Wednesday 14th June 2017
Fedora Project
Updated python-paramiko to 2.2.1 in Rawhide
Local Packages
Updated curl to 7.54.1:
CVE-2017-9502: file: URL buffer overflow
curl: Show the libcurl release date in --version output
openssl: Fix memory leak in servercert
- tests: Remove the html and PDF versions from the tarball
mbedtls: Enable NTLM (and SMB) even if MD4 support is unavailable
typecheck-gcc: Handle function pointers properly
llist: No longer uses malloc
gnutls: Removed some code when --disable-verbose is configured
lib: Fix maybe-uninitialized warnings
multi: Clarify condition in curl_multi_wait
schannel: Don't treat encrypted partial record as pending data
configure: Fix the -ldl check for openssl, add -lpthread check
configure: Accept -Og and -Ofast GCC flags
Makefile: Avoid use of GNU-specific form of $<
if2ip: Fix -Wcast-align warning
configure: Stop prepending to LDFLAGS, CPPFLAGS
curl: Set a 100K buffer size by default
typecheck-gcc: Fix _curl_is_slist_info
nss: Do not leak PKCS #11 slot while loading a key
nss: Load libnssckbi.so if no other trust is specified
examples: ftpuploadfrommem.c
url: Declare get_protocol_family() static
examples/cookie_interface.c: Changed to example.com
test1443: Test --remote-time
curl: Use utimes instead of obsolescent utime when available
url: Fixed a memory leak on OOM while setting CURLOPT_BUFFERSIZE
curl_rