 10 16:13:21 CET 2004 - adrian@suse.de - add %defattr and %run_ldconfig ------------------------------------------------------------------- Wed Nov 05 16:20:21 CET 2003 - tcrhak@suse.cz - added large file support, patch lfs [bug #32411] ------------------------------------------------------------------- Thu Sep 04 17:48:46 CEST 2003 - tcrhak@suse.cz - require zlib-devel, openssl-devel and glibc-devel in curl-devel [bug #29881] ------------------------------------------------------------------- Fri Aug 08 09:39:30 CEST 2003 - tcrhak@suse.cz - terminate array of directory components by NULL (bug #28351, patch dirs) ------------------------------------------------------------------- Wed Jul 23 19:36:56 CEST 2003 - tcrhak@suse.cz - update to version 7.10.5 ------------------------------------------------------------------- Tue Jun 3 01:24:42 CEST 2003 - ro@suse.de - remove unpackaged files from buildroot ------------------------------------------------------------------- Wed Nov 27 17:27:13 CET 2002 - tcrhak@suse.cz - update to version 7.10.2 - moved curl-config.1.gz to the devel subpackage [bug #21966] ------------------------------------------------------------------- Sat Jul 13 17:25:58 CEST 2002 - tcrhak@suse.cz - update to version 7.9.8 - added automake ------------------------------------------------------------------- Fri Jan 18 17:45:31 CET 2002 - tcrhak@suse.cz - used macros %{_lib} and %{_libdir} - update to 7.9.2 ------------------------------------------------------------------- Fri Oct 19 08:38:40 CEST 2001 - ro@suse.de - do not pack shared library into both, main and devel package ------------------------------------------------------------------- Mon Oct 8 11:35:52 CEST 2001 - tcrhak@suse.cz - update to version 7.9 ------------------------------------------------------------------- Fri Sep 21 11:46:09 CEST 2001 - adostal@suse.cz - fix manual in man.patch ------------------------------------------------------------------- Tue Aug 21 16:10:10 CEST 2001 - adostal@suse.cz - update to version 7.8.1 ------------------------------------------------------------------- Wed Jul 18 10:21:13 CEST 2001 - adostal@suse.cz - files devel fixed ------------------------------------------------------------------- Mon Jul 2 17:51:34 CEST 2001 - adostal@suse.cz - update to version 7.8 ------------------------------------------------------------------- Wed Jun 13 17:33:41 CEST 2001 - ro@suse.de - fixed to compile with new autoconf ------------------------------------------------------------------- Mon Apr 9 14:39:03 CEST 2001 - cihlar@suse.cz - update to version 7.7.1 ------------------------------------------------------------------- Tue Mar 6 10:03:05 CET 2001 - cihlar@suse.cz - update to version 7.6.1 ------------------------------------------------------------------- Wed Jan 3 09:13:15 CET 2001 - cihlar@suse.cz - fixed Provides and Obsoletes also for curl-devel ------------------------------------------------------------------- Tue Dec 19 07:16:38 CET 2000 - cihlar@suse.cz - fixed name - added Obsoletes: curl_ssl ------------------------------------------------------------------- Mon Dec 18 15:13:25 CET 2000 - cihlar@suse.cz - changed to ssl support ------------------------------------------------------------------- Thu Nov 16 14:25:18 CET 2000 - cihlar@suse.cz - renamed curldev -> curl-devel - update to version 7.4.2 ------------------------------------------------------------------- Tue Oct 17 09:16:16 CEST 2000 - cihlar@suse.cz - update to version 7.4.1 - security bug fixed ------------------------------------------------------------------- Wed Aug 30 09:34:32 CEST 2000 - cihlar@suse.cz - package created