SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for curl-debuginfo-7.85.0-1.fc37.i686.rpm :

* Thu Sep 01 2022 Kamil Dudka - 7.85.0-3- new upstream release, which fixes the following vulnerability CVE-2022-35252 - control code in cookie denial of service
* Thu Aug 25 2022 Kamil Dudka - 7.84.0-3- tests: fix http2 tests to use CRLF headers to make it work with nghttp2-1.49.0
* Wed Jul 20 2022 Fedora Release Engineering - 7.84.0-2- Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
* Mon Jun 27 2022 Kamil Dudka - 7.84.0-1- new upstream release, which fixes the following vulnerabilities CVE-2022-32207 - Unpreserved file permissions CVE-2022-32205 - Set-Cookie denial of service CVE-2022-32206 - HTTP compression denial of service CVE-2022-32208 - FTP-KRB bad message verification
* Wed May 11 2022 Kamil Dudka - 7.83.1-1- new upstream release, which fixes the following vulnerabilities CVE-2022-27782 - fix too eager reuse of TLS and SSH connections CVE-2022-27779 - do not accept cookies for TLD with trailing dot CVE-2022-27778 - do not remove wrong file on error CVE-2022-30115 - hsts: ignore trailing dots when comparing hosts names CVE-2022-27780 - reject percent-encoded path separator in URL host
* Wed Apr 27 2022 Kamil Dudka - 7.83.0-1- new upstream release, which fixes the following vulnerabilities CVE-2022-27774 - curl credential leak on redirect CVE-2022-27776 - curl auth/cookie leak on redirect CVE-2022-27775 - curl bad local IPv6 connection reuse CVE-2022-22576 - curl OAUTH2 bearer bypass in connection re-use
* Tue Mar 15 2022 Kamil Dudka - 7.82.0-2- openssl: fix incorrect CURLE_OUT_OF_MEMORY error on CN check failure
* Sat Mar 05 2022 Kamil Dudka - 7.82.0-1- new upstream release
* Thu Feb 24 2022 Kamil Dudka - 7.81.0-4- enable IDN support also in libcurl-minimal
* Thu Feb 10 2022 Zbigniew Jędrzejewski-Szmek - 7.81.0-3- Suggest libcurl-minimal in curl-minimal
* Thu Jan 20 2022 Fedora Release Engineering - 7.81.0-2- Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
* Wed Jan 05 2022 Kamil Dudka - 7.81.0-1- new upstream release
* Sun Nov 14 2021 Paul Howarth - 7.80.0-2- sshserver.pl (used in test suite) now requires the Digest::SHA perl module
* Wed Nov 10 2021 Kamil Dudka - 7.80.0-1- new upstream release
* Tue Oct 26 2021 Kamil Dudka - 7.79.1-3- re-enable HSTS in libcurl-minimal as a security feature (#2005874)
* Mon Oct 04 2021 Kamil Dudka - 7.79.1-2- disable more protocols and features in libcurl-minimal (#2005874)
* Wed Sep 22 2021 Kamil Dudka - 7.79.1-1- new upstream release
* Thu Sep 16 2021 Kamil Dudka - 7.79.0-4- fix regression in http2 implementation introduced in the last release
* Thu Sep 16 2021 Sahana Prasad - 7.79.0-3- Rebuilt with OpenSSL 3.0.0
* Thu Sep 16 2021 Kamil Dudka - 7.79.0-2- make SCP/SFTP tests work with openssh-8.7p1
* Wed Sep 15 2021 Kamil Dudka - 7.79.0-1- new upstream release, which fixes the following vulnerabilities CVE-2021-22947 - STARTTLS protocol injection via MITM CVE-2021-22946 - protocol downgrade required TLS bypassed CVE-2021-22945 - use-after-free and double-free in MQTT sending
* Tue Sep 14 2021 Sahana Prasad - 7.78.0-4- Rebuilt with OpenSSL 3.0.0
* Fri Jul 23 2021 Kamil Dudka - 7.78.0-3- make explicit dependency on openssl work with alpha/beta builds of openssl
* Wed Jul 21 2021 Fedora Release Engineering - 7.78.0-2- Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild
* Wed Jul 21 2021 Kamil Dudka - 7.78.0-1- new upstream release, which fixes the following vulnerabilities CVE-2021-22925 - TELNET stack contents disclosure again CVE-2021-22924 - bad connection reuse due to flawed path name checks CVE-2021-22923 - metalink download sends credentials CVE-2021-22922 - wrong content via metalink not discarded
* Wed Jun 02 2021 Kamil Dudka - 7.77.0-2- build the curl tool without metalink support (#1967213)
* Wed May 26 2021 Kamil Dudka - 7.77.0-1- new upstream release, which fixes the following vulnerabilities CVE-2021-22901 - TLS session caching disaster CVE-2021-22898 - TELNET stack contents disclosure
* Mon May 03 2021 Kamil Dudka - 7.76.1-2- http2: fix resource leaks detected by Coverity
* Wed Apr 14 2021 Kamil Dudka - 7.76.1-1- new upstream release
* Wed Mar 31 2021 Kamil Dudka - 7.76.0-1- new upstream release, which fixes the following vulnerabilities CVE-2021-22890 - TLS 1.3 session ticket proxy host mixup CVE-2021-22876 - Automatic referer leaks credentials
* Wed Mar 24 2021 Kamil Dudka - 7.75.0-3- fix SIGSEGV upon disconnect of a ldaps:// transfer
* Tue Feb 23 2021 Kamil Dudka - 7.75.0-2- build-require python3-impacket only on Fedora
* Wed Feb 03 2021 Kamil Dudka - 7.75.0-1- new upstream release
* Tue Jan 26 2021 Kamil Dudka - 7.74.0-4- do not use stunnel for tests on s390x builds to avoid spurious failures
* Tue Jan 26 2021 Fedora Release Engineering - 7.74.0-3- Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
* Wed Dec 09 2020 Kamil Dudka - 7.74.0-2- do not rewrite shebangs in test-suite to use python3 explicitly
* Wed Dec 09 2020 Kamil Dudka - 7.74.0-1- new upstream release, which fixes the following vulnerabilities CVE-2020-8286 - curl: Inferior OCSP verification CVE-2020-8285 - libcurl: FTP wildcard stack overflow CVE-2020-8284 - curl: trusting FTP PASV responses
* Wed Oct 14 2020 Kamil Dudka - 7.73.0-2- prevent upstream test 1451 from being skipped
* Wed Oct 14 2020 Kamil Dudka - 7.73.0-1- new upstream release
* Thu Sep 10 2020 Jinoh Kang - 7.72.0-2- fix multiarch conflicts in libcurl-minimal (#1877671)
  
ICM