Script 'mail_helper' called by obssrc
Hello community,
here is the log from the commit of package curl for openSUSE:Factory checked in
at 2023-10-12 23:37:25
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/curl (Old)
and /work/SRC/openSUSE:Factory/.curl.new.1807 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "curl"
Thu Oct 12 23:37:25 2023 rev:190 rq:1116810 version:8.4.0
Changes:
--------
--- /work/SRC/openSUSE:Factory/curl/curl.changes 2023-09-13
20:44:17.785509706 +0200
+++ /work/SRC/openSUSE:Factory/.curl.new.1807/curl.changes 2023-10-12
23:37:26.514760861 +0200
@@ -1,0 +2,52 @@
+Wed Oct 11 06:33:28 UTC 2023 - Pedro Monreal <pmonr...@suse.com>
+
+- Update to 8.4.0:
+ * Security fixes:
+ - SOCKS5 heap buffer overflow [bsc#1215888, CVE-2023-38545]
+ - cookie injection with none file [bsc#1215889, CVE-2023-38546]
+ * Changes:
+ - curl: add support for the IPFS protocols via HTTP gateway
+ - curl_multi_get_handles: get easy handles from a multi handle
+ - mingw: delete support for legacy mingw.org toolchain
+ * Bugfixes:
+ - base64: also build for curl
+ - cf-socket: simulate slow/blocked receives in debug
+ - configure: check for the capath by default
+ - connect: expire the timeout when trying next
+ - connect: only start the happy eyeballs timer when needed
+ - cookie: do not store the expire or max-age strings
+ - cookie: remove unnecessary struct fields
+ - cookie: set ->running in cookie_init even if data is NULL
+ - create-dirs.d: clarify it also uses --output-dirs
+ - http2: refused stream handling for retry
+ - http: h1/h2 proxy unification
+ - http: use per-request counter to check too large headers
+ - idn: if idn2_check_version returns NULL, return error
+ - lib: enable hmac for digest as well
+ - lib: let the max filesize option stop too big transfers too
+ - lib: move handling of 'data->req.writer_stack' into Curl_client_write()
+ - lib: provide and use Curl_hexencode
+ - lib: use wrapper for curl_mime_data fseek callback
+ - libssh2: fix error message on failed pubkey-from-file
+ - libssh: cap SFTP packet size sent
+ - MQTT: improve receive of ACKs
+ - multi: do CURLM_CALL_MULTI_PERFORM at two more places
+ - multi: round the timeout up to prevent early wakeups
+ - openssl: improve ssl shutdown handling
+ - openssl: use X509_ALGOR_get0 instead of reaching into X509_ALGOR
+ - pytest: exclude test_03_goaway in CI runs due to timing dependency
+ - quic: set ciphers/curves the same way regular TLS does
+ - quiche: fix build error with --with-ca-fallback
+ - socks: return error if hostname too long for remote resolve
+ - tftpd: always use curl's own tftp.h
+ - tool_getparam: accept variable expansion on file names too
+ - upload-file.d: describe the file name slash/backslash handling
+ - url: fall back to http/https proxy env-variable if ws/wss not set
+ - url: fix netrc info message
+ - wolfssh: do cleanup in Curl_ssh_cleanup
+ - wolfssl: allow capath with CURLOPT_CAINFO_BLOB
+ - wolfssl: if CURLOPT_CAINFO_BLOB is set, ignore the CA files
+ - wolfssl: ignore errors in CA path
+ * Rebase libcurl-ocloexec.patch
+
+-------------------------------------------------------------------
Old:
----
curl-8.3.0.tar.xz
curl-8.3.0.tar.xz.asc
New:
----
curl-8.4.0.tar.xz
curl-8.4.0.tar.xz.asc
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ curl.spec ++++++
--- /var/tmp/diff_new_pack.Uluil5/_old 2023-10-12 23:37:27.318789965 +0200
+++ /var/tmp/diff_new_pack.Uluil5/_new 2023-10-12 23:37:27.322790110 +0200
@@ -21,7 +21,7 @@
# need ssl always for python-pycurl
%bcond_without openssl
Name: curl
-Version: 8.3.0
+Version: 8.4.0
Release: 0
Summary: A Tool for Transferring Data from URLs
License: curl
++++++ curl-8.3.0.tar.xz -> curl-8.4.0.tar.xz ++++++
++++ 71508 lines of diff (skipped)
++++++ libcurl-ocloexec.patch ++++++
--- /var/tmp/diff_new_pack.Uluil5/_old 2023-10-12 23:37:29.594872355 +0200
+++ /var/tmp/diff_new_pack.Uluil5/_new 2023-10-12 23:37:29.630873658 +0200
@@ -7,10 +7,10 @@
compile time is not enough.
