[pkgsrc/trunk]: pkgsrc/www/curl Updated curl to 7.52.0. Security fixes.

To: pkgsrc-changes-hg%NetBSD.org@localhost
Subject: [pkgsrc/trunk]: pkgsrc/www/curl Updated curl to 7.52.0. Security fixes.
From: wiz <wiz%pkgsrc.org@localhost>
Date: Wed, 15 Jan 2020 06:26:30 +0000
details:   https://anonhg.NetBSD.org/pkgsrc/rev/ade2c3b99b80
branches:  trunk
changeset: 356185:ade2c3b99b80
user:      wiz <wiz%pkgsrc.org@localhost>
date:      Wed Dec 21 10:07:37 2016 +0000

description:
Updated curl to 7.52.0. Security fixes.

Version 7.52.0 (20 Dec 2016)

Changes:

    nss: map CURL_SSLVERSION_DEFAULT to NSS default
    vtls: support TLS 1.3 via CURL_SSLVERSION_TLSv1_3
    curl: introduce the --tlsv1.3 option to force TLS 1.3
    curl: Add --retry-connrefused
    proxy: Support HTTPS proxy and SOCKS+HTTP(s)
    add CURLINFO_SCHEME, CURLINFO_PROTOCOL, and %{scheme}
    curl: add --fail-early

Bugfixes:

    CVE-2016-9586: printf floating point buffer overflow
    CVE-2016-9952: Win CE schannel cert wildcard matches too much
    CVE-2016-9953: Win CE schannel cert name out of buffer read
    msvc: removed a straggling reference to strequal.c
    winbuild: remove strcase.obj from curl build
    examples: bugfixed multi-uv.c
    configure: verify that compiler groks -Werror=partial-availability
    mbedtls: fix build with mbedtls versions < 2.4.0
    dist: add unit test CMakeLists.txt to the tarball
    curl -w: added more decimal digits to timing counters
    easy: Initialize info variables on easy init and duphandle
    cmake: disable poll for macOS
    http2: Don't send header fields prohibited by HTTP/2 spec
    ssh: check md5 fingerprints case insensitively (regression)
    openssl: initial TLS 1.3 adaptions
    curl_formadd.3: *_FILECONTENT and *_FILE need the file to be kept
    printf: fix ".*f" handling
    examples/fileupload.c: fclose the file as well
    SPNEGO: Fix memory leak when authentication fails
    realloc: use Curl_saferealloc to avoid common mistakes
    openssl: make sure to fail in the unlikely event that PRNG seeding fails
    URL-parser: for file://[host]/ URLs, the [host] must be localhost
    timeval: prefer time_t to hold seconds instead of long
    Curl_rand: fixed and moved to rand.c
    glob: fix [a-c] globbing regression
    darwinssl: fix SSL client certificate not found on MacOS Sierra
    curl.1: Clarify --dump-header only writes received headers
    http2: Fix address sanitizer memcpy warning
    http2: Use huge HTTP/2 windows
    connects: Don't mix unix domain sockets with regular ones
    url: Fix conn reuse for local ports and interfaces
    x509: Limit ASN.1 structure sizes to 256K
    checksrc: add more checks
    winbuild: add config option ENABLE_NGHTTP2
    http2: check nghttp2_session_set_local_window_size exists
    http2: Fix crashes when parent stream gets aborted
    CURLOPT_CONNECT_TO: Skip non-matching "connect-to" entries
    URL parser: reject non-numerical port numbers
    CONNECT: reject TE or CL in 2xx responses
    CONNECT: read responses one byte at a time
    curl: support zero-length argument strings in config files
    openssl: don't use OpenSSL's ERR_PACK
    curl.1: generated with the new man page system
    curl_easy_recv: Improve documentation and example program
    Curl_getconnectinfo: avoid checking if the connection is closed
    CIPHERS.md: attempt to document TLS cipher names

diffstat:

 www/curl/Makefile |   4 ++--
 www/curl/PLIST    |  23 ++++++++++++++++++++++-
 www/curl/distinfo |  10 +++++-----
 3 files changed, 29 insertions(+), 8 deletions(-)

diffs (90 lines):

diff -r e79f974b7a53 -r ade2c3b99b80 www/curl/Makefile
--- a/www/curl/Makefile Wed Dec 21 00:54:00 2016 +0000
+++ b/www/curl/Makefile Wed Dec 21 10:07:37 2016 +0000
@@ -1,6 +1,6 @@
-# $NetBSD: Makefile,v 1.173 2016/11/02 07:09:38 maya Exp $
+# $NetBSD: Makefile,v 1.174 2016/12/21 10:07:37 wiz Exp $
 
