1856c7c477
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/curl?expand=0&rev=185
1926 lines
76 KiB
Plaintext
1926 lines
76 KiB
Plaintext
-------------------------------------------------------------------
|
||
Wed Feb 22 09:49:12 UTC 2017 - idonmez@suse.com
|
||
|
||
- Update to 7.53.0
|
||
Changes:
|
||
* unix_socket: added --abstract-unix-socket and
|
||
CURLOPT_ABSTRACT_UNIX_SOCKET
|
||
* CURLOPT_BUFFERSIZE: support enlarging receive buffer
|
||
|
||
Bugfixes:
|
||
|
||
* CVE-2017-2629: make SSL_VERIFYSTATUS work again
|
||
* gnutls-random: check return code for failed random
|
||
* openssl-random: check return code when asking for random
|
||
* http: remove "Curl_http_done: called premature" message
|
||
* cyassl: use time_t instead of long for timeout
|
||
* build-wolfssl: Sync config with wolfSSL 3.10
|
||
* ftp-gss: check for init before use
|
||
* configure: accept --with-libidn2 instead
|
||
* ftp: failure to resolve proxy should return that error code
|
||
* curl.1: add three more exit codes
|
||
* docs/ciphers: link to our own new page about ciphers
|
||
* vtls: s/SSLEAY/OPENSSL - fixes multi_socket timeouts with openssl
|
||
* darwinssl: fix iOS build
|
||
* darwinssl: fix CFArrayRef leak
|
||
* cmake: use crypt32.lib when building with OpenSSL on windows
|
||
* curl_formadd.3: CURLFORM_CONTENTSLENGTH not needed when chunked
|
||
* digest_sspi: copy terminating NUL as well
|
||
* curl: fix --remote-time incorrect times on Windows
|
||
* curl.1: several updates and corrections
|
||
* content_encoding: change return code on a failure
|
||
* curl.h: CURLE_FUNCTION_NOT_FOUND is no longer in use
|
||
* docs: TCP_KEEPALIVE start and interval default to 60
|
||
* darwinssl: --insecure overrides --cacert if both settings are in use
|
||
* TheArtOfHttpScripting: grammar
|
||
* CIPHERS.md: document GSKit ciphers
|
||
* wolfssl: support setting cipher list
|
||
* wolfssl: display negotiated SSL version and cipher
|
||
* lib506: fix build for Open Watcom
|
||
* asiohiper: improved socket handling
|
||
* examples: make the C++ examples follow our code style too
|
||
* tests/sws: retry send() on EWOULDBLOCK
|
||
* cmake: Fix passing _WINSOCKAPI_ macro to compiler
|
||
* smtp: Fix STARTTLS denied error message
|
||
* imap/pop3: don't print response character in STARTTLS denied messages
|
||
* rand: make it work without TLS backing
|
||
* url: fix parsing for when 'file' is the default protocol
|
||
* url: allow file://X:/path URLs on windows again
|
||
* gnutls: check for alpn and ocsp in configure
|
||
* IDN: Use TR46 'non-transitional' for toASCII translations
|
||
* url: Fix NO_PROXY env var to work properly with --proxy option
|
||
* CURLOPT_PREQUOTE.3: takes a struct curl_slist*, not a char*
|
||
* docs: Add note about libcurl copying strings to CURLOPT_* manpages
|
||
* curl: reset the easy handle at --next
|
||
* --next docs: --trace and --trace-ascii are also global
|
||
* --write-out docs: 'time_total' is not always shown with ms precision
|
||
* http: print correct HTTP string in verbose output when using HTTP/2
|
||
* docs: improved language in README.md HISTORY.md CONTRIBUTE.md
|
||
* http2: disable server push if not requested
|
||
* nss: use the correct lock in nss_find_slot_by_name()
|
||
* usercertinmem.c: improve the short description
|
||
* CURLOPT_CONNECT_TO: Fix compile warnings
|
||
* docs: non-blocking SSL handshake is now supported with NSS
|
||
* *.rc: escape non-ASCII/non-UTF-8 character for clarity
|
||
* mbedTLS: fix multi interface non-blocking handshake
|
||
* PolarSSL: fix multi interface non-blocking handshake
|
||
* VC: remove the makefile.vc6 build infra
|
||
* telnet: fix windows compiler warnings
|
||
* cookies: do not assume a valid domain has a dot
|
||
* polarssl: fix hangs
|
||
* gnutls: disable TLS session tickets
|
||
* mbedtls: disable TLS session tickets
|
||
* mbedtls: implement CTR-DRBG and HAVEGE random generators
|
||
* openssl: Don't use certificate after transferring ownership
|
||
* cmake: Support curl --xattr when built with cmake
|
||
* OS400: Fix symbols
|
||
* docs: Add more HTTPS proxy documentation
|
||
* docs: use more HTTPS links
|
||
* cmdline-opts: Fixed build and test in out of source tree builds
|
||
* CHANGES.0: removed
|
||
* schannel: Remove incorrect SNI disabled message
|
||
* darwinssl: Avoid parsing certificates when not in verbose mode
|
||
* test552: Fix typos
|
||
* telnet: Fix typos
|
||
* transfer: only retry nobody-requests for HTTP
|
||
* http2: reset push header counter fixes crash
|
||
* nss: make FTPS work with --proxytunnel
|
||
* test1139: Added the --manual keyword since the manual is required
|
||
* polarssl, mbedtls: Fix detection of pending data
|
||
* http_proxy: Fix tiny memory leak upon edge case connecting to proxy
|
||
* URL: only accept ";options" in SMTP/POP3/IMAP URL schemes
|
||
* curl.1: ftp.sunet.se is no longer an FTP mirror
|
||
* tool_operate: Show HTTPS-Proxy options on CURLE_SSL_CACERT
|
||
* http2: fix memory-leak when denying push streams
|
||
* configure: Allow disabling pthreads, fall back on Win32 threads
|
||
* curl: fix typo in time condition warning message
|
||
* axtls: adapt to API changes
|
||
* tool_urlglob: Allow a glob range with the same start and stop
|
||
* winbuild: add note on auto-detection of MACHINE in Makefile.vc
|
||
* http: fix missing 'Content-Length: 0' while negotiating auth
|
||
* proxy: fix hostname resolution and IDN conversion
|
||
* docs: fix timeout handling in multi-uv example
|
||
* digest_sspi: Fix nonce-count generation in HTTP digest
|
||
* sftp: improved checks for create dir failures
|
||
* smb: use getpid replacement for windows UWP builds
|
||
* digest_sspi: Handle 'stale=TRUE' directive in HTTP digest
|
||
- Remove curl-7.52.1-idn-fixes.patch, fixed upstream.
|
||
|
||
-------------------------------------------------------------------
|
||
Sun Feb 5 22:33:33 UTC 2017 - astieger@suse.com
|
||
|
||
- build with libidn2 for IDNA2008 support
|
||
FATE#321897 CVE-2016-8625 bsc#1005649
|
||
add curl-7.52.1-idn-fixes.patch to fix test, among other things
|
||
- re-enable tests that are no longer failing,
|
||
remove curl-disable_failing_tests.patch
|
||
|
||
-------------------------------------------------------------------
|
||
Fri Dec 23 07:37:40 UTC 2016 - idonmez@suse.com
|
||
|
||
- Update to 7.52.1
|
||
Bugfixes:
|
||
* CVE-2016-9594: unititialized random bsc#1016738
|
||
|
||
-------------------------------------------------------------------
|
||
Wed Dec 21 07:10:10 UTC 2016 - idonmez@suse.com
|
||
|
||
- Update to 7.52.0
|
||
Changes:
|
||
* nss: map CURL_SSLVERSION_DEFAULT to NSS default
|
||
* vtls: support TLS 1.3 via CURL_SSLVERSION_TLSv1_3
|
||
* curl: introduce the --tlsv1.3 option to force TLS 1.3
|
||
* curl: Add --retry-connrefused
|
||
* proxy: Support HTTPS proxy and SOCKS+HTTP(s)
|
||
* add CURLINFO_SCHEME, CURLINFO_PROTOCOL, and %{scheme}
|
||
* curl: add --fail-early
|
||
Bugfixes:
|
||
* CVE-2016-9586: printf floating point buffer overflow
|
||
* curl -w: added more decimal digits to timing counters
|
||
* easy: Initialize info variables on easy init and duphandle
|
||
* http2: Don't send header fields prohibited by HTTP/2 spec
|
||
* ssh: check md5 fingerprints case insensitively (regression)
|
||
* openssl: initial TLS 1.3 adaptions
|
||
* SPNEGO: Fix memory leak when authentication fails
|
||
* realloc: use Curl_saferealloc to avoid common mistakes
|
||
* openssl: make sure to fail in the unlikely event that PRNG
|
||
seeding fails
|
||
* URL-parser: for file://[host]/ URLs, the [host] must be localhost
|
||
* timeval: prefer time_t to hold seconds instead of long
|
||
* glob: fix [a-c] globbing regression
|
||
* curl.1: Clarify --dump-header only writes received headers
|
||
* http2: Fix address sanitizer memcpy warning
|
||
* http2: Use huge HTTP/2 windows
|
||
* connects: Don't mix unix domain sockets with regular ones
|
||
* url: Fix conn reuse for local ports and interfaces
|
||
* x509: Limit ASN.1 structure sizes to 256K
|
||
* http2: check nghttp2_session_set_local_window_size exists
|
||
* http2: Fix crashes when parent stream gets aborted
|
||
* CURLOPT_CONNECT_TO: Skip non-matching "connect-to" entries
|
||
* URL parser: reject non-numerical port numbers
|
||
* CONNECT: reject TE or CL in 2xx responses
|
||
* CONNECT: read responses one byte at a time
|
||
* curl: support zero-length argument strings in config files
|
||
* openssl: don't use OpenSSL's ERR_PACK
|
||
* curl.1: generated with the new man page system
|
||
* curl_easy_recv: Improve documentation and example program
|
||
* Curl_getconnectinfo: avoid checking if the connection is closed
|
||
* CIPHERS.md: attempt to document TLS cipher names
|
||
|
||
-------------------------------------------------------------------
|
||
Wed Nov 2 07:15:44 UTC 2016 - idonmez@suse.com
|
||
|
||
- Update to 7.51.0
|
||
Changes:
|
||
* nss: additional cipher suites are now accepted by
|
||
CURLOPT_SSL_CIPHER_LIST
|
||
* New option: CURLOPT_KEEP_SENDING_ON_ERROR
|
||
Bugfixes:
|
||
* CVE-2016-8615: cookie injection for other servers
|
||
* CVE-2016-8616: case insensitive password comparison
|
||
* CVE-2016-8617: OOB write via unchecked multiplication
|
||
* CVE-2016-8618: double-free in curl_maprintf
|
||
* CVE-2016-8619: double-free in krb5 code
|
||
* CVE-2016-8620: glob parser write/read out of bounds
|
||
* CVE-2016-8621: curl_getdate read out of bounds
|
||
* CVE-2016-8622: URL unescape heap overflow via integer truncation
|
||
* CVE-2016-8623: Use-after-free via shared cookies
|
||
* CVE-2016-8624: invalid URL parsing with '#'
|
||
* CVE-2016-8625: IDNA 2003 makes curl use wrong host
|
||
* openssl: fix per-thread memory leak using 1.0.1 or 1.0.2
|
||
* http: accept "Transfer-Encoding: chunked" for HTTP/2 as well
|
||
* LICENSE-MIXING.md: update with mbedTLS dual licensing
|
||
* examples/imap-append: Set size of data to be uploaded
|
||
* test2048: fix url
|
||
* darwinssl: disable RC4 cipher-suite support
|
||
* CURLOPT_PINNEDPUBLICKEY.3: fix the AVAILABILITY formatting
|
||
* openssl: don’t call CRYTPO_cleanup_all_ex_data
|
||
* libressl: fix version output
|
||
* easy: Reset all statistical session info in curl_easy_reset
|
||
* curl_global_cleanup.3: don't unload the lib with sub threads running
|
||
* dist: add CurlSymbolHiding.cmake to the tarball
|
||
* docs: Remove that --proto is just used for initial retrieval
|
||
* configure: Fixed builds with libssh2 in a custom location
|
||
* curl.1: --trace supports % for sending to stderr!
