pkgsrc-Changes-HG archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]
[pkgsrc/trunk]: pkgsrc/www/curl Updated curl to 7.52.0. Security fixes.
details: https://anonhg.NetBSD.org/pkgsrc/rev/ade2c3b99b80
branches: trunk
changeset: 356185:ade2c3b99b80
user: wiz <wiz%pkgsrc.org@localhost>
date: Wed Dec 21 10:07:37 2016 +0000
description:
Updated curl to 7.52.0. Security fixes.
Version 7.52.0 (20 Dec 2016)
Changes:
nss: map CURL_SSLVERSION_DEFAULT to NSS default
vtls: support TLS 1.3 via CURL_SSLVERSION_TLSv1_3
curl: introduce the --tlsv1.3 option to force TLS 1.3
curl: Add --retry-connrefused
proxy: Support HTTPS proxy and SOCKS+HTTP(s)
add CURLINFO_SCHEME, CURLINFO_PROTOCOL, and %{scheme}
curl: add --fail-early
Bugfixes:
CVE-2016-9586: printf floating point buffer overflow
CVE-2016-9952: Win CE schannel cert wildcard matches too much
CVE-2016-9953: Win CE schannel cert name out of buffer read
msvc: removed a straggling reference to strequal.c
winbuild: remove strcase.obj from curl build
examples: bugfixed multi-uv.c
configure: verify that compiler groks -Werror=partial-availability
mbedtls: fix build with mbedtls versions < 2.4.0
dist: add unit test CMakeLists.txt to the tarball
curl -w: added more decimal digits to timing counters
easy: Initialize info variables on easy init and duphandle
cmake: disable poll for macOS
http2: Don't send header fields prohibited by HTTP/2 spec
ssh: check md5 fingerprints case insensitively (regression)
openssl: initial TLS 1.3 adaptions
curl_formadd.3: *_FILECONTENT and *_FILE need the file to be kept
printf: fix ".*f" handling
examples/fileupload.c: fclose the file as well
SPNEGO: Fix memory leak when authentication fails
realloc: use Curl_saferealloc to avoid common mistakes
openssl: make sure to fail in the unlikely event that PRNG seeding fails
URL-parser: for file://[host]/ URLs, the [host] must be localhost
timeval: prefer time_t to hold seconds instead of long
Curl_rand: fixed and moved to rand.c
glob: fix [a-c] globbing regression
darwinssl: fix SSL client certificate not found on MacOS Sierra
curl.1: Clarify --dump-header only writes received headers
http2: Fix address sanitizer memcpy warning
http2: Use huge HTTP/2 windows
connects: Don't mix unix domain sockets with regular ones
url: Fix conn reuse for local ports and interfaces
x509: Limit ASN.1 structure sizes to 256K
checksrc: add more checks
winbuild: add config option ENABLE_NGHTTP2
http2: check nghttp2_session_set_local_window_size exists
http2: Fix crashes when parent stream gets aborted
CURLOPT_CONNECT_TO: Skip non-matching "connect-to" entries
URL parser: reject non-numerical port numbers
CONNECT: reject TE or CL in 2xx responses
CONNECT: read responses one byte at a time
curl: support zero-length argument strings in config files
openssl: don't use OpenSSL's ERR_PACK
curl.1: generated with the new man page system
curl_easy_recv: Improve documentation and example program
Curl_getconnectinfo: avoid checking if the connection is closed
CIPHERS.md: attempt to document TLS cipher names
diffstat:
www/curl/Makefile | 4 ++--
www/curl/PLIST | 23 ++++++++++++++++++++++-
www/curl/distinfo | 10 +++++-----
3 files changed, 29 insertions(+), 8 deletions(-)
diffs (90 lines):
diff -r e79f974b7a53 -r ade2c3b99b80 www/curl/Makefile
--- a/www/curl/Makefile Wed Dec 21 00:54:00 2016 +0000
+++ b/www/curl/Makefile Wed Dec 21 10:07:37 2016 +0000
@@ -1,6 +1,6 @@
-# $NetBSD: Makefile,v 1.173 2016/11/02 07:09:38 maya Exp $
