Name: | libcurl |
---|---|
Version: | 7.29.0 |
Release: | 51.el7 |
Architecture: | i686 |
Group: | Development/Libraries |
Size: | 433360 |
License: | MIT |
RPM: | libcurl-7.29.0-51.el7.i686.rpm |
Source RPM: | curl-7.29.0-51.el7.src.rpm |
Build Date: | Wed Oct 31 2018 |
Build Host: | x86-ol7-builder-02.us.oracle.com |
Vendor: | Oracle America |
URL: | http://curl.haxx.se/ |
Summary: | A library for getting files from web servers |
Description: | libcurl is a free and easy-to-use client-side URL transfer library, supporting FTP, FTPS, HTTP, HTTPS, SCP, SFTP, TFTP, TELNET, DICT, LDAP, LDAPS, FILE, IMAP, SMTP, POP3 and RTSP. libcurl supports SSL certificates, HTTP POST, HTTP PUT, FTP uploading, HTTP form based upload, proxies, cookies, user+password authentication (Basic, Digest, NTLM, Negotiate, Kerberos4), file transfer resume, http proxy tunneling and more. |
- require a new enough version of nss-pem to avoid regression in yum (#1610998)
- remove dead code, detected by Coverity Analysis - remove unused variable, detected by GCC and Clang
- make curl --speed-limit work with TFTP (#1584750)
- fix RTSP bad headers buffer over-read (CVE-2018-1000301) - fix FTP path trickery leads to NIL byte out of bounds write (CVE-2018-1000120) - fix LDAP NULL pointer dereference (CVE-2018-1000121) - fix RTSP RTP buffer over-read (CVE-2018-1000122) - http: prevent custom Authorization headers in redirects (CVE-2018-1000007) - doc: --tlsauthtype works only if built with TLS-SRP support (#1542256) - update certificates in the test-suite because they expire soon (#1572723)
- make NSS deallocate PKCS #11 objects early enough (#1510247)
- reset authentication state when HTTP transfer is done (#1511523)
- fix buffer overflow while processing IMAP FETCH response (CVE-2017-1000257)
- drop 0109-curl-7.29.0-crl-valgrind.patch no longer needed (#1427883)
- curl --socks5-{basic,gssapi}: control socks5 auth (#1409208) - nss: fix a memory leak when CURLOPT_CRLFILE is used (#1427883) - nss: do not leak PKCS #11 slot while loading a key (#1444860) - nss: fix a possible use-after-free in SelectClientCert() (#1473158)
- fix use of uninitialized variable detected by Covscan