|
||
* cookies: same domain handling changed to match browser behavior
|
||
* formpost: trying to attach a directory no longer crashes
|
||
* CURLOPT_DEBUGFUNCTION.3: fixed unused argument warning
|
||
* formpost: avoid silent snprintf() truncation
|
||
* ftp: fix Curl_ftpsendf
|
||
* mprintf: return error on too many arguments
|
||
* smb: properly check incoming packet boundaries
|
||
* GIT-INFO: remove the Mac 10.1-specific details
|
||
* resolve: add error message when resolving using SIGALRM
|
||
* cmake: add nghttp2 support
|
||
* dist: remove PDF and HTML converted docs from the releases
|
||
* configure: disable poll() in macOS builds
|
||
* vtls: only re-use session-ids using the same scheme
|
||
* pipelining: skip to-be-closed connections when pipelining
|
||
* win: fix Universal Windows Platform build
|
||
* curl: do not set CURLOPT_SSLENGINE to DEFAULT automatically
|
||
* maketgz: make it support "only" generating version info
|
||
* Curl_socket_check: add extra check to avoid integer overflow
|
||
* gopher: properly return error for poll failures
|
||
* curl: set INTERLEAVEDATA too
|
||
* polarssl: clear thread array at init
|
||
* polarssl: fix unaligned SSL session-id lock
|
||
* polarssl: reduce #ifdef madness with a macro
|
||
* curl_multi_add_handle: set timeouts in closure handles
|
||
* configure: set min version flags for builds on mac
|
||
* INSTALL: converted to markdown => INSTALL.md
|
||
* curl_multi_remove_handle: fix a double-free
|
||
* multi: fix inifinte loop in curl_multi_cleanup()
|
||
* nss: fix tight loop in non-blocking TLS handhsake over proxy
|
||
* mk-ca-bundle: Change URL retrieval to HTTPS-only by default
|
||
* mbedtls: stop using deprecated include file
|
||
* docs: fix req->data in multi-uv example
|
||
* configure: Fix test syntax for monotonic clock_gettime
|
||
* CURLMOPT_MAX_PIPELINE_LENGTH.3: Clarify it's not for HTTP/2
|
||
- Refresh libcurl-ocloexec.patch
|
||
|
||
-------------------------------------------------------------------
|
||
Wed Sep 14 07:13:02 UTC 2016 - idonmez@suse.com
|
||
|
||
- update to 7.50.3
|
||
Bugfixes:
|
||
* CVE-2016-7167: escape and unescape integer overflows
|
||
* mk-ca-bundle.pl: use SHA256 instead of SHA1
|
||
* checksrc: detect strtok() use
|
||
* errors: new alias CURLE_WEIRD_SERVER_REPLY
|
||
* http2: support > 64bit sized uploads
|
||
* openssl: fix bad memory free (regression)
|
||
* CMake: hide private library symbols
|
||
* http: refuse to pass on response body when NO_NODY is set
|
||
* cmake: fix curl-config --static-libs
|
||
* mbedtls: switch off NTLM in build if md4 isn't available
|
||
* curl: --create-dirs on windows groks both forward and
|
||
backward slashes
|
||
|
||
-------------------------------------------------------------------
|
||
Thu Sep 8 08:31:40 UTC 2016 - idonmez@suse.com
|
||
|
||
- update to 7.50.2
|
||
Bugfixes:
|
||
* mbedtls: Added support for NTLM
|
||
* SSH: fixed SFTP/SCP transfer problems
|
||
* multi: make Curl_expire() work with 0 ms timeouts
|
||
* mk-ca-bundle.pl: -m keeps ca cert meta data in output
|
||
* TFTP: Fix upload problem with piped input
|
||
* CURLOPT_TCP_NODELAY: now enabled by default
|
||
* mbedtls: set verbose TLS debug when MBEDTLS_DEBUG is defined
|
||
* http2: always wait for readable socket
|
||
* cmake: Enable win32 large file support by default
|
||
* cmake: Enable win32 threaded resolver by default
|
||
* winbuild: Avoid setting redundant CFLAGS to compile commands
|
||
* curl.h: make CURL_NO_OLDIES define CURL_STRICTER
|
||
* docs: make more markdown files use .md extension
|
||
* docs: CONTRIBUTE and LICENSE-MIXING were converted to markdown
|
||
* winbuild: Allow changing C compiler via environment variable CC
|
||
* rtsp: accept any RTSP session id
|
||
* HTTP: retry failed HEAD requests on reused connections too
|
||
* configure: add zlib search with pkg-config
|
||
* openssl: accept subjectAltName iPAddress if no dNSName match
|
||
* MANUAL: Remove invalid link to LDAP documentation
|
||
* socks: improved connection procedure
|
||
* proxy: reject attempts to use unsupported proxy schemes
|
||
* proxy: bring back use of "Proxy-Connection:"
|
||
* curl: allow "pkcs11:" prefix for client certificates
|
||
* spnego_sspi: fix memory leak in case *outlen is zero
|
||
* SOCKS: improve verbose output of SOCKS5 connection sequence
|
||
* SOCKS: display the hostname returned by the SOCKS5 proxy server
|
||
* http/sasl: Query authentication mechanism supported by SSPI before using
|
||
* sasl: Don't use GSSAPI authentication when domain name not specified
|
||
* win: Basic support for Universal Windows Platform apps
|
||
* nss: fix incorrect use of a previously loaded certificate from file,
|
||
https://curl.haxx.se/docs/adv_20160907.html
|
||
* nss: work around race condition in PK11_FindSlotByName()
|
||
* ftp: fix wrong poll on the secondary socket
|
||
* openssl: build warning-free with 1.1.0 (again)
|
||
* HTTP: stop parsing headers when switching to unknown protocols
|
||
* test219: Add http as a required feature
|
||
* TLS: random file/egd doesn't have to match for conn reuse
|
||
* schannel: Disable ALPN for Wine since it is causing problems
|
||
* http2: make sure stream errors don't needlessly close the connection
|
||
* http2: return CURLE_HTTP2_STREAM for unexpected stream close
|
||
* darwinssl: --cainfo is intended for backward compatibility only
|
||
* speed caps: not based on average speeds anymore
|
||
* configure: make the cpp -P detection not clobber CPPFLAGS
|
||
* http2: use named define instead of magic constant in read callback
|
||
* http2: skip the content-length parsing, detect unknown size
|
||
* http2: return EOF when done uploading without known size
|
||
* darwinssl: test for errSecSuccess in PKCS12 import rather than noErr
|
||
* openssl: fix CURLINFO_SSL_VERIFYRESULT
|
||
|
||
-------------------------------------------------------------------
|
||
Fri Aug 5 12:41:43 UTC 2016 - pjanouch@suse.de
|
||
|
||
- update to 7.50.1
|
||
Bugfixes:
|
||
* TLS: switch off SSL session id when client cert is used
|
||
* TLS: only reuse connections with the same client cert
|
||
* curl_multi_cleanup: clear connection pointer for easy handles
|
||
* include the CURLINFO_HTTP_VERSION man page into the release tarball
|
||
* include the http2-server.pl script in the release tarball
|
||
* test558: fix test by stripping file paths from FD lines
|
||
* spnego: Corrected miss-placed * in Curl_auth_spnego_cleanup() declaration
|
||
* tests: Fix for http/2 feature
|
||
* cmake: Fix for schannel support
|
||
* curl.h: make public types void * again
|
||
* win32: fix a potential memory leak in Curl_load_library
|
||
* travis: fix OSX build by re-installing libtool
|
||
* mbedtls: Fix debug function name
|
||
- removed 0001-tests-distribute-the-http2-server.pl-script-too.patch
|
||
|
||
-------------------------------------------------------------------
|
||
Thu Jul 21 09:30:30 UTC 2016 - vcizek@suse.com
|
||
|
||
- update to 7.50.0
|
||
Changes:
|
||
* http: add CURLINFO_HTTP_VERSION and %{http_version}
|
||
Bugfixes:
|
||
* openssl: fix build with OPENSSL_NO_COMP
|
||
* cmake: Added missing mbedTLS support
|
||
* URL parser: allow URLs to use one, two or three slashes
|
||
* curl: fix -q [regression]
|
||
* openssl: Use correct buffer sizes for error messages
|
||
* curl: fix SIGSEGV while parsing URL with too many globs
|
||
* vtls: fix ssl session cache race condition
|
||
* http: Fix HTTP/2 connection reuse [regression]
|
||
* checksrc: Add LoadLibrary to the banned functions list
|
||
* configure: occasional ignorance of --enable-symbol-hiding with GCC
|
||
* http2: test17xx are the first real HTTP/2 tests
|
||
* resolve: add support for IPv6 DNS64/NAT64 Networks on OS X + iOS
|
||
* curl_multi_socket_action.3: rewording
|
||
* CURLOPT_POSTFIELDS.3: Clarify what happens when set empty
|
||
* cmake: Fix build with winldap
|
||
* openssl: fix cert check with non-DNS name fields present
|
||
* curl.1: mention the units for the progress meter
|
||
* openssl: use more 'const' to fix build warnings with 1.1.0 branch
|
||
* cmake: now using BUILD_TESTING=ON/OFF
|
||
* vtls: Only call add/getsession if session id is enabled
|
||
* headers: forward declare CURL, CURLM and CURLSH as structs
|
||
* configure: improve detection of CA bundle path on FreeBSD
|
||
* SFTP: set a generic error when no SFTP one exists
|
||
* curl_global_init.3: expand on the SSL and WIN32 bits purpose
|
||
* conn: don't free easy handle data in handler->disconnect
|
||
* cookie.c: Fix misleading indentation
|
||
* library: Fix memory leaks found during static analysis
|
||
* CURLMOPT_SOCKETFUNCTION.3: fix typo
|
||
* curl_global_init: moved the "IPv6 works" check here
|
||
* connect: disable TFO on Linux when using SSL
|
||
* vauth: Fixed memory leak due to function returning without free
|
||
- refresh libcurl-ocloexec.patch
|
||
- disable tests 1139 and 1140 which fail due to missing manpage
|
||
* add curl-disable_failing_tests.patch
|
||
- ship http2_server.pl for testing
|
||
* add 0001-tests-distribute-the-http2-server.pl-script-too.patch
|
||
|
||
-------------------------------------------------------------------
|
||
Tue Jun 14 11:47:27 UTC 2016 - astieger@suse.com
|
||
|
||
- curl 7.49.1:
|
||
* http2: use HTTP/2 in the HTTP/1.1-alike response
|
||
* ssh: fix build for libssh2 before 1.2.6
|
||
* a number of bug and build fixes
|
||
- curl 7.49.0:
|
||
* schannel: Add ALPN support
|
||
* SSH: support CURLINFO_FILETIME
|
||
* SSH: new CURLOPT_QUOTE command "statvfs"
|
||
* wolfssl: Add ALPN support
|
||
* http2: added --http2-prior-knowledge
|
||
* http2: added CURL_HTTP_VERSION_2_PRIOR_KNOWLEDGE
|
||
* libcurl: added CURLOPT_CONNECT_TO
|
||
* curl: added --connect-to
|
||
* libcurl: added CURLOPT_TCP_FASTOPEN
|
||
* curl: added --tcp-fastopen
|
||
* curl: remove support for --ftpport, -http-request and --socks
|
||
* a number of bug and build fixes
|
||
- update upstream signing key and download URLs
|
||
- 0001-Fix-invalid-Network-is-unreachable-errors.patch is upstream
|
||
|
||
-------------------------------------------------------------------
|
||
Mon Jun 6 10:18:29 UTC 2016 - idonmez@suse.com
|
||
|
||
- Depend on libssh2 >= 1.6.0 since curl depends on the
|
||
libssh2_scp_recv2 symbol now. Fixes boo#983170
|
||
|
||
-------------------------------------------------------------------
|
||
Thu May 5 18:53:47 UTC 2016 - alarrosa@suse.com
|
||
|
||
- Add 0001-Fix-invalid-Network-is-unreachable-errors.patch.
|
||
Fixes "Network is unreachable" errors in valid situations when ipv6
|
||
is not available but ipv4 is working fine. This also fixes the same
|
||
error from happening in applications using libcurl4 (like zypper).
