| Name: | libcurl |
|---|---|
| Version: | 7.29.0 |
| Release: | 35.el7 |
| Architecture: | x86_64 |
| Group: | Development/Libraries |
| Size: | 435120 |
| License: | MIT |
| RPM: | libcurl-7.29.0-35.el7.x86_64.rpm |
| Source RPM: | curl-7.29.0-35.el7.src.rpm |
| Build Date: | Fri Nov 04 2016 |
| Build Host: | x86-ol7-builder-01.us.oracle.com |
| Vendor: | Oracle America |
| URL: | http://curl.haxx.se/ |
| Summary: | A library for getting files from web servers |
| Description: | libcurl is a free and easy-to-use client-side URL transfer library, supporting FTP, FTPS, HTTP, HTTPS, SCP, SFTP, TFTP, TELNET, DICT, LDAP, LDAPS, FILE, IMAP, SMTP, POP3 and RTSP. libcurl supports SSL certificates, HTTP POST, HTTP PUT, FTP uploading, HTTP form based upload, proxies, cookies, user+password authentication (Basic, Digest, NTLM, Negotiate, Kerberos4), file transfer resume, http proxy tunneling and more. |
- fix incorrect use of a previously loaded certificate from file (related to CVE-2016-5420)
- acknowledge the --no-sessionid/CURLOPT_SSL_SESSIONID_CACHE option (required by the fix for CVE-2016-5419)
- fix re-using connections with wrong client cert (CVE-2016-5420) - fix TLS session resumption client cert bypass (CVE-2016-5419)
- configure: improve detection of GCC's -fvisibility= flag
- prevent curl_multi_wait() from missing an event (#1347904)
- curl.1: --disable-{eprt,epsv} are ignored for IPv6 hosts (#1305974)
- SSH: make CURLOPT_SSH_PUBLIC_KEYFILE treat "" as NULL (#1275769)
- prevent NSS from incorrectly re-using a session (#1269855) - call PR_Cleanup() in the upstream test-suite if NSPR is used (#1243324) - disable unreliable upstream test-case 2032 (#1241168)
- SSH: do not require public key file for user authentication (#1275769)
- implement 'curl --unix-socket' and CURLOPT_UNIX_SOCKET_PATH (#1263318) - improve parsing of URL-encoded user name and password (#1260178) - prevent test46 from failing due to expired cookie (#1258834)