-Index: curl-8.0.0/lib/file.c
+Index: curl-8.4.0/lib/file.c
===================================================================
---- curl-8.0.0.orig/lib/file.c
-+++ curl-8.0.0/lib/file.c
+--- curl-8.4.0.orig/lib/file.c
++++ curl-8.4.0/lib/file.c
@@ -232,7 +232,7 @@ static CURLcode file_connect(struct Curl
}
}
@@ -29,11 +29,11 @@
if(fd < 0) {
failf(data, "Can't open %s for writing", file->path);
return CURLE_WRITE_ERROR;
-Index: curl-8.0.0/lib/if2ip.c
+Index: curl-8.4.0/lib/if2ip.c
===================================================================
---- curl-8.0.0.orig/lib/if2ip.c
-+++ curl-8.0.0/lib/if2ip.c
-@@ -206,7 +206,7 @@ if2ip_result_t Curl_if2ip(int af,
+--- curl-8.4.0.orig/lib/if2ip.c
++++ curl-8.4.0/lib/if2ip.c
+@@ -208,7 +208,7 @@ if2ip_result_t Curl_if2ip(int af,
if(len >= sizeof(req.ifr_name))
return IF2IP_NOT_FOUND;
@@ -42,11 +42,11 @@
if(CURL_SOCKET_BAD == dummy)
return IF2IP_NOT_FOUND;
-Index: curl-8.0.0/configure.ac
+Index: curl-8.4.0/configure.ac
===================================================================
---- curl-8.0.0.orig/configure.ac
-+++ curl-8.0.0/configure.ac
-@@ -420,6 +420,8 @@ AC_DEFINE_UNQUOTED(OS, "${host}", [cpu-m
+--- curl-8.4.0.orig/configure.ac
++++ curl-8.4.0/configure.ac
+@@ -428,6 +428,8 @@ AC_DEFINE_UNQUOTED(OS, "${host}", [cpu-m
# Silence warning: ar: 'u' modifier ignored since 'D' is the default
AC_SUBST(AR_FLAGS, [cr])
@@ -55,19 +55,19 @@
dnl This defines _ALL_SOURCE for AIX
CURL_CHECK_AIX_ALL_SOURCE
-Index: curl-8.0.0/lib/hostip.c
+Index: curl-8.4.0/lib/hostip.c
===================================================================
---- curl-8.0.0.orig/lib/hostip.c
-+++ curl-8.0.0/lib/hostip.c
-@@ -48,6 +48,7 @@
+--- curl-8.4.0.orig/lib/hostip.c
++++ curl-8.4.0/lib/hostip.c
+@@ -44,6 +44,7 @@
+ #include <setjmp.h>
#include <signal.h>
- #endif
+#include <fcntl.h>
#include "urldata.h"
#include "sendf.h"
#include "hostip.h"
-@@ -582,7 +583,7 @@ bool Curl_ipv6works(struct Curl_easy *da
+@@ -609,7 +610,7 @@ bool Curl_ipv6works(struct Curl_easy *da
else {
int ipv6_works = -1;
/* probe to see if we have a working IPv6 stack */
@@ -76,11 +76,11 @@
if(s == CURL_SOCKET_BAD)
/* an IPv6 address was requested but we can't get/use one */
ipv6_works = 0;
-Index: curl-8.0.0/lib/cf-socket.c
+Index: curl-8.4.0/lib/cf-socket.c
===================================================================
---- curl-8.0.0.orig/lib/cf-socket.c
-+++ curl-8.0.0/lib/cf-socket.c
-@@ -252,7 +252,9 @@ static CURLcode socket_open(struct Curl_
+--- curl-8.4.0.orig/lib/cf-socket.c
++++ curl-8.4.0/lib/cf-socket.c
+@@ -274,7 +274,9 @@ static CURLcode socket_open(struct Curl_
}
else {
/* opensocket callback not set, so simply create the socket now */