|
||
(bsc#915846)
|
||
|
||
-------------------------------------------------------------------
|
||
Thu Mar 31 17:25:29 UTC 2016 - idonmez@suse.com
|
||
|
||
- Update to 7.48.0
|
||
* configure: --with-ca-fallback: use built-in TLS CA fallback
|
||
* TFTP: add --tftp-no-options to expose CURLOPT_TFTP_NO_OPTIONS
|
||
* getinfo: CURLINFO_TLS_SSL_PTR supersedes CURLINFO_TLS_SESSION
|
||
* Lots of bugfixes, see https://curl.haxx.se/changes.html#7_48_0
|
||
- Drop curl-7.41.0-use-openssl-s-built-in-verify-path-as-fallback.diff,
|
||
superseded by --with-ca-fallback configure option.
|
||
|
||
-------------------------------------------------------------------
|
||
Thu Mar 17 10:58:24 UTC 2016 - astieger@suse.com
|
||
|
||
- curl 7.47.1:
|
||
* getredirect.c: fix variable name
|
||
* tool_doswin: silence unused function warning
|
||
* curl.1: Explain remote-name behavior if file already exists
|
||
* sasl_sspi: Fix memory leak in domain populate
|
||
* openssl: Fix signed/unsigned mismatch warning in X509V3_ext
|
||
|
||
-------------------------------------------------------------------
|
||
Fri Jan 29 21:17:56 UTC 2016 - mpluskal@suse.com
|
||
|
||
- Enable PSL (Publix Suffix List)
|
||
- Make building more verbose
|
||
|
||
-------------------------------------------------------------------
|
||
Wed Jan 27 13:10:50 UTC 2016 - vcizek@suse.com
|
||
|
||
- update to 7.47.0
|
||
* fixes CVE-2016-0755 (bsc#962983)
|
||
(NTLM credentials not-checked for proxy connection re-use)
|
||
* drop curl-fix-zsh-completion.patch (upstream)
|
||
Changes:
|
||
* version: Add flag CURL_VERSION_PSL for libpsl
|
||
* http: added CURL_HTTP_VERSION_2TLS to do HTTP/2 for HTTPS only
|
||
* curl: use 2TLS by default
|
||
* curl --expect100-timeout: added
|
||
* Add .dir-locals and set c-basic-offset to 2 (for emacs)
|
||
|
||
-------------------------------------------------------------------
|
||
Wed Jan 6 13:18:33 UTC 2016 - idonmez@suse.com
|
||
|
||
- Fix path to curl in zsh.pl to unbreak _curl completion
|
||
* curl-fix-zsh-completion.patch
|
||
|
||
-------------------------------------------------------------------
|
||
Wed Dec 2 12:18:24 UTC 2015 - idonmez@suse.com
|
||
|
||
- Update to 7.46.0
|
||
* Added CURLOPT_STREAM_DEPENDS
|
||
* Added CURLOPT_STREAM_DEPENDS_E
|
||
* Added CURLOPT_STREAM_WEIGHT
|
||
* Added CURLFORM_CONTENTLEN
|
||
* oauth2: Added support for OAUTHBEARER SASL mechanism to IMAP,
|
||
POP3 and SNMP
|
||
* Many bugfixes, see http://curl.haxx.se/changes.html#7_46_0 for the
|
||
complete list.
|
||
|
||
-------------------------------------------------------------------
|
||
Mon Oct 19 09:35:04 UTC 2015 - vcizek@suse.com
|
||
|
||
- revert the curl-config change for bsc#900419 until we have a better
|
||
fix, because it was breaking builds of other packages
|
||
|
||
-------------------------------------------------------------------
|
||
Sun Oct 18 21:43:16 UTC 2015 - crrodriguez@opensuse.org
|
||
|
||
- Enable HTTP/2 support, buildrequires pkgconfig(libnghttp2)
|
||
|
||
-------------------------------------------------------------------
|
||
Sat Oct 10 06:58:35 UTC 2015 - mpluskal@suse.com
|
||
|
||
- Update to 7.45.0
|
||
* added CURLOPT_DEFAULT_PROTOCOL
|
||
* added new tool option --proto-default
|
||
* getinfo: added CURLINFO_ACTIVESOCKET
|
||
* turned CURLINFO_* option docs as stand-alone man pages
|
||
* curl: point out unnecessary uses of -X in verbose mode
|
||
- Drop curl-disable_failing_tests.patch as it is now part of
|
||
upstream
|
||
|
||
-------------------------------------------------------------------
|
||
Wed Aug 26 07:29:40 UTC 2015 - vcizek@suse.com
|
||
|
||
- drop a hack that made curl-config print only -lcurl (bsc#900419)
|
||
* --as-needed is used by default now
|
||
|
||
-------------------------------------------------------------------
|
||
Fri Aug 14 09:02:40 UTC 2015 - vcizek@suse.com
|
||
|
||
- update to 7.44.0
|
||
http2: added CURLMOPT_PUSHFUNCTION and CURLMOPT_PUSHDATA
|
||
examples: added http2-serverpush.c
|
||
http2: added curl_pushheader_byname() and curl_pushheader_bynum()
|
||
docs: added CODE_OF_CONDUCT.md
|
||
curl: Add --ssl-no-revoke to disable certificate revocation checks
|
||
libcurl: New value CURLSSLOPT_NO_REVOKE for CURLOPT_SSL_OPTIONS
|
||
makefile: Added support for VC14
|
||
- dropped unexpire-test46.patch (upstream)
|
||
|
||
-------------------------------------------------------------------
|
||
Tue Aug 11 10:02:18 UTC 2015 - schwab@suse.de
|
||
|
||
- unexpire-test46.patch: Unexpire test 46
|
||
|
||
-------------------------------------------------------------------
|
||
Fri Jul 31 08:22:39 UTC 2015 - normand@linux.vnet.ibm.com
|
||
|
||
- do not run flaky tests for any architecture (bnc#940009)
|
||
at least test 1510 do fail for i586 and ppc64le
|
||
|
||
-------------------------------------------------------------------
|
||
Fri Jul 3 08:29:55 UTC 2015 - vcizek@suse.com
|
||
|
||
- fix a typo in curl-secure-getenv.patch (bsc#936676)
|
||
|
||
-------------------------------------------------------------------
|
||
Fri Jun 19 13:07:44 UTC 2015 - mpluskal@suse.com
|
||
|
||
- Update to 7.43.0
|
||
* Added CURLOPT_PROXY_SERVICE_NAME
|
||
* Added CURLOPT_SERVICE_NAME
|
||
* New curl option: --proxy-service-name
|
||
* Mew curl option: --service-name
|
||
* New curl option: --data-raw
|
||
* Added CURLOPT_PIPEWAIT
|
||
* Added support for multiplexing transfers using HTTP/2, enable
|
||
this with the new CURLPIPE_MULTIPLEX bit for
|
||
CURLMOPT_PIPELINING
|
||
* HTTP/2: requires nghttp2 1.0.0 or later
|
||
* scripts: add zsh.pl for generating zsh completion
|
||
* curl.h: add CURL_HTTP_VERSION_2
|
||
* CVE-2015-3236: lingering HTTP credentials in connection re-use
|
||
* CVE-2015-3237: SMB send off unrelated memory contents
|
||
- Disable HTTP/2 as it would create build cycle
|
||
|
||
-------------------------------------------------------------------
|
||
Wed May 20 15:18:12 UTC 2015 - vcizek@suse.com
|
||
|
||
- enable HTTP/2 support
|
||
- make the testsuite failure fatal
|
||
* added curl-disable_failing_tests.patch
|
||
* added groff to BuildRequires to enable builtin manual (test 1026)
|
||
|
||
-------------------------------------------------------------------
|
||
Wed Apr 29 08:32:11 UTC 2015 - vcizek@suse.com
|
||
|
||
- update to 7.42.1
|
||
* fixes CVE-2015-3153 (bnc#928533)
|
||
- sensitive HTTP server headers also sent to proxies
|
||
- rename curl-devel to libcurl-devel in baselibs.conf
|
||
|
||
-------------------------------------------------------------------
|
||
Wed Apr 22 08:03:02 UTC 2015 - vcizek@suse.com
|
||
|
||
- update to 7.42.0
|
||
* refresh libcurl-ocloexec.patch
|
||
- fixes security vulnerabilities:
|
||
* CVE-2015-3143 (bnc#927556)
|
||
- Re-using authenticated connection when unauthenticated
|
||
* CVE-2015-3144 (bnc#927608)
|
||
- host name out of boundary memory access
|
||
* CVE-2015-3145 (bnc#927607)
|
||
- cookie parser out of boundary memory access
|
||
* CVE-2015-3148 (bnc#927746)
|
||
- Negotiate not treated as connection-oriented
|
||
|
||
-------------------------------------------------------------------
|
||
Tue Mar 24 12:49:35 UTC 2015 - lnussel@suse.de
|
||
|
||
- don't hardcode /etc/ssl/certs. Use openssl's default instead
|
||
(curl-7.41.0-use-openssl-s-built-in-verify-path-as-fallback.diff)
|
||
|
||
-------------------------------------------------------------------
|
||
Thu Feb 26 09:37:22 UTC 2015 - sor.alexei@meowr.ru
|
||
|
||
- update to 7.41.0:
|
||
* Changes:
|
||
NetWare build: added TLS-SRP enabled build
|
||
winbuild: Added option to build with c-ares
|
||
Added --cert-status
|
||
Added CURLOPT_SSL_VERIFYSTATUS
|
||
sasl: implement EXTERNAL authentication mechanism
|
||
|
||
-------------------------------------------------------------------
|
||
Sat Feb 14 18:29:37 UTC 2015 - mpluskal@suse.com
|
||
|
||
- Re-enable metalink supoort
|
||
- Use pkgconfig() style dependencies
|
||
|
||
-------------------------------------------------------------------
|
||
Thu Jan 8 09:55:11 UTC 2015 - vcizek@suse.com
|
||
|
||
- update to 7.40.0:
|
||
* fixes CVE-2014-8150 (bnc#911363)
|
||
* Changes:
|
||
http_digest: Added support for Windows SSPI based authentication
|
||
version info: Added Kerberos V5 to the supported features
|
||
Makefile: Added VC targets for WinIDN
|
||
config-win32: Introduce build targets for VS2012+
|
||
SSL: Add PEM format support for public key pinning
|
||
smtp: Added support for the conversion of Unix newlines during mail send
|
||
smb: Added initial support for the SMB/CIFS protocol
|
||
Added support for HTTP over unix domain sockets,
|
||
via CURLOPT_UNIX_SOCKET_PATH and --unix-socket
|
||
sasl: Added support for GSS-API based Kerberos V5 authentication
|
||
|
||
-------------------------------------------------------------------
|
||
Thu Jan 1 23:08:25 UTC 2015 - meissner@suse.com
|
||
|
||
- build with PIE
|
||
|
||
-------------------------------------------------------------------
|
||
Fri Nov 14 15:29:07 UTC 2014 - vcizek@suse.com
|
||
|
||
- update to 7.39.0:
|
||
- changes:
|
||
SSLv3 is disabled by default
|
||
CURLOPT_COOKIELIST: Added "RELOAD" command
|
||
build: Added WinIDN build configuration options to Visual Studio projects
|
||
ssh: improve key file search
|
||
SSL: public key pinning. Use CURLOPT_PINNEDPUBLICKEY and --pinnedpubkey
|
||
vtls: remove QsoSSL support, use gskit!
|
||
mk-ca-bundle: added SHA-384 signature algorithm
|
||
docs: added many examples for libcurl opts and other doc improvements
|
||
build: Added VC ssh2 target to main Makefile
|
||
MinGW: Added support to build with nghttp2
|
||
NetWare: Added support to build with nghttp2
|
||
build: added Watcom support to build with WinSSL
|
||
build: Added optional specific version generation of VC project files
|
||
... and a bunch of bugfixes
|
||
- refreshed libcurl-ocloexec.patch
|
||
- removed gpg-offline verification
|
||
- spec-cleaned curl.spec
|
||
|
||
-------------------------------------------------------------------
|
||
Thu Oct 23 15:13:30 UTC 2014 - crrodriguez@opensuse.org
|
||
|
||
- Ensure the curl command line tool always require
|
||
the same libcurl it was used for build, even expert users
|
||
got confused.
