[ol9_u0_baseos_base] curl-minimal-7.76.1-14.el9.aarch64

This is a replacement of the 'curl' package for minimal installations.  It
comes with a limited set of features compared to the 'curl' package.  On the
other hand, the package is smaller and requires fewer run-time dependencies to
be installed.

Changelog (Show File list) (Show related packages)

• Tue Oct 26 2021 Kamil Dudka <kdudka@redhat.com> - 7.76.1-14

  - re-disable HSTS in libcurl as an experimental feature (#2005874)

• Mon Oct 04 2021 Kamil Dudka <kdudka@redhat.com> - 7.76.1-13

  - disable more protocols and features in libcurl-minimal (#2005874)

• Fri Sep 17 2021 Kamil Dudka <kdudka@redhat.com> - 7.76.1-12

  - fix STARTTLS protocol injection via MITM (CVE-2021-22947)
  - fix protocol downgrade required TLS bypass (CVE-2021-22946)
  - fix use-after-free and double-free in MQTT sending (CVE-2021-22945)

• Mon Aug 09 2021 Mohan Boddu <mboddu@redhat.com> - 7.76.1-11

  - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags
    Related: rhbz#1991688

• Wed Jul 28 2021 Florian Weimer <fweimer@redhat.com> - 7.76.1-10

  - Rebuild to pick up OpenSSL 3.0 Beta ABI (#1984097)

• Fri Jul 23 2021 Kamil Dudka <kdudka@redhat.com> - 7.76.1-9

  - make explicit dependency on openssl work with alpha/beta builds of openssl

• Wed Jul 21 2021 Kamil Dudka <kdudka@redhat.com> - 7.76.1-8

  - fix TELNET stack contents disclosure again (CVE-2021-22925)
  - fix bad connection reuse due to flawed path name checks (CVE-2021-22924)

• Tue Jun 15 2021 Mohan Boddu <mboddu@redhat.com> - 7.76.1-6

  - Rebuilt for RHEL 9 BETA for openssl 3.0 Related: rhbz#1971065

• Wed Jun 02 2021 Kamil Dudka <kdudka@redhat.com> - 7.77.0-5

  - build the curl tool without metalink support (#1967213)

• Wed Jun 02 2021 Kamil Dudka <kdudka@redhat.com> - 7.76.1-4

  - fix SIGSEGV upon disconnect of a ldaps:// transfer (#1941925)