[ol8_baseos_latest] libcurl-minimal-7.61.1-11.el8.x86_64

This is a replacement of the 'libcurl' package for minimal installations.  It
comes with a limited set of features compared to the 'libcurl' package.  On the
other hand, the package is smaller and requires fewer run-time dependencies to
be installed.

Changelog (Show File list) (Show related packages)

• Mon May 13 2019 Kamil Dudka <kdudka@redhat.com> - 7.61.1-11

  - rebuild with updated annobin to prevent Execshield RPMDiff check from failing

• Fri May 10 2019 Kamil Dudka <kdudka@redhat.com> - 7.61.1-10

  - fix SMTP end-of-response out-of-bounds read (CVE-2019-3823)
  - fix NTLMv2 type-3 header stack buffer overflow (CVE-2019-3822)
  - fix NTLM type-2 out-of-bounds buffer read (CVE-2018-16890)
  - xattr: strip credentials from any URL that is stored (CVE-2018-20483)

• Mon Feb 18 2019 Kamil Dudka <kdudka@redhat.com> - 7.61.1-9

  - do not let libssh create a new socket for SCP/SFTP (#1669156)

• Fri Jan 11 2019 Kamil Dudka <kdudka@redhat.com> - 7.61.1-8

  - curl -J: do not append to the destination file (#1660827)

• Thu Nov 15 2018 Kamil Dudka <kdudka@redhat.com> - 7.61.1-7

  - make the patch for CVE-2018-16842 apply properly (CVE-2018-16842)

• Mon Nov 05 2018 Kamil Dudka <kdudka@redhat.com> - 7.61.1-6

  - SASL password overflow via integer overflow (CVE-2018-16839)
  - fix use-after-free in handle close (CVE-2018-16840)
  - fix bad arethmetic when outputting warnings to stderr (CVE-2018-16842)

• Thu Oct 11 2018 Kamil Dudka <kdudka@redhat.com> - 7.61.1-5

  - enable TLS 1.3 post-handshake auth in OpenSSL (#1636900)

• Mon Oct 08 2018 Kamil Dudka <kdudka@redhat.com> - 7.61.1-4

  - make the built-in manual compressed again (#1620217)

• Mon Oct 08 2018 Kamil Dudka <kdudka@redhat.com> - 7.61.1-3

  - update the documentation of --tlsv1.0 in curl(1) man page (#1620217)

• Thu Oct 04 2018 Kamil Dudka <kdudka@redhat.com> - 7.61.1-2

  - enforce versioned libpsl dependency for libcurl (#1631804)