|
||
|
||
-------------------------------------------------------------------
|
||
Wed Sep 10 09:07:59 UTC 2014 - vcizek@suse.com
|
||
|
||
- update to 7.38.0
|
||
* fixes CVE-2014-3613 (bnc#894575) and CVE-2014-3620 (bnc#895991)
|
||
* cookie leaks with IP address as domain and TLDs respectively
|
||
Changes:
|
||
supports HTTP/2 draft-14
|
||
CURLE_HTTP2 is a new error code
|
||
CURLAUTH_NEGOTIATE is a new auth define
|
||
CURL_VERSION_GSSAPI is a new capability bit
|
||
no longer use fbopenssl for anything
|
||
schannel: use CryptGenRandom for random numbers
|
||
axtls: define curlssl_random using axTLS's PRNG
|
||
cyassl: use RNG_GenerateBlock to generate a good random number
|
||
findprotocol: show unsupported protocol within quotes
|
||
version: detect and show LibreSSL
|
||
version: detect and show BoringSSL
|
||
imap/pop3/smtp: Kerberos (SASL GSSAPI) authentication via Windows SSPI
|
||
http2: requires nghttp2 0.6.0 or later
|
||
Bugfixes:
|
||
SECURITY ADVISORY: cookie leak with IP address as domain
|
||
SECURITY ADVISORY: cookie leak for TLDs
|
||
And many other fixes
|
||
|
||
-------------------------------------------------------------------
|
||
Thu Aug 28 21:59:59 UTC 2014 - andreas.stieger@gmx.de
|
||
|
||
- curl 7.37.1:
|
||
This release includes many bugfixes and the following changes:
|
||
* bits.close: introduce connection close tracking
|
||
* darwinssl: Add support for --cacert
|
||
* polarssl: add ALPN support
|
||
* docs: Added new option man pages
|
||
|
||
-------------------------------------------------------------------
|
||
Thu Jun 12 11:45:03 UTC 2014 - vcizek@suse.com
|
||
|
||
- update to 7.37.0
|
||
This release includes many bugfixes and the following changes:
|
||
* URL parser: IPv6 zone identifiers are now supported
|
||
* CURLOPT_PROXYHEADER: set headers for proxy-only
|
||
* CURLOPT_HEADEROPT: added
|
||
* curl: add --proxy-header
|
||
* sasl: Added support for DIGEST-MD5 via Windows SSPI
|
||
* sasl: Added DIGEST-MD5 qop-option validation in native challange handling
|
||
* imap: Expanded mailbox SEARCH support to use URL query strings [7]
|
||
* imap: Extended FETCH support to include PARTIAL URL specifier [7]
|
||
* nss: implement non-blocking SSL handshake
|
||
* build: Reworked Visual Studio project files
|
||
* poll: enable poll on darwin13
|
||
* mk-ca-bundle: added -p
|
||
* libtests: add a wait_ms() function
|
||
- dropped patches:
|
||
* curl-mkhelp.patch (upstream)
|
||
* curl-test815.patch (upstream)
|
||
|
||
-------------------------------------------------------------------
|
||
Fri Apr 11 06:51:54 UTC 2014 - vcizek@suse.com
|
||
|
||
- remove the useless BuildRequires that were meant for debugging only
|
||
|
||
-------------------------------------------------------------------
|
||
Wed Apr 9 11:40:19 UTC 2014 - vcizek@suse.com
|
||
|
||
- update to 7.36
|
||
* fixes CVE-2014-0138 (bnc#868627) and CVE-2014-0139 (bnc#868629)
|
||
* NEW FEATURES:
|
||
ntlm: Added support for NTLMv2
|
||
tool: Added support for URL specific options
|
||
openssl: add ALPN support
|
||
gtls: add ALPN support
|
||
nss: add ALPN and NPN support
|
||
added CURLOPT_EXPECT_100_TIMEOUT_MS
|
||
tool: add --no-alpn and --no-npn
|
||
added CURLOPT_SSL_ENABLE_NPN and CURLOPT_SSL_ENABLE_ALPN
|
||
http2: build with current nghttp2 version
|
||
openssl: info message with SSL version used
|
||
* dropped curl-test172_cookie_expiration.patch (upstream)
|
||
* added patches to make it build:
|
||
- curl-mkhelp.patch
|
||
- curl-test815.patch
|
||
|
||
-------------------------------------------------------------------
|
||
Thu Mar 13 13:53:08 CET 2014 - kukuk@suse.de
|
||
|
||
- Disable BuildRequires for openssh, only needed for test suite,
|
||
but the test suite isn't able to start sshd anyways.
|
||
Solves the problem that openssh checkins triggers a nearly full
|
||
rebuild, too.
|
||
|
||
-------------------------------------------------------------------
|
||
Tue Feb 4 15:17:18 UTC 2014 - vcizek@suse.com
|
||
|
||
- update to 7.35.0
|
||
* security fix:
|
||
CVE-2014-0015: re-use of wrong HTTP NTLM connection (bnc#858673)
|
||
* changes:
|
||
imap/pop3/smtp: Added support for SASL authentication downgrades
|
||
imap/pop3/smtp: Extended the login options to support multiple auth mechanisms
|
||
TheArtOfHttpScripting: major update, converted layout and more
|
||
mprintf: Added support for I, I32 and I64 size specifiers
|
||
makefile: Added support for VC7, VC11 and VC12
|
||
SSL: protocol version can be specified more precisely
|
||
imap/pop3/smtp: Added graceful cancellation of SASL authentication
|
||
Add "Happy Eyeballs" for IPv4/IPv6 dual connect attempts
|
||
base64: Added validation of base64 input strings when decoding
|
||
curl_easy_setopt: Added the ability to set the login options separately
|
||
smtp: Added support for additional SMTP commands
|
||
curl_easy_getinfo: Added CURLINFO_TLS_SESSION for accessing TLS internals
|
||
nss: allow to use TLS > 1.0 if built against recent NSS
|
||
SECURITY: added this document to describe our security processes
|
||
parseconfig: warn if unquoted white spaces are detected
|
||
* and many bugfixes
|
||
- fix test failure because of an expired cookie (bnc#862144)
|
||
* added curl-test172_cookie_expiration.patch
|
||
- refresh libcurl-ocloexec.patch
|
||
|
||
-------------------------------------------------------------------
|
||
Fri Nov 29 15:30:23 UTC 2013 - vcizek@suse.com
|
||
|
||
- update to 7.33.0
|
||
* fixes CVE-2013-4545 (bnc#849596)
|
||
= curl: ssl cert checks unclear behaviour
|
||
o test code for testing the event based API
|
||
o CURLM_ADDED_ALREADY: new error code
|
||
o test TFTP server: support "writedelay" within <servercmd>
|
||
o krb4 support has been removed
|
||
o imap/pop3/smtp: added basic SASL XOAUTH2 support
|
||
o Pass password to OpenSSL engine by user interface
|
||
o c-ares: Add support for various DNS binding options
|
||
o cookies: add expiration
|
||
o curl: added --oauth2-bearer option
|
||
|
||
-------------------------------------------------------------------
|
||
Mon Aug 12 05:29:34 UTC 2013 - crrodriguez@opensuse.org
|
||
|
||
- curl 7.32.0
|
||
* curl: allow timeouts to accept decimal values
|
||
* CURLOPT_XFERINFOFUNCTION: introducing a new progress callback
|
||
* SIGPIPE: ignored while inside the library
|
||
* OpenSSL: check for read errors
|
||
* configure: automake 1.14 compatibility tweak
|
||
* curl_multi_wait: set revents for extra fds
|
||
* global dns cache: didn't work (regression)
|
||
* mk-ca-bundle.1: don't install on make install
|
||
|
||
|
||
-------------------------------------------------------------------
|
||
Mon Jul 1 18:56:33 UTC 2013 - coolo@suse.com
|
||
|
||
- avoid cycle between curl and krb5 by using krb5-mini-devel
|
||
|
||
-------------------------------------------------------------------
|
||
Mon Jun 24 14:00:11 UTC 2013 - vcizek@suse.com
|
||
|
||
- update to 7.31.0
|
||
* includes fix for CVE-2013-2174 (bnc#824517)
|
||
* SECURITY VULNERABILITY: curl_easy_unescape() may parse data
|
||
beyond the end of the input buffer [26]
|
||
* Changes:
|
||
darwinssl: add TLS session resumption
|
||
darwinssl: add TLS crypto authentication
|
||
imap/pop3/smtp: Added support for ;auth= in the URL
|
||
imap/pop3/smtp: Added support for ;auth= to CURLOPT_USERPWD
|
||
usercertinmem.c: add example showing user cert in memory
|
||
url: Added smtp and pop3 hostnames to the protocol detection list
|
||
imap/pop3/smtp: Added support for enabling the SASL initial response
|
||
curl -E: allow to use ':' in certificate nicknames
|
||
|
||
-------------------------------------------------------------------
|
||
Fri Apr 12 11:36:47 UTC 2013 - vcizek@suse.com
|
||
|
||
- update to 7.30.0
|
||
includes security fixes for CVE-2013-0249 and CVE-2013-1944
|
||
(bugs bnc#814655 and bnc#802411 respectively)
|
||
(dropped curl-CVE-2013-0249.patch)
|
||
- Changes:
|
||
imap: Changed response tag generation to be completely unique
|
||
imap: Added support for SASL-IR extension
|
||
imap: Added support for the list command
|
||
imap: Added support for the append command
|
||
imap: Added custom request parsing
|
||
imap: Added support to the fetch command for UID and SECTION properties
|
||
imap: Added parsing and verification of the UIDVALIDITY mailbox attribute
|
||
imap/pop3/smtp: Added support for the STARTTLS capability
|
||
checksrc: ban use of sprintf, vsprintf, strcat, strncat and gets
|
||
curl_global_init() now accepts the CURL_GLOBAL_ACK_EINTR flag
|
||
Added CURLMOPT_MAX_HOST_CONNECTIONS, CURLMOPT_MAX_TOTAL_CONNECTIONS
|
||
for new multi interface connection handling
|
||
Added CURLMOPT_MAX_PIPELINE_LENGTH, CURLMOPT_CONTENT_LENGTH_PENALTY_SIZE,
|
||
CURLMOPT_CHUNK_LENGTH_PENALTY_SIZE, CURLMOPT_PIPELINING_SITE_BL
|
||
and CURLMOPT_PIPELI NING_SERVER_BL for new pipelining control
|
||
test: offer "automake" output and check for perl better
|
||
always-multi: always use non-blocking internals
|
||
imap: Added support for sasl digest-md5 authentication
|
||
imap: Added support for sasl cram-md5 authentication
|
||
imap: Added support for sasl ntlm authentication
|
||
imap: Added support for sasl login authentication
|
||
imap: Added support for sasl plain text authentication
|
||
imap: Added support for login disabled server capability
|
||
mk-ca-bundle: add -f, support passing to stdout and more
|
||
writeout: -w now supports remote_ip/port and local_ip/port
|
||
- refreshed patches
|
||
|
||
-------------------------------------------------------------------
|
||
Sun Feb 17 17:04:34 UTC 2013 - crrodriguez@opensuse.org
|
||
|
||
- Add curl-secure-getenv.patch: Use secure_getenv if available.
|
||
libcurl might be linked to a program where "secure execution" is
|
||
required.
|
||
|
||
-------------------------------------------------------------------
|
||
Thu Feb 7 10:54:15 UTC 2013 - vcizek@suse.com
|
||
|
||
- fixed CVE-2013-0249 (bnc#802411)
|
||
- refreshed patches
|
||
|
||
-------------------------------------------------------------------
|
||
Fri Jan 11 21:34:38 CET 2013 - sbrabec@suse.cz
|
||
|
||
- Break build loop and make GPG signature verification optional.
|
||
|
||
-------------------------------------------------------------------
|
||
Tue Nov 27 20:05:00 CET 2012 - sbrabec@suse.cz
|
||
|
||
- Verify GPG signature.