-DISTNAME=      curl-7.51.0
+DISTNAME=      curl-7.52.0
 CATEGORIES=    www
 MASTER_SITES=  https://curl.haxx.se/download/
 EXTRACT_SUFX=  .tar.bz2
diff -r e79f974b7a53 -r ade2c3b99b80 www/curl/PLIST
--- a/www/curl/PLIST    Wed Dec 21 00:54:00 2016 +0000
+++ b/www/curl/PLIST    Wed Dec 21 10:07:37 2016 +0000
@@ -1,4 +1,4 @@
-@comment $NetBSD: PLIST,v 1.60 2016/11/02 07:09:38 maya Exp $
+@comment $NetBSD: PLIST,v 1.61 2016/12/21 10:07:37 wiz Exp $
 bin/curl
 bin/curl-config
 include/curl/curl.h
@@ -40,7 +40,9 @@
 man/man3/CURLINFO_PRIMARY_IP.3
 man/man3/CURLINFO_PRIMARY_PORT.3
 man/man3/CURLINFO_PRIVATE.3
+man/man3/CURLINFO_PROTOCOL.3
 man/man3/CURLINFO_PROXYAUTH_AVAIL.3
+man/man3/CURLINFO_PROXY_SSL_VERIFYRESULT.3
 man/man3/CURLINFO_REDIRECT_COUNT.3
 man/man3/CURLINFO_REDIRECT_TIME.3
 man/man3/CURLINFO_REDIRECT_URL.3
@@ -50,6 +52,7 @@
 man/man3/CURLINFO_RTSP_CSEQ_RECV.3
 man/man3/CURLINFO_RTSP_SERVER_CSEQ.3
 man/man3/CURLINFO_RTSP_SESSION_ID.3
+man/man3/CURLINFO_SCHEME.3
 man/man3/CURLINFO_SIZE_DOWNLOAD.3
 man/man3/CURLINFO_SIZE_UPLOAD.3
 man/man3/CURLINFO_SPEED_DOWNLOAD.3
@@ -200,6 +203,7 @@
 man/man3/CURLOPT_POSTQUOTE.3
 man/man3/CURLOPT_POSTREDIR.3
 man/man3/CURLOPT_PREQUOTE.3
+man/man3/CURLOPT_PRE_PROXY.3
 man/man3/CURLOPT_PRIVATE.3
 man/man3/CURLOPT_PROGRESSDATA.3
 man/man3/CURLOPT_PROGRESSFUNCTION.3
@@ -212,7 +216,24 @@
 man/man3/CURLOPT_PROXYTYPE.3
 man/man3/CURLOPT_PROXYUSERNAME.3
 man/man3/CURLOPT_PROXYUSERPWD.3
+man/man3/CURLOPT_PROXY_CAINFO.3
+man/man3/CURLOPT_PROXY_CAPATH.3
+man/man3/CURLOPT_PROXY_CRLFILE.3
+man/man3/CURLOPT_PROXY_KEYPASSWD.3
+man/man3/CURLOPT_PROXY_PINNEDPUBLICKEY.3
 man/man3/CURLOPT_PROXY_SERVICE_NAME.3
+man/man3/CURLOPT_PROXY_SSLCERT.3
+man/man3/CURLOPT_PROXY_SSLCERTTYPE.3
+man/man3/CURLOPT_PROXY_SSLKEY.3
+man/man3/CURLOPT_PROXY_SSLKEYTYPE.3
+man/man3/CURLOPT_PROXY_SSLVERSION.3
+man/man3/CURLOPT_PROXY_SSL_CIPHER_LIST.3
+man/man3/CURLOPT_PROXY_SSL_OPTIONS.3
+man/man3/CURLOPT_PROXY_SSL_VERIFYHOST.3
+man/man3/CURLOPT_PROXY_SSL_VERIFYPEER.3
+man/man3/CURLOPT_PROXY_TLSAUTH_PASSWORD.3
+man/man3/CURLOPT_PROXY_TLSAUTH_TYPE.3
+man/man3/CURLOPT_PROXY_TLSAUTH_USERNAME.3
 man/man3/CURLOPT_PROXY_TRANSFER_MODE.3
 man/man3/CURLOPT_PUT.3
 man/man3/CURLOPT_QUOTE.3
diff -r e79f974b7a53 -r ade2c3b99b80 www/curl/distinfo
--- a/www/curl/distinfo Wed Dec 21 00:54:00 2016 +0000
+++ b/www/curl/distinfo Wed Dec 21 10:07:37 2016 +0000
@@ -1,9 +1,9 @@
-$NetBSD: distinfo,v 1.124 2016/11/02 07:09:38 maya Exp $
+$NetBSD: distinfo,v 1.125 2016/12/21 10:07:37 wiz Exp $
 
-SHA1 (curl-7.51.0.tar.bz2) = f02a14bbe580d2a8cf3bf45a79d39eb595220ac7
-RMD160 (curl-7.51.0.tar.bz2) = 234ca5a35fb911ad8428799c7186f07ae5df5965
-SHA512 (curl-7.51.0.tar.bz2) = f4da06a5ea8ef1553130cec9c162ecf51153208106473b52924dc75d57b564ef845347eb252942c138db4b5ccbc17b4fb3d026afc2d1cbec2ee1566046d11cbf
-Size (curl-7.51.0.tar.bz2) = 2570046 bytes
+SHA1 (curl-7.52.0.tar.bz2) = bbf74384097e9af74a1b9a37500bd814cb681c0a
+RMD160 (curl-7.52.0.tar.bz2) = 56038ef34b9837b3b6ea62a51b5f9530517d822d
+SHA512 (curl-7.52.0.tar.bz2) = 03b1539bdb9993fa4d4022dabca0ad5f923e6f71120ccbf800cda75e6b7c6da0256555a0cd80e9f121820d6647824ee80f35142409c42084ed8e27e5204b1f9a
+Size (curl-7.52.0.tar.bz2) = 2604185 bytes
 SHA1 (patch-aa) = d79a8d6c15863848f2328553cbc273bbc941f749
 SHA1 (patch-curl-config.in) = d0cc7bb6a5bf0b9257f40dcffce7093cc0098eb7
 SHA1 (patch-lib_hostcheck.c) = 8e772d3f91cdafae17281cc19004269ece0cf308
Prev by Date: [pkgsrc/trunk]: pkgsrc/doc Updated devel/nss to 3.27.2nb2
Next by Date: [pkgsrc/trunk]: pkgsrc/doc Updated www/ikiwiki to 3.20161219
Previous by Thread: [pkgsrc/trunk]: pkgsrc/doc Updated devel/nss to 3.27.2nb2
Next by Thread: [pkgsrc/trunk]: pkgsrc/doc Updated www/ikiwiki to 3.20161219
Indexes:
Home | Main Index | Thread Index | Old Index