| Name: | libcurl |
|---|---|
| Version: | 7.29.0 |
| Release: | 35.0.1.el7 |
| Architecture: | x86_64 |
| Group: | Development/Libraries |
| Size: | 435136 |
| License: | MIT |
| RPM: | libcurl-7.29.0-35.0.1.el7.x86_64.rpm |
| Source RPM: | curl-7.29.0-35.0.1.el7.src.rpm |
| Build Date: | Mon Oct 15 2018 |
| Build Host: | x86-ol7-builder-03.us.oracle.com |
| Vendor: | Oracle America |
| URL: | http://curl.haxx.se/ |
| Summary: | A library for getting files from web servers |
| Description: | libcurl is a free and easy-to-use client-side URL transfer library, supporting FTP, FTPS, HTTP, HTTPS, SCP, SFTP, TFTP, TELNET, DICT, LDAP, LDAPS, FILE, IMAP, SMTP, POP3 and RTSP. libcurl supports SSL certificates, HTTP POST, HTTP PUT, FTP uploading, HTTP form based upload, proxies, cookies, user+password authentication (Basic, Digest, NTLM, Negotiate, Kerberos4), file transfer resume, http proxy tunneling and more. |
- fix Common Criteria FIA_X509_EXT.1.1#test4 cRLSign requirement [OraBug 28608899] - update expired certificates in the test-suite [OraBug 28608899]
- fix incorrect use of a previously loaded certificate from file (related to CVE-2016-5420)
- acknowledge the --no-sessionid/CURLOPT_SSL_SESSIONID_CACHE option (required by the fix for CVE-2016-5419)
- fix re-using connections with wrong client cert (CVE-2016-5420) - fix TLS session resumption client cert bypass (CVE-2016-5419)
- configure: improve detection of GCC's -fvisibility= flag
- prevent curl_multi_wait() from missing an event (#1347904)
- curl.1: --disable-{eprt,epsv} are ignored for IPv6 hosts (#1305974)
- SSH: make CURLOPT_SSH_PUBLIC_KEYFILE treat "" as NULL (#1275769)
- prevent NSS from incorrectly re-using a session (#1269855) - call PR_Cleanup() in the upstream test-suite if NSPR is used (#1243324) - disable unreliable upstream test-case 2032 (#1241168)
- SSH: do not require public key file for user authentication (#1275769)