|
||
|
||
-------------------------------------------------------------------
|
||
Tue Nov 20 23:43:24 UTC 2012 - crrodriguez@opensuse.org
|
||
|
||
- Curl 7.28.1
|
||
* FTP: prevent the multi interface from blocking Obsoletes
|
||
curl-ftp-prevent-the-multi-interface-from-blocking.patch
|
||
* don't send '#' fragments when using proxy
|
||
* OpenSSL: Disable SSL/TLS compression - avoid the "CRIME" attack
|
||
* TFTP: handle resend
|
||
* memory leak: CURLOPT_RESOLVE with multi interface
|
||
* SSL: Several SSL-backend related fixes
|
||
|
||
-------------------------------------------------------------------
|
||
Sun Nov 4 19:57:33 UTC 2012 - gber@opensuse.org
|
||
|
||
- added curl-ftp-prevent-the-multi-interface-from-blocking.patch in
|
||
order to prevent the multi interface from blocking when using ftp
|
||
and the remote end responds very slowly (sf#3579064)
|
||
|
||
-------------------------------------------------------------------
|
||
Sun Jul 29 22:14:25 UTC 2012 - crrodriguez@opensuse.org
|
||
|
||
- Curl 7.27.0
|
||
* support metalinks
|
||
* Add sasl authentication support
|
||
* various bugfixes
|
||
- Fix previous change, _GNU_SOURCE --> AC_USE_SYSTEM_EXTENSIONS
|
||
|
||
-------------------------------------------------------------------
|
||
Mon Jul 9 13:12:24 UTC 2012 - dnh@opensuse.org
|
||
|
||
- define _GNU_SOURCE for oS/SLES <= 11.4, as O_CLOEXEC is
|
||
defined inside a ifdef __USE_GNU
|
||
|
||
-------------------------------------------------------------------
|
||
Sat May 12 23:24:56 UTC 2012 - jengelh@inai.de
|
||
|
||
- Update to new upstream release 7.25.0
|
||
* Added CURLOPT_TCP_KEEPALIVE, CURLOPT_TCP_KEEPIDLE,
|
||
CURLOPT_TCP_KEEPINTVL
|
||
* use new library-side TCP_KEEPALIVE options
|
||
* Added a new CURLOPT_MAIL_AUTH option
|
||
* Added support for --mail-auth
|
||
* (for more see the shipped CHANGES file)
|
||
|
||
-------------------------------------------------------------------
|
||
Wed Feb 8 00:45:18 UTC 2012 - crrodriguez@opensuse.org
|
||
|
||
- Problem with the c-ares backend, workaround for [bnc#745534]
|
||
|
||
-------------------------------------------------------------------
|
||
Thu Feb 2 18:47:10 UTC 2012 - crrodriguez@opensuse.org
|
||
|
||
- Update to version curl 7.24.0
|
||
- refresh patches to fix broken build
|
||
|
||
-------------------------------------------------------------------
|
||
Wed Jan 18 13:49:56 CET 2012 - dmueller@suse.de
|
||
|
||
- use the rpmoptflags unconditionally, don't do own compiler flag
|
||
magic. Fixes debuginfo package built
|
||
|
||
-------------------------------------------------------------------
|
||
Wed Dec 28 10:30:28 UTC 2011 - mmarek@suse.cz
|
||
|
||
- Package /usr/share/aclocal to avoid build dependency on automake.
|
||
|
||
-------------------------------------------------------------------
|
||
Wed Nov 30 22:39:35 UTC 2011 - crrodriguez@opensuse.org
|
||
|
||
- Use O_CLOEXEC in library code.
|
||
|
||
-------------------------------------------------------------------
|
||
Tue Nov 29 11:51:38 UTC 2011 - jengelh@medozas.de
|
||
|
||
- Remove redundant/unwanted tags/section (cf. specfile guidelines)
|
||
|
||
-------------------------------------------------------------------
|
||
Tue Nov 29 08:20:23 UTC 2011 - idoenmez@suse.de
|
||
|
||
- Use original source tarball
|
||
|
||
-------------------------------------------------------------------
|
||
Mon Nov 28 12:00:00 UTC 2011 - opensuse@dstoecker.de
|
||
|
||
- Update to version 7.23.1:
|
||
+ Empty headers can be sent in HTTP requests by terminating with a semicolon
|
||
+ SSL session sharing support added to curl_share_setopt()
|
||
+ Added support to MAIL FROM for the optional SIZE parameter
|
||
+ smtp: Added support for NTLM authentication
|
||
+ curl tool: code split into tool_*.[ch] files
|
||
+ lots of bugfixes
|
||
-------------------------------------------------------------------
|
||
Mon Oct 3 15:44:17 UTC 2011 - dimstar@opensuse.org
|
||
|
||
- Update to version 7.22.0:
|
||
+ Added CURLOPT_GSSAPI_DELEGATION
|
||
+ Added support for NTLM delegation to Samba's winbind daemon
|
||
helper ntlm_auth
|
||
+ Display notes from setup file in testcurl.pl
|
||
+ BSD-style lwIP TCP/IP stack experimental support on Windows
|
||
+ OpenSSL: Use SSL_MODE_RELEASE_BUFFERS if available
|
||
+ --delegation was added to set CURLOPT_GSSAPI_DELEGATION
|
||
+ nss: start with no database if the selected database is broken
|
||
+ telnet: allow programatic use on Windows
|
||
+ for a list of bugfixes, see
|
||
http://curl.haxx.se/changes.html#7_22_0
|
||
- Drop curl-openssl-release-buffers.patch: fixed upstream.
|
||
- Add curl-fix-m4.patch: Use 'x' in configure scripts. Fixes issues
|
||
when configure is run with -Werror -Wall.
|
||
|
||
-------------------------------------------------------------------
|
||
Sun Sep 18 00:10:42 UTC 2011 - jengelh@medozas.de
|
||
|
||
- Remove redundant tags/sections from specfile
|
||
- Use %_smp_mflags for parallel build
|
||
|
||
-------------------------------------------------------------------
|
||
Fri Sep 16 17:22:44 UTC 2011 - jengelh@medozas.de
|
||
|
||
- Add curl-devel to baselibs
|
||
|
||
-------------------------------------------------------------------
|
||
Mon Aug 15 05:05:01 UTC 2011 - crrodriguez@opensuse.org
|
||
|
||
- Use SSL_MODE_RELEASE_BUFFERS if available, accepted
|
||
in upstream as commit 3d919440c80333c496fb
|
||
|
||
-------------------------------------------------------------------
|
||
Tue Jul 12 06:46:02 UTC 2011 - coolo@novell.com
|
||
|
||
- remove support for old suse_versions
|
||
|
||
-------------------------------------------------------------------
|
||
Mon Jul 11 11:40:17 CEST 2011 - pth@suse.de
|
||
|
||
- Update to 7.21.7:
|
||
- Fix libcurl inappropriate GSSAPI delegation. Full details at
|
||
http://curl.haxx.se/docs/adv_20110623.html
|
||
- Some other minor fixes.
|
||
|
||
- Use the lzma compressed tarball provided upstreams.
|
||
|
||
-------------------------------------------------------------------
|
||
Fri May 20 16:25:34 UTC 2011 - crrodriguez@opensuse.org
|
||
|
||
- remove unintented LDFLAGS from the spec file
|
||
|
||
-------------------------------------------------------------------
|
||
Fri May 20 15:37:54 UTC 2011 - crrodriguez@opensuse.org
|
||
|
||
- Update to 7.21.6
|
||
* curl-config: fix --version
|
||
* use HTTPS properly after CONNECT
|
||
* SFTP: close file before post quote operations
|
||
|
||
-------------------------------------------------------------------
|
||
Thu Apr 14 17:02:19 UTC 2011 - crrodriguez@opensuse.org
|
||
|
||
- bnc#598574 has been fixed in upstream commit 8ab137b2bc9630ce20f4
|
||
already, so enable c-ares support again.
|
||
|
||
-------------------------------------------------------------------
|
||
Sat Apr 9 20:42:27 UTC 2011 - crrodriguez@opensuse.org
|
||
|
||
- Support openSSL compiled without SSLv2 support
|
||
- Update to version 7.21.4
|
||
* SMTP: add brackets for MAIL FROM
|
||
* multi: connect fail => use next IP address
|
||
* pubkey_show: allocate buffer to fit any-size result
|
||
* Curl_do: avoid using stale conn pointer
|
||
* tftpd test server: avoid buffer overflow report from glibc
|
||
* OpenSSL get_cert_chain: support larger data sets
|
||
* SCP/SFTP transfers: acknowledge speedcheck
|
||
* connect problem: use UDP correctly
|
||
* OpenSSL: improved error message on SSL_CTX_new failures
|
||
* HTTP: memory leak on multiple Location:
|
||
* curl.1: typo in -v description
|
||
* CURLOPT_SOCKOPTFUNCTION: return proper error code --keepalive-time
|
||
* file: add support for CURLOPT_TIMECONDITION
|
||
* multi: fix CURLM_STATE_TOOFAST for multi_socket
|
||
-------------------------------------------------------------------
|
||
Fri Oct 22 16:37:03 UTC 2010 - cristian.rodriguez@opensuse.org
|
||
|
||
- Update to version 7.21.2
|
||
* curl -T: ignore file size of special files
|
||
* Added GOPHER protocol support
|
||
* Added mk-ca-bundle.vbs script
|
||
* c-ares build now requires c-ares >= 1.6.0
|
||
* --remote-header-name security vulnerability fixed
|
||
* multi: support the timeouts correctly, fixes known bug #62
|
||
* multi: use timeouts properly for MAX_RECV/SEND_SPEED
|
||
* negotiation: Wrong proxy authorization
|
||
* multi: avoid sending multiple complete messages
|
||
* cmdline: make -F type= accept ;charset=
|
||
* RESUME_FROM: clarify what ftp uploads do
|
||
* http: handle trailer headers in all chunked responses
|
||
* Curl_is_connected: use correct errno
|
||
* progress: callback for POSTs less than MAX_INITIAL_POST_SIZE
|
||
* Link curl and the test apps with -lrt explicitly when necessary
|
||
* chunky parser: only rewind stream internally if needed
|
||
* remote-header-name: don't output filename when NULL
|
||
* Curl_timeleft: avoid returning "no timeout" by mistake
|
||
* timeout: use the correct start value as offset
|
||
* FTP: fix wrong timeout trigger
|
||
* rtsp: avoid SIGSEGV on malformed header
|
||
* LDAP: Support for tunnelling queries through HTTP proxy
|
||
* curl_easy_duphandle: clone the c-ares handle correctly
|
||
* support URL containing colon without trailing port number
|
||
* parsedate: allow time specified without seconds
|
||
* curl_easy_escape: don't escape "unreserved" characters
|
||
* SFTP: avoid downloading negative sizes
|
||
* Lots of GSS/KRB FTP fixes
|
||
* TFTP: Work around tftpd-hpa upload bug
|
||
* libcurl.m4: several fixes
|
||
* HTTP: remove special case for 416
|
||
* globbing: fix crash on unballanced open brace
|
||
|
||
-------------------------------------------------------------------
|
||
Wed Jun 2 14:12:54 UTC 2010 - lnussel@suse.de
|
||
|
||
- allowing switching to nss instead of openssl via bcond
|
||
|
||
-------------------------------------------------------------------
|
||
Mon May 10 01:12:22 UTC 2010 - crrodriguez@opensuse.org
|
||
|
||
- disable c-ares support while bnc598574 is fixed.
|
||
|
||
-------------------------------------------------------------------
|
||
Sat Apr 24 10:58:50 UTC 2010 - coolo@novell.com
|
||
|
||
- buildrequire pkg-config to fix provides
|
||
|
||
-------------------------------------------------------------------
|
||
Fri Apr 23 00:53:19 UTC 2010 - crrodriguez@opensuse.org
|
||
|
||
- Update to libcurl 7.20.1
|
||
* off-by-one in the chunked encoding trailer parser
|
||
* CURLOPT_CERTINFO memory leak
|
||
* threaded resolver double free when closing curl handle
|
||
* url_multi_remove_handle() caused use after free
|
||
* SSL possible double free when reusing curl handle
|
||
* alarm()-based DNS timeout bug
|
||
|
||
-------------------------------------------------------------------
|
||
Wed Mar 24 18:39:57 UTC 2010 - crrodriguez@opensuse.org
|
||
|
||
- enable libssh2 support unconditionally.
|
||
|
||
-------------------------------------------------------------------
|
||
Wed Mar 10 13:46:45 UTC 2010 - crrodriguez@opensuse.org
|
||
|
||
- enable libcares support unconditionally.
