Name: | curl |
---|---|
Version: | 7.61.1 |
Release: | 18.el8 |
Architecture: | aarch64 |
Group: | Unspecified |
Size: | 733677 |
License: | MIT |
RPM: | curl-7.61.1-18.el8.aarch64.rpm |
Source RPM: | curl-7.61.1-18.el8.src.rpm |
Build Date: | Thu Apr 08 2021 |
Build Host: | ca-buildarm05 |
Vendor: | Oracle America |
URL: | https://curl.haxx.se/ |
Summary: | A utility for getting files from remote servers (FTP, HTTP, and others) |
Description: | curl is a command line tool for transferring data with URL syntax, supporting FTP, FTPS, HTTP, HTTPS, SCP, SFTP, TFTP, TELNET, DICT, LDAP, LDAPS, FILE, IMAP, SMTP, POP3 and RTSP. curl supports SSL certificates, HTTP POST, HTTP PUT, FTP uploading, HTTP form based upload, proxies, cookies, user+password authentication (Basic, Digest, NTLM, Negotiate, kerberos...), file transfer resume, proxy tunneling and a busload of other useful tricks. |
- http: send payload when (proxy) authentication is done (#1918692) - curl: Inferior OCSP verification (CVE-2020-8286) - libcurl: FTP wildcard stack overflow (CVE-2020-8285) - curl: trusting FTP PASV responses (CVE-2020-8284)
- validate an ssl connection using an intermediate certificate (#1895355)
- fix multiarch conflicts in libcurl-minimal (#1895391)
- do not crash when HTTPS_PROXY and NO_PROXY are used together (#1873327) - libcurl: wrong connect-only connection (CVE-2020-8231)
- avoid overwriting a local file with -J (CVE-2020-8177)
- load built-in openssl engines (#1854369)
- double free due to subsequent call of realloc() (CVE-2019-5481) - fix heap buffer overflow in function tftp_receive_packet() (CVE-2019-5482) - fix TFTP receive buffer overflow (CVE-2019-5436)
- rebuild with updated annobin to prevent Execshield RPMDiff check from failing
- fix SMTP end-of-response out-of-bounds read (CVE-2019-3823) - fix NTLMv2 type-3 header stack buffer overflow (CVE-2019-3822) - fix NTLM type-2 out-of-bounds buffer read (CVE-2018-16890) - xattr: strip credentials from any URL that is stored (CVE-2018-20483)
- do not let libssh create a new socket for SCP/SFTP (#1669156)