Index index by Group index by Distribution index by Vendor index by creation date index by Name Mirrors Help Search

libcurl-minimal-7.76.1-21.el9 RPM for s390x

From CentOS Stream 9 BaseOS for s390x

Name: libcurl-minimal Distribution: CentOS
Version: 7.76.1 Vendor: CentOS
Release: 21.el9 Build date: Sun Oct 30 23:56:45 2022
Group: Unspecified Build host: s390-03.stream.rdu2.redhat.com
Size: 526158 Source RPM: curl-7.76.1-21.el9.src.rpm
Packager: builder@centos.org
Url: https://curl.se/
Summary: Conservatively configured build of libcurl for minimal installations
This is a replacement of the 'libcurl' package for minimal installations.  It
comes with a limited set of features compared to the 'libcurl' package.  On the
other hand, the package is smaller and requires fewer run-time dependencies to
be installed.

Provides

Requires

License

MIT

Changelog

* Wed Oct 26 2022 Kamil Dudka <kdudka@redhat.com> - 7.76.1-21
  - fix POST following PUT confusion (CVE-2022-32221)
* Fri Sep 02 2022 Kamil Dudka <kdudka@redhat.com> - 7.76.1-20
  - control code in cookie denial of service (CVE-2022-35252)
* Wed Jun 29 2022 Kamil Dudka <kdudka@redhat.com> - 7.76.1-19
  - fix unpreserved file permissions (CVE-2022-32207)
  - fix HTTP compression denial of service (CVE-2022-32206)
  - fix FTP-KRB bad message verification (CVE-2022-32208)
* Wed May 11 2022 Kamil Dudka <kdudka@redhat.com> - 7.76.1-18
  - fix too eager reuse of TLS and SSH connections (CVE-2022-27782)
* Mon May 02 2022 Kamil Dudka <kdudka@redhat.com> - 7.76.1-17
  - fix leak of SRP credentials in redirects (CVE-2022-27774)
* Fri Apr 29 2022 Kamil Dudka <kdudka@redhat.com> - 7.76.1-16
  - add missing tests to Makefile
* Thu Apr 28 2022 Kamil Dudka <kdudka@redhat.com> - 7.76.1-15
  - fix credential leak on redirect (CVE-2022-27774)
  - fix auth/cookie leak on redirect (CVE-2022-27776)
  - fix bad local IPv6 connection reuse (CVE-2022-27775)
  - fix OAUTH2 bearer bypass in connection re-use (CVE-2022-22576)
* Tue Oct 26 2021 Kamil Dudka <kdudka@redhat.com> - 7.76.1-14
  - re-disable HSTS in libcurl as an experimental feature (#2005874)
* Mon Oct 04 2021 Kamil Dudka <kdudka@redhat.com> - 7.76.1-13
  - disable more protocols and features in libcurl-minimal (#2005874)
* Fri Sep 17 2021 Kamil Dudka <kdudka@redhat.com> - 7.76.1-12
  - fix STARTTLS protocol injection via MITM (CVE-2021-22947)
  - fix protocol downgrade required TLS bypass (CVE-2021-22946)
  - fix use-after-free and double-free in MQTT sending (CVE-2021-22945)
* Mon Aug 09 2021 Mohan Boddu <mboddu@redhat.com> - 7.76.1-11
  - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags
    Related: rhbz#1991688
* Wed Jul 28 2021 Florian Weimer <fweimer@redhat.com> - 7.76.1-10
  - Rebuild to pick up OpenSSL 3.0 Beta ABI (#1984097)
* Fri Jul 23 2021 Kamil Dudka <kdudka@redhat.com> - 7.76.1-9
  - make explicit dependency on openssl work with alpha/beta builds of openssl
* Wed Jul 21 2021 Kamil Dudka <kdudka@redhat.com> - 7.76.1-8
  - fix TELNET stack contents disclosure again (CVE-2021-22925)
  - fix bad connection reuse due to flawed path name checks (CVE-2021-22924)
* Tue Jun 15 2021 Mohan Boddu <mboddu@redhat.com> - 7.76.1-6
  - Rebuilt for RHEL 9 BETA for openssl 3.0 Related: rhbz#1971065
* Wed Jun 02 2021 Kamil Dudka <kdudka@redhat.com> - 7.77.0-5
  - build the curl tool without metalink support (#1967213)
* Wed Jun 02 2021 Kamil Dudka <kdudka@redhat.com> - 7.76.1-4
  - fix SIGSEGV upon disconnect of a ldaps:// transfer (#1941925)
* Wed May 26 2021 Kamil Dudka <kdudka@redhat.com> - 7.76.1-3
  - fix TLS session caching disaster (CVE-2021-22901)
  - fix TELNET stack contents disclosure (CVE-2021-22898)
* Mon May 03 2021 Kamil Dudka <kdudka@redhat.com> - 7.76.1-2
  - http2: fix resource leaks detected by Coverity
* Fri Apr 23 2021 Kamil Dudka <kdudka@redhat.com> - 7.76.1-1
  - new upstream release
* Fri Apr 23 2021 Kamil Dudka <kdudka@redhat.com> - 7.76.0-1
  - new upstream release, which fixes the following vulnerabilities
      CVE-2021-22890 - TLS 1.3 session ticket proxy host mixup
      CVE-2021-22876 - Automatic referer leaks credentials
* Thu Apr 15 2021 Mohan Boddu <mboddu@redhat.com> - 7.75.0-4
  - Rebuilt for RHEL 9 BETA on Apr 15th 2021. Related: rhbz#1947937
* Wed Mar 24 2021 Kamil Dudka <kdudka@redhat.com> - 7.75.0-3
  - fix SIGSEGV upon disconnect of a ldaps:// transfer (#1941925)
* Tue Feb 23 2021 Kamil Dudka <kdudka@redhat.com> - 7.75.0-2
  - build-require python3-impacket only on Fedora
* Wed Feb 03 2021 Kamil Dudka <kdudka@redhat.com> - 7.75.0-1
  - new upstream release
* Tue Jan 26 2021 Kamil Dudka <kdudka@redhat.com> - 7.74.0-4
  - do not use stunnel for tests on s390x builds to avoid spurious failures
* Tue Jan 26 2021 Fedora Release Engineering <releng@fedoraproject.org> - 7.74.0-3
  - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
* Wed Dec 09 2020 Kamil Dudka <kdudka@redhat.com> - 7.74.0-2
  - do not rewrite shebangs in test-suite to use python3 explicitly
* Wed Dec 09 2020 Kamil Dudka <kdudka@redhat.com> - 7.74.0-1
  - new upstream release, which fixes the following vulnerabilities
      CVE-2020-8286 - curl: Inferior OCSP verification
      CVE-2020-8285 - libcurl: FTP wildcard stack overflow
      CVE-2020-8284 - curl: trusting FTP PASV responses

Files

/usr/lib/.build-id
/usr/lib/.build-id/d1
/usr/lib/.build-id/d1/13fa61791dd7e425180d84d8fcd60a1aa648ab
/usr/lib64/libcurl.so.4
/usr/lib64/libcurl.so.4.7.0
/usr/share/licenses/libcurl-minimal
/usr/share/licenses/libcurl-minimal/COPYING


Generated by rpm2html 1.8.1

Fabrice Bellet, Tue Mar 5 03:19:01 2024