|
||
|
||
-------------------------------------------------------------------
|
||
Sat Feb 13 21:39:56 CET 2010 - dimstar@opensuse.org
|
||
|
||
- Update to version 7.20.0:
|
||
* support SSL_FILETYPE_ENGINE for client certificate
|
||
* curl-config can now show the arguments used when building curl
|
||
* non-blocking TFTP
|
||
* send Expect: 100-continue for POSTs with unknown sizes
|
||
* added support for IMAP(S), POP3(S), SMTP(S) and RTSP
|
||
* added new curl_easy_setopt() options for SMTP and RTSP
|
||
* added --mail-from and --mail-rcpt for SMTP
|
||
* VMS build system enhancements
|
||
* added support for the PRET ftp command
|
||
* curl supports --ssl and --ssl-reqd
|
||
* added -J/--remote-header-name for using server-provided
|
||
filename with -O
|
||
* enhanced asynchronous DNS lookups
|
||
* symbol CURL_FORMAT_OFF_T is obsoleted
|
||
* many bugfixes
|
||
|
||
-------------------------------------------------------------------
|
||
Tue Jan 26 11:33:14 CET 2010 - mmarek@suse.cz
|
||
|
||
- updated to 7.19.7
|
||
* -T. is now for non-blocking uploading from stdin
|
||
* SYST handling on FTP for OS/400 FTP server cases
|
||
* libcurl refuses to read a single HTTP header longer than 100K
|
||
* added the --crlfile option to curl
|
||
* many bugfixes
|
||
|
||
|
||
-------------------------------------------------------------------
|
||
Mon Jan 11 11:38:16 CET 2010 - meissner@suse.de
|
||
|
||
- add baselibs.conf as source
|
||
|
||
-------------------------------------------------------------------
|
||
Thu Aug 13 21:30:37 CEST 2009 - mmarek@suse.cz
|
||
|
||
- updated to 7.19.6
|
||
* CURLOPT_FTPPORT (and curl's -P/--ftpport) support port ranges
|
||
* Added CURLOPT_SSH_KNOWNHOSTS, CURLOPT_SSH_KEYFUNCTION,
|
||
CURLOPT_SSH_KEYDATA
|
||
* CURLOPT_QUOTE, CURLOPT_POSTQUOTE and CURLOPT_PREQUOTE can be
|
||
told to ignore error responses when used with FTP
|
||
* fixed CVE-2009-2417 (matching certificates with embedded NUL
|
||
bytes)
|
||
* many other bugfixes
|
||
|
||
-------------------------------------------------------------------
|
||
Tue May 19 15:03:25 CEST 2009 - mmarek@suse.cz
|
||
|
||
- remove the Obsoletes: curl-ca-bundle, it breaks parallel
|
||
installation of older libcurl packages (bnc#484044).
|
||
|
||
-------------------------------------------------------------------
|
||
Tue May 19 15:00:02 CEST 2009 - mmarek@suse.cz
|
||
|
||
- updated to 7.19.5
|
||
* libcurl now closes all dead connections whenever you attempt to
|
||
open a new connection
|
||
* libssh2's version number can now be figured out run-time
|
||
instead of using the build-time fixed number
|
||
* CURLOPT_SEEKFUNCTION may now return CURL_SEEKFUNC_CANTSEEK
|
||
* curl can now upload with resume even when reading from a pipe
|
||
* a build-time configured curl_socklen_t is now used instead of
|
||
socklen_t
|
||
- by default, don't abort if the testsuite fails.
|
||
|
||
|
||
-------------------------------------------------------------------
|
||
Thu Mar 5 11:12:41 CET 2009 - mmarek@suse.cz
|
||
|
||
- don't run autoreconf -fi as it breaks on older distros and
|
||
upstream uses recent autotools already.
|
||
|
||
-------------------------------------------------------------------
|
||
Mon Mar 2 15:44:14 CET 2009 - mmarek@suse.cz
|
||
|
||
- updated to 7.19.4
|
||
* don't follow redirects to file:// and scp:// by default; add
|
||
new curl_easy_setopt options CURLOPT_PROTOCOLS and
|
||
CURLOPT_REDIR_PROTOCOLS to specify which protocols are allowed
|
||
and which protocols are allowed to redirect to (bnc#475103,
|
||
CVE-2009-0037)
|
||
* Added CURLOPT_NOPROXY and the corresponding --noproxy
|
||
* the OpenSSL-specific code disables TICKET (rfc5077) which is
|
||
enabled by default in openssl 0.9.8j
|
||
* Added CURLOPT_TFTP_BLKSIZE
|
||
* Added CURLOPT_SOCKS5_GSSAPI_SERVICE and
|
||
CURLOPT_SOCKS5_GSSAPI_NEC - with the corresponding curl options
|
||
--socks5-gssapi-service and --socks5-gssapi-nec
|
||
* Improved IPv6 support when built with with c-ares >= 1.6.1
|
||
* Added CURLPROXY_HTTP_1_0 and --proxy1.0
|
||
* Added docs/libcurl/symbols-in-versions
|
||
* Added CURLINFO_CONDITION_UNMET
|
||
* Added support for Digest and NTLM authentication using GnuTLS
|
||
* CURLOPT_FTP_CREATE_MISSING_DIRS can now be set to 2 to retry
|
||
the CWD even when MKD fails
|
||
* GnuTLS initing moved to curl_global_init()
|
||
* CURLAUTH_DIGEST_IE bit added for CURLOPT_HTTPAUTH and
|
||
CURLOPT_PROXYAUTH
|
||
* pkg-config can now show supported_protocols and
|
||
supported_features
|
||
* Added CURLOPT_CERTINFO and CURLINFO_CERTINFO
|
||
* Added CURLOPT_POSTREDIR
|
||
* Better detect HTTP 1.0 servers and don't do HTTP 1.1 requests
|
||
on them
|
||
* configure --disable-proxy disables proxy support
|
||
* Added CURLOPT_USERNAME and CURLOPT_PASSWORD
|
||
* --interface now works with IPv6 connections on glibc systems
|
||
* Added CURLOPT_PROXYUSERNAME and CURLOPT_PROXYPASSWORD
|
||
|
||
|
||
|
||
-------------------------------------------------------------------
|
||
Wed Dec 10 12:34:56 CET 2008 - olh@suse.de
|
||
|
||
- use Obsoletes: -XXbit only for ppc64 to help solver during distupgrade
|
||
(bnc#437293)
|
||
|
||
-------------------------------------------------------------------
|
||
Thu Oct 30 12:34:56 CET 2008 - olh@suse.de
|
||
|
||
- obsolete old -XXbit packages (bnc#437293)
|
||
|
||
-------------------------------------------------------------------
|
||
Mon Sep 15 11:26:06 CEST 2008 - mmarek@suse.cz
|
||
|
||
- only buildrequire stunnel when built --with stunnel
|
||
|
||
-------------------------------------------------------------------
|
||
Thu Sep 11 09:20:08 CEST 2008 - mmarek@suse.cz
|
||
|
||
- test 279 no longer fails with runtests.pl -b <num>
|
||
|
||
-------------------------------------------------------------------
|
||
Tue Sep 2 14:23:51 CEST 2008 - mmarek@suse.cz
|
||
|
||
- updated to 7.19.0
|
||
* curl_off_t gets its size/typedef somewhat differently than
|
||
before. This _may_ cause an ABI change for you. See
|
||
/usr/share/doc/packages/curl/README.curl_off_t for a full
|
||
explanation. (Should not affect our package as it has LFS
|
||
enabled)
|
||
* Added CURLINFO_PRIMARY_IP
|
||
* Added CURLOPT_CRLFILE and CURLE_SSL_CRL_BADFILE
|
||
* Added CURLOPT_ISSUERCERT and CURLE_SSL_ISSUER_ERROR
|
||
* curl's option parser for boolean options reworked
|
||
* Added --remote-name-all
|
||
* Added CURLINFO_APPCONNECT_TIME
|
||
* Added test selection by key word in runtests.pl
|
||
* the curl tool's -w option support the %{ssl_verify_result}
|
||
variable
|
||
* Added CURLOPT_ADDRESS_SCOPE and scope parsing of the URL
|
||
according to RFC4007
|
||
* Support --append on SFTP uploads (not with OpenSSH, though)
|
||
* Added curlbuild.h and curlrules.h to the external library
|
||
interface
|
||
* lots of bugfixes
|
||
|
||
-------------------------------------------------------------------
|
||
Wed Jun 4 18:05:43 CEST 2008 - mmarek@suse.cz
|
||
|
||
- updated to 7.18.2
|
||
* CURLFORM_STREAM was added
|
||
* CURLOPT_NOBODY is now supported over SFTP
|
||
* curl can now run on Symbian OS
|
||
* curl -w redirect_url and CURLINFO_REDIRECT_URL
|
||
* added curl_easy_send() and curl_easy_recv()
|
||
* some bugfixes
|
||
|
||
-------------------------------------------------------------------
|
||
Sat May 17 19:22:10 CEST 2008 - coolo@suse.de
|
||
|
||
- fix renaming of xxbit packages
|
||
|
||
-------------------------------------------------------------------
|
||
Mon Apr 28 11:30:24 CEST 2008 - mmarek@suse.cz
|
||
|
||
- disable c-ares support again until bnc#381709 is fixed
|
||
- build with libssh2 support in the devel:libraries:c_c++ project
|
||
|
||
-------------------------------------------------------------------
|
||
Fri Apr 11 14:22:20 CEST 2008 - mmarek@suse.cz
|
||
|
||
- build with c-ares support
|
||
- fixed build for older dists
|
||
|
||
-------------------------------------------------------------------
|
||
Thu Apr 10 12:54:45 CEST 2008 - ro@suse.de
|
||
|
||
- added baselibs.conf file to build xxbit packages
|
||
for multilib support
|
||
|
||
-------------------------------------------------------------------
|
||
Wed Apr 2 13:53:43 CEST 2008 - mmarek@suse.de
|
||
|
||
- obsolete curl-ca-bundle by the library package
|
||
|
||
-------------------------------------------------------------------
|
||
Mon Mar 31 10:16:30 CEST 2008 - mmarek@suse.cz
|
||
|
||
- updated to 7.18.1
|
||
* minor fixes since last update
|
||
|
||
-------------------------------------------------------------------
|
||
Fri Mar 21 17:42:35 CET 2008 - mmarek@suse.cz
|
||
|
||
- updated to cvs snapshot 20080321
|
||
* added support for HttpOnly cookies
|
||
* we no longer distribute or install a ca cert bundle
|
||
* SSLv2 is now disabled by default for SSL operations
|
||
* the test509-style setting URL in callback is officially no
|
||
longer supported
|
||
* support a full chain of certificates in a given PKCS12
|
||
certificate
|
||
* resumed transfers work with SFTP
|
||
* added type checking macros for curl_easy_setopt() and
|
||
curl_easy_getinfo(), watch out for new warnings in code using
|
||
libcurl (needs gcc-4.3 and currently only works in C mode)
|
||
* curl_easy_setopt(), curl_easy_getinfo(), curl_share_setopt()
|
||
and curl_multi_setopt() uses are now checked to use exactly
|
||
three arguments
|
||
|
||
|
||
-------------------------------------------------------------------
|
||
Mon Mar 10 11:03:56 CET 2008 - mmarek@suse.cz
|
||
|
||
- clean up curl-config --libs output, thanks to Cristian Rodríguez
|
||
for pointing it out
|
||
|
||
-------------------------------------------------------------------
|
||
Fri Mar 7 11:03:25 CET 2008 - mmarek@suse.cz
|
||
|
||
- build with gssapi support (thanks to Michael Calmer)
|
||
|
||
-------------------------------------------------------------------
|
||
Mon Feb 18 15:00:12 CET 2008 - mmarek@suse.cz
|
||
|
||
- removed Requires: openssl-certs - doesn't exist on older dists
|
||
and is required by libopenssl otherwise
|
||
- allow to build the package even if the testsuite fails
|
||
|
||
-------------------------------------------------------------------
|
||
Fri Feb 8 10:21:10 CET 2008 - mmarek@suse.cz
|
||
|
||
- use /etc/ssl/certs instead of own curl-ca-bundle.crt
|
||
* more up-to-date ca cert collection (bnc#334690)
|
||
* allows for easier updates of ca certs
|
||
|
||
-------------------------------------------------------------------
|
||
Tue Jan 29 10:01:27 CET 2008 - mmarek@suse.cz
|
||
|
||