+# $NetBSD: Makefile,v 1.174 2016/12/21 10:07:37 wiz Exp $
-DISTNAME= curl-7.51.0
+DISTNAME= curl-7.52.0
CATEGORIES= www
MASTER_SITES= https://curl.haxx.se/download/
EXTRACT_SUFX= .tar.bz2
diff -r e79f974b7a53 -r ade2c3b99b80 www/curl/PLIST
--- a/www/curl/PLIST Wed Dec 21 00:54:00 2016 +0000
+++ b/www/curl/PLIST Wed Dec 21 10:07:37 2016 +0000
@@ -1,4 +1,4 @@
-@comment $NetBSD: PLIST,v 1.60 2016/11/02 07:09:38 maya Exp $
+@comment $NetBSD: PLIST,v 1.61 2016/12/21 10:07:37 wiz Exp $
bin/curl
bin/curl-config
include/curl/curl.h
@@ -40,7 +40,9 @@
man/man3/CURLINFO_PRIMARY_IP.3
man/man3/CURLINFO_PRIMARY_PORT.3
man/man3/CURLINFO_PRIVATE.3
+man/man3/CURLINFO_PROTOCOL.3
man/man3/CURLINFO_PROXYAUTH_AVAIL.3
+man/man3/CURLINFO_PROXY_SSL_VERIFYRESULT.3
man/man3/CURLINFO_REDIRECT_COUNT.3
man/man3/CURLINFO_REDIRECT_TIME.3
man/man3/CURLINFO_REDIRECT_URL.3
@@ -50,6 +52,7 @@
man/man3/CURLINFO_RTSP_CSEQ_RECV.3
man/man3/CURLINFO_RTSP_SERVER_CSEQ.3
man/man3/CURLINFO_RTSP_SESSION_ID.3
+man/man3/CURLINFO_SCHEME.3
man/man3/CURLINFO_SIZE_DOWNLOAD.3
man/man3/CURLINFO_SIZE_UPLOAD.3
man/man3/CURLINFO_SPEED_DOWNLOAD.3
@@ -200,6 +203,7 @@
man/man3/CURLOPT_POSTQUOTE.3
man/man3/CURLOPT_POSTREDIR.3
man/man3/CURLOPT_PREQUOTE.3
+man/man3/CURLOPT_PRE_PROXY.3
man/man3/CURLOPT_PRIVATE.3
man/man3/CURLOPT_PROGRESSDATA.3
man/man3/CURLOPT_PROGRESSFUNCTION.3
@@ -212,7 +216,24 @@
man/man3/CURLOPT_PROXYTYPE.3
man/man3/CURLOPT_PROXYUSERNAME.3
man/man3/CURLOPT_PROXYUSERPWD.3
+man/man3/CURLOPT_PROXY_CAINFO.3
+man/man3/CURLOPT_PROXY_CAPATH.3
+man/man3/CURLOPT_PROXY_CRLFILE.3
+man/man3/CURLOPT_PROXY_KEYPASSWD.3
+man/man3/CURLOPT_PROXY_PINNEDPUBLICKEY.3
man/man3/CURLOPT_PROXY_SERVICE_NAME.3
+man/man3/CURLOPT_PROXY_SSLCERT.3
+man/man3/CURLOPT_PROXY_SSLCERTTYPE.3
+man/man3/CURLOPT_PROXY_SSLKEY.3
+man/man3/CURLOPT_PROXY_SSLKEYTYPE.3
+man/man3/CURLOPT_PROXY_SSLVERSION.3
+man/man3/CURLOPT_PROXY_SSL_CIPHER_LIST.3
+man/man3/CURLOPT_PROXY_SSL_OPTIONS.3
+man/man3/CURLOPT_PROXY_SSL_VERIFYHOST.3
+man/man3/CURLOPT_PROXY_SSL_VERIFYPEER.3
+man/man3/CURLOPT_PROXY_TLSAUTH_PASSWORD.3
+man/man3/CURLOPT_PROXY_TLSAUTH_TYPE.3
+man/man3/CURLOPT_PROXY_TLSAUTH_USERNAME.3
man/man3/CURLOPT_PROXY_TRANSFER_MODE.3
man/man3/CURLOPT_PUT.3
man/man3/CURLOPT_QUOTE.3
diff -r e79f974b7a53 -r ade2c3b99b80 www/curl/distinfo
--- a/www/curl/distinfo Wed Dec 21 00:54:00 2016 +0000
+++ b/www/curl/distinfo Wed Dec 21 10:07:37 2016 +0000
@@ -1,9 +1,9 @@
-$NetBSD: distinfo,v 1.124 2016/11/02 07:09:38 maya Exp $
+$NetBSD: distinfo,v 1.125 2016/12/21 10:07:37 wiz Exp $
-SHA1 (curl-7.51.0.tar.bz2) = f02a14bbe580d2a8cf3bf45a79d39eb595220ac7
-RMD160 (curl-7.51.0.tar.bz2) = 234ca5a35fb911ad8428799c7186f07ae5df5965
-SHA512 (curl-7.51.0.tar.bz2) = f4da06a5ea8ef1553130cec9c162ecf51153208106473b52924dc75d57b564ef845347eb252942c138db4b5ccbc17b4fb3d026afc2d1cbec2ee1566046d11cbf
-Size (curl-7.51.0.tar.bz2) = 2570046 bytes
+SHA1 (curl-7.52.0.tar.bz2) = bbf74384097e9af74a1b9a37500bd814cb681c0a
+RMD160 (curl-7.52.0.tar.bz2) = 56038ef34b9837b3b6ea62a51b5f9530517d822d
+SHA512 (curl-7.52.0.tar.bz2) = 03b1539bdb9993fa4d4022dabca0ad5f923e6f71120ccbf800cda75e6b7c6da0256555a0cd80e9f121820d6647824ee80f35142409c42084ed8e27e5204b1f9a
+Size (curl-7.52.0.tar.bz2) = 2604185 bytes
SHA1 (patch-aa) = d79a8d6c15863848f2328553cbc273bbc941f749
SHA1 (patch-curl-config.in) = d0cc7bb6a5bf0b9257f40dcffce7093cc0098eb7
SHA1 (patch-lib_hostcheck.c) = 8e772d3f91cdafae17281cc19004269ece0cf308
Home |
Main Index |
Thread Index |
Old Index