- updated to 7.18.0
|
||
* --data-urlencode
|
||
* CURLOPT_PROXY_TRANSFER_MODE
|
||
* --no-keepalive - now curl does connections with keep-alive
|
||
enabled by default
|
||
* --socks4a added (proxy type CURLPROXY_SOCKS4A for libcurl)
|
||
* --socks5-hostname added (CURLPROXY_SOCKS5_HOSTNAME for libcurl)
|
||
* curl_easy_pause()
|
||
* CURLOPT_SEEKFUNCTION and CURLOPT_SEEKDATA
|
||
* --keepalive-time
|
||
* curl --help output was re-ordered
|
||
* bugfixes
|
||
- fixed test553 to work with different port number
|
||
|
||
-------------------------------------------------------------------
|
||
Thu Jan 10 16:21:34 CET 2008 - mmarek@suse.cz
|
||
|
||
- only print -lcurl in curl-config to reduce dependencies
|
||
|
||
-------------------------------------------------------------------
|
||
Tue Dec 11 17:59:57 CET 2007 - mmarek@suse.cz
|
||
|
||
- backported the CURLOPT_PROXY_TRANSFER_MODE patch [#306272#c26]
|
||
|
||
-------------------------------------------------------------------
|
||
Fri Nov 16 12:06:39 CET 2007 - mmarek@suse.cz
|
||
|
||
- fixed the testsuite on hosts that have no IPv6 support [#341994]
|
||
curl-testsuite-safely-skip-http-ipv6.patch
|
||
curl-testsuite-remember-broken-servers.patch
|
||
- added stunnel to BuildRequires to enable SSL tests
|
||
|
||
-------------------------------------------------------------------
|
||
Tue Oct 30 09:14:04 CET 2007 - mmarek@suse.cz
|
||
|
||
- updated to 7.17.1
|
||
* automatically append ";type=<a|i>" when using HTTP proxies for
|
||
FTP urls [#306272]
|
||
* improved NSS support
|
||
* added --proxy-negotiate
|
||
* added --post301 and CURLOPT_POST301
|
||
* builds with c-ares 1.5.0
|
||
* added CURLOPT_SSH_HOST_PUBLIC_KEY_MD5 and --hostpubmd5
|
||
* renamed CURLE_SSL_PEER_CERTIFICATE to
|
||
CURLE_PEER_FAILED_VERIFICATION
|
||
* added CURLOPT_OPENSOCKETFUNCTION and CURLOPT_OPENSOCKETDATA
|
||
* CULROPT_COOKIELIST supports "FLUSH"
|
||
* added CURLOPT_COPYPOSTFIELDS
|
||
* added --static-libs to curl-config
|
||
* many bugfixes, inc. fix for bug #332917
|
||
|
||
-------------------------------------------------------------------
|
||
Thu Oct 11 16:19:56 CEST 2007 - mszeredi@suse.de
|
||
|
||
- Add missing dependency (openldap2-devel) for libcurl-devel
|
||
|
||
-------------------------------------------------------------------
|
||
Mon Oct 8 17:28:01 CEST 2007 - mmarek@suse.cz
|
||
|
||
- updated to 7.17.0
|
||
* curl_easy_setopt() now allocates strings passed to it
|
||
* LDAP libraries are now linked "regularly" and not with dlopen
|
||
(the strict-aliasing patch can go away)
|
||
* HTTP transfers have the download size info "available" earlier
|
||
* FTP transfers have the download size info "available" earlier
|
||
* several error codes and options were marked as obsolete and
|
||
subject to future removal (set CURL_NO_OLDIES to see if your
|
||
application is using them)
|
||
* some bugfixes (see /usr/share/doc/packages/curl/RELEASE-NOTES)
|
||
- added fixes for some post-7.17 bugs
|
||
- removed some less useful %%doc files
|
||
|
||
-------------------------------------------------------------------
|
||
Fri Sep 14 09:20:35 CEST 2007 - mmarek@suse.cz
|
||
|
||
- set transfer mode (binary/ascii) when retrieving ftp:// urls via
|
||
an http proxy (curl-ftp-httpproxy.patch) [#306272]
|
||
|
||
-------------------------------------------------------------------
|
||
Wed Aug 29 12:25:59 CEST 2007 - mmarek@suse.cz
|
||
|
||
- s/openssl-devel/libopenssl-devel/ [#305815]
|
||
|
||
-------------------------------------------------------------------
|
||
Fri Aug 3 13:53:05 CEST 2007 - mmarek@suse.cz
|
||
|
||
- updated to 7.16.4
|
||
* added CURLOPT_NEW_FILE_PERMS and CURLOPT_NEW_DIRECTORY_PERMS
|
||
* improved hashing of sockets for the multi_socket API
|
||
* ftp kerberos5 support added
|
||
* some bugfixes (see /usr/share/doc/packages/curl/RELEASE-NOTES)
|
||
- fixed libcurl-devel Provides: [#293401]
|
||
|
||
|
||
-------------------------------------------------------------------
|
||
Mon Jul 9 10:35:48 CEST 2007 - mmarek@suse.cz
|
||
|
||
- updated to 7.16.3
|
||
* many bugfixes
|
||
* support for running multiple testsuites in paralell
|
||
- removed lfs patch leftover
|
||
|
||
-------------------------------------------------------------------
|
||
Mon Jun 4 10:16:40 CEST 2007 - mmarek@suse.cz
|
||
|
||
- install libcurl.m4 [#275462]
|
||
|
||
-------------------------------------------------------------------
|
||
Fri Jun 1 11:57:28 CEST 2007 - dmueller@suse.de
|
||
|
||
- fix obsoletes for alpha3 update
|
||
- fix ldconfig call
|
||
|
||
-------------------------------------------------------------------
|
||
Wed May 23 16:22:39 CEST 2007 - bk@suse.de
|
||
|
||
- updated to 7.16.2 (lots of fixes, fixes a segfault in git-http)
|
||
|
||
-------------------------------------------------------------------
|
||
Fri May 4 14:55:41 CEST 2007 - mmarek@suse.cz
|
||
|
||
- also avoid non-versioned obsoletes
|
||
|
||
-------------------------------------------------------------------
|
||
Mon Apr 16 10:49:55 CEST 2007 - mmarek@suse.de
|
||
|
||
- avoid non-versioned provides
|
||
- removed old curl_ssl provides/obsoletes from 7.1 times
|
||
|
||
-------------------------------------------------------------------
|
||
Mon Apr 2 17:38:04 CEST 2007 - rguenther@suse.de
|
||
|
||
- split off libcurl4 and curl-ca-bundle packages, rename curl-devel
|
||
to libcurl-devel
|
||
|
||
-------------------------------------------------------------------
|
||
Sat Mar 31 18:53:00 CEST 2007 - rguenther@suse.de
|
||
|
||
- add zlib-devel BuildRequires
|
||
|
||
-------------------------------------------------------------------
|
||
Fri Feb 16 16:07:34 CET 2007 - mmarek@suse.cz
|
||
|
||
- better patch for #246179
|
||
|
||
-------------------------------------------------------------------
|
||
Fri Feb 16 14:04:38 CET 2007 - mmarek@suse.cz
|
||
|
||
- fix CURLOPT_RANGE reset for ftp transfers
|
||
[#246179] (ftp_range.patch)
|
||
- updated to 7.16.1 (other bugfixes)
|
||
|
||
-------------------------------------------------------------------
|
||
Fri Jan 26 09:55:19 CET 2007 - mmarek@suse.cz
|
||
|
||
- remove libcurl.a and libcurl.la (rationale: there are security
|
||
updates of curl from time to time, so statically linking it is
|
||
not acceptable)
|
||
|
||
-------------------------------------------------------------------
|
||
Thu Jan 25 15:36:29 CET 2007 - mmarek@suse.cz
|
||
|
||
- fixed strict aliasing warnings
|
||
|
||
-------------------------------------------------------------------
|
||
Tue Dec 19 14:59:34 CET 2006 - mmarek@suse.cz
|
||
|
||
- updated to 7.16.0
|
||
* removed CURLOPT_SOURCE_* options and --3p* command line option
|
||
(breaks python-curl atm)
|
||
* for a complete list of changes, see
|
||
/usr/share/doc/packages/curl/RELEASE-NOTES
|
||
|
||
-------------------------------------------------------------------
|
||
Tue Aug 15 11:23:58 CEST 2006 - mmarek@suse.cz
|
||
|
||
- configure with --enable-hidden-symbols to compile libcurl with
|
||
-fvisibility=hidden, exporting only symbols from the API
|
||
|
||
-------------------------------------------------------------------
|
||
Tue Aug 15 10:41:28 CEST 2006 - mmarek@suse.cz
|
||
|
||
- updated to version 7.15.5
|
||
* added --ftp-ssl-reqd
|
||
* modified the prototype for the socket callback set with
|
||
CURLMOPT_SOCKETFUNCTION
|
||
* added curl_multi_assign()
|
||
* added CURLOPT_FTP_ALTERNATIVE_TO_USER and --ftp-alternative-to-user
|
||
* added a vcproj file for building libcurl
|
||
* added curl_formget()
|
||
* added CURLOPT_MAX_SEND_SPEED_LARGE and CURLOPT_MAX_RECV_SPEED_LARGE
|
||
* Made -K on a file that couldn't be read cause a warning to be displayed
|
||
* some bugfixes
|
||
- dropped epsv-firewall.patch which was intergrated in 7.15.2
|
||
|
||
-------------------------------------------------------------------
|
||
Sat Jul 1 21:28:06 CEST 2006 - cthiel@suse.de
|
||
|
||
- update to version 7.15.4, changes & fixes for this version:
|
||
* NTLM2 session response support
|
||
* CURLOPT_COOKIELIST set to "SESS" clears all session cookies
|
||
* CURLINFO_LASTSOCKET returned sockets are now checked more before
|
||
returned
|
||
* curl-config got a --checkfor option to compare version numbers
|
||
* line end conversions for FTP ASCII transfers
|
||
* curl_multi_socket() API added (still mostly untested)
|
||
* conversion callback options for EBCDIC <=> ASCII conversions
|
||
* added CURLINFO_FTP_ENTRY_PATH
|
||
* less blocking for the multi interface during (Open)SSL connect
|
||
negotiation
|
||
* builds fine on cygwin
|
||
* md5-sess with Digest authentication
|
||
* dict with letters such as space in a word
|
||
* dict with url-encoded words in the URL
|
||
* libcurl.m4 when default=yes but no libcurl was found
|
||
* numerous bugs fixed in the TFTP code
|
||
* possible memory leak when adding easy handles to multi stack
|
||
* TFTP works in a more portable fashion (== on more platforms)
|
||
* WSAGetLastError() is now used (better) on Windows
|
||
* GnuTLS non-block case that could cause data trashing
|
||
* deflate code survives lack of zlib header
|
||
* CURLOPT_INTERFACE works with hostname
|
||
* configure runs fine with ICC
|
||
* closed control connection with FTP when easy handle was removed from
|
||
multi
|
||
* curl --trace crash when built with VS2005
|
||
* SSL connect time-out
|
||
* improved NTLM functionality
|
||
* following redirects with more than one question mark in source URL
|
||
* fixed debug build crash with -d
|
||
* generates a fine AIX Toolbox RPM spec
|
||
* treat FTP AUTH failures properly
|
||
* TFTP transfers could trash data
|
||
* -d + -G combo crash
|
||
|
||
-------------------------------------------------------------------
|
||
Wed Jun 14 17:36:10 CEST 2006 - mmarek@suse.cz
|
||
|
||
- fixed syntax error in configure
|
||
|
||
-------------------------------------------------------------------
|
||
Sun May 28 16:16:33 CEST 2006 - cthiel@suse.de
|
||
|
||
- update to version 7.15.3, changes & fixes for this version:
|
||
* added docs for --ftp-method and CURLOPT_FTP_FILEMETHOD
|
||
* TFTP Packet Buffer Overflow Vulnerability (CVE-2006-1061)
|
||
* properly detecting problems with sending the FTP command USER
|
||
* wrong error message shown when certificate verification failed
|
||
* multi-part formpost with multi interface crash
|
||
* the CURLFTPSSL_CONTROL setting for CURLOPT_FTP_SSL is acknowledged
|
||
* "SSL: couldn't set callback" is now treated as a less serious problem
|
||
* Interix build fix
|
||
* fixed curl "hang" when out of file handles at start
|
||
* prevent FTP uploads to URLs with trailing slash
|
||
|
||
- changes & fixes in 7.15.2
|
||
* Support for SOCKS4 proxies (added --socks4)
|
||
* CURLOPT_CONNECT_ONLY and CURLINFO_LASTSOCKET added
|
||
* CURLOPT_LOCALPORT and CURLOPT_LOCALPORTRANGE (--local-port) added
|
||
* Dropped support for the LPRT ftp command
|
||
* Gopher is now officially abandoned as a protocol (lib)curl tries to
|
||
support
|
||
* curl_global_init() and curl_global_cleanup() are now using a refcount so
|
||
that it is now legal to call them multiple times. See updated info for
|
||
details
|
||
* two bugs concerning using curl_multi_remove_handle() before the transfer
|
||
was complete
|
||
* multi-pass authentication and compressed content
|
||
* minor format string mistake in the GSS/Negotiate code
|
||
* cached DNS entries could remain in the cache too long
|
||
* improved GnuTLS check in configure
|
||
* re-used FTP connections when the second request didn't do a transfer
|
||
* plain --limit-rate [num] means bytes
|
||
* re-creating a dead connection is no longer counted internally as a
|
||
followed redirect and thus prevents a weird error that would occur if a
|
||
FTP connection died on an attempted re-use
|
||
* Try PASV after failing to connect to the port the EPSV response
|
||
contained
|
||
* -P [IP] with non-local address with ipv6-enabled curl
|
||
* -P [hostname] with ipv6-disabled curl
|
||
* libcurl.m4 was updated
|
||
* configure no longer warns if the current path contains a space
|
||
* test suite kill race condition
|
||
* FTP_SKIP_PASV_IP and FTP_USE_EPSV when doing FTP over HTTP proxy
|
||
* Doing a second request with FTP on the same bath path, would make
|
||
libcurl confuse what current working directory it had
|
||
* FTP over HTTP proxy now sends the second CONNECT properly
|
||
* numerous compiler warnings and build quirks for various compilers have
|
||
been addressed
|
||
* supports name and passwords up to 255 bytes long, embedded in URLs
|
||
* the HTTP_ONLY define disables the TFTP support
|
||
|
||
- removed curl-7.15.1-CVE-2006-1061.patch, included upstream
|
||
- removed curl-7.15.1-aliasing.patch
|
||
|
||
-------------------------------------------------------------------
|
||
Tue Mar 14 12:35:53 CET 2006 - mmarek@suse.cz
|
||
|
||
- fix buffer overflow in TFTP code
|
||
[#157874] (CVE-2006-1061.patch)
|
||
|
||
-------------------------------------------------------------------
|
||
Wed Feb 15 02:53:15 CET 2006 - ro@suse.de
|
||
|
||
- added libidn-devel to requires of devel package
|
||
|
||
-------------------------------------------------------------------
|
||
Mon Feb 13 16:32:40 CET 2006 - mmarek@suse.cz
|
||
|
||
- build with libidn support
|
||
[#150313]
|
||
|
||
-------------------------------------------------------------------
|
||
Fri Jan 27 01:07:37 CET 2006 - mls@suse.de
|
||
|
||
- converted neededforbuild to BuildRequires
|
||
|
||
-------------------------------------------------------------------
|
||
Mon Jan 23 17:20:59 CET 2006 - mmarek@suse.cz
|
||
|
||
- fallback to PASV if some firewall doesn't let an EPSV connection
|
||
trough
|
||
|
||
-------------------------------------------------------------------
|
||
Thu Jan 12 15:45:18 CET 2006 - mmarek@suse.cz
|
||
|
||
- build with -fstack-protector
|
||
- add dependency on curl = %%{version} to curl-devel
|
||
|
||
-------------------------------------------------------------------
|
||
Tue Jan 10 15:24:29 CET 2006 - mmarek@suse.cz
|
||
|
||
- remove non-existent path /usr/ssl, which caused -L/usr/ssl/lib to
|
||
appeared in curl-config output
|
||
- use make -j
|
||
|
||
-------------------------------------------------------------------
|
||
Tue Dec 13 13:23:13 CET 2005 - mmarek@suse.cz
|
||
|
||
- updated to 7.15.1, fixing previous vulnerabilities
|
||
|
||
-------------------------------------------------------------------
|
||
Thu Oct 13 16:00:00 CEST 2005 - mmarek@suse.cz
|
||
|
||
- fix stack buffer overflow in lib/http_ntlm.c [#128065]
|
||
|
||
-------------------------------------------------------------------
|
||
Mon Oct 10 14:20:12 CEST 2005 - mmarek@suse.cz
|
||
|
||
- updated to 7.14.1
|
||
- updated curl-7.14.1-aliasing.patch
|
||
|
||
-------------------------------------------------------------------
|
||
Mon Jun 20 16:38:34 CEST 2005 - anicka@suse.cz
|
||
|
||
- update to 7.14.0
|
||
- remove obsolete patch curl-ntlm.patch
|
||
|
||
-------------------------------------------------------------------
|
||
Tue Apr 12 16:37:59 CEST 2005 - tcrhak@suse.cz
|
||
|
||
- packaged curl-ca-bundle.crt (bug #64301)
|
||
|
||
-------------------------------------------------------------------
|
||
Thu Feb 24 10:07:13 CET 2005 - meissner@suse.de
|
||
|
||
- enable make test. fixed test 241 to use ::1 directly.
|
||
|
||
-------------------------------------------------------------------
|
||
Tue Feb 22 10:46:21 CET 2005 - mcihar@suse.cz
|
||
|
||
- fix buffer overflow in NTLM (bug #65752)
|
||
|
||
-------------------------------------------------------------------
|
||
Tue Feb 8 18:36:38 CET 2005 - mcihar@suse.cz
|
||
|
||
- update to 7.13.0
|
||
|
||
-------------------------------------------------------------------
|
||
Wed Aug 11 11:31:07 CEST 2004 - tcrhak@suse.cz
|
||
|
||
- update to 7.12.0
|
||
|
||
-------------------------------------------------------------------
|
||
Wed Apr 28 19:57:41 CEST 2004 - tcrhak@suse.cz
|
||
|
||
- strict aliasing fix
|
||
|
||
-------------------------------------------------------------------
|
||
Tue Mar 16 17:31:01 CET 2004 - tcrhak@suse.cz
|
||
|
||
- fix for lfs for in transfer.c (bug #36040)
|
||
|
||
-------------------------------------------------------------------
|
||
Wed Feb 25 19:29:05 CET 2004 - tcrhak@suse.cz
|
||
|
||
- ignore leading slashes of url-path in URLs like
|
||
ftp://user@name//url-path, i.e don't change to the
|
||
root directory (RFC 1738, bug #34471)
|
||
|
||
-------------------------------------------------------------------
|
||
Tue Feb 10 17:39:28 CET 2004 - tcrhak@suse.cz
|
||
|
||
- update to version 7.11.0
|
||
|
||
-------------------------------------------------------------------
|
||
Sat Jan 10 16:13:21 CET 2004 - adrian@suse.de
|
||
|
||
- add %defattr and %run_ldconfig
|
||
|
||
-------------------------------------------------------------------
|
||
Wed Nov 05 16:20:21 CET 2003 - tcrhak@suse.cz
|
||
|
||
- added large file support, patch lfs [bug #32411]
|
||
|
||
-------------------------------------------------------------------
|
||
Thu Sep 04 17:48:46 CEST 2003 - tcrhak@suse.cz
|
||
|
||
- require zlib-devel, openssl-devel and glibc-devel in curl-devel [bug #29881]
|
||
|
||
-------------------------------------------------------------------
|
||
Fri Aug 08 09:39:30 CEST 2003 - tcrhak@suse.cz
|
||
|
||
- terminate array of directory components by NULL (bug #28351, patch dirs)
|
||
|
||
-------------------------------------------------------------------
|
||
Wed Jul 23 19:36:56 CEST 2003 - tcrhak@suse.cz
|
||
|
||
- update to version 7.10.5
|
||
|
||
-------------------------------------------------------------------
|
||
Tue Jun 3 01:24:42 CEST 2003 - ro@suse.de
|
||
|
||
- remove unpackaged files from buildroot
|
||
|
||
-------------------------------------------------------------------
|
||
Wed Nov 27 17:27:13 CET 2002 - tcrhak@suse.cz
|
||
|
||
- update to version 7.10.2
|
||
- moved curl-config.1.gz to the devel subpackage [bug #21966]
|
||
|
||
-------------------------------------------------------------------
|
||
Sat Jul 13 17:25:58 CEST 2002 - tcrhak@suse.cz
|
||
|
||
- update to version 7.9.8
|
||
- added automake
|
||
|
||
-------------------------------------------------------------------
|
||
Fri Jan 18 17:45:31 CET 2002 - tcrhak@suse.cz
|
||
|
||
- used macros %{_lib} and %{_libdir}
|
||
- update to 7.9.2
|
||
|
||
-------------------------------------------------------------------
|
||
Fri Oct 19 08:38:40 CEST 2001 - ro@suse.de
|
||
|
||
- do not pack shared library into both, main and devel package
|
||
|
||
-------------------------------------------------------------------
|
||
Mon Oct 8 11:35:52 CEST 2001 - tcrhak@suse.cz
|
||
|
||
- update to version 7.9
|
||
|
||
-------------------------------------------------------------------
|
||
Fri Sep 21 11:46:09 CEST 2001 - adostal@suse.cz
|
||
|
||
- fix manual in man.patch
|
||
|
||
-------------------------------------------------------------------
|
||
Tue Aug 21 16:10:10 CEST 2001 - adostal@suse.cz
|
||
|
||
- update to version 7.8.1
|
||
|
||
-------------------------------------------------------------------
|
||
Wed Jul 18 10:21:13 CEST 2001 - adostal@suse.cz
|
||
|
||
- files devel fixed
|
||
|
||
-------------------------------------------------------------------
|
||
Mon Jul 2 17:51:34 CEST 2001 - adostal@suse.cz
|
||
|
||
- update to version 7.8
|
||
|
||
-------------------------------------------------------------------
|
||
Wed Jun 13 17:33:41 CEST 2001 - ro@suse.de
|
||
|
||
- fixed to compile with new autoconf
|
||
|
||
-------------------------------------------------------------------
|
||
Mon Apr 9 14:39:03 CEST 2001 - cihlar@suse.cz
|
||
|
||
- update to version 7.7.1
|
||
|
||
-------------------------------------------------------------------
|
||
Tue Mar 6 10:03:05 CET 2001 - cihlar@suse.cz
|
||
|
||
- update to version 7.6.1
|
||
|
||
-------------------------------------------------------------------
|
||
Wed Jan 3 09:13:15 CET 2001 - cihlar@suse.cz
|
||
|
||
- fixed Provides and Obsoletes also for curl-devel
|
||
|
||
-------------------------------------------------------------------
|
||
Tue Dec 19 07:16:38 CET 2000 - cihlar@suse.cz
|
||
|
||
- fixed name
|
||
- added Obsoletes: curl_ssl
|
||
|
||
-------------------------------------------------------------------
|
||
Mon Dec 18 15:13:25 CET 2000 - cihlar@suse.cz
|
||
|
||
- changed to ssl support
|
||
|
||
-------------------------------------------------------------------
|
||
Thu Nov 16 14:25:18 CET 2000 - cihlar@suse.cz
|
||
|
||
- renamed curldev -> curl-devel
|
||
- update to version 7.4.2
|
||
|
||
-------------------------------------------------------------------
|
||
Tue Oct 17 09:16:16 CEST 2000 - cihlar@suse.cz
|
||
|
||
- update to version 7.4.1 - security bug fixed
|
||
|
||
-------------------------------------------------------------------
|
||
Wed Aug 30 09:34:32 CEST 2000 - cihlar@suse.cz
|
||
|
||
- package created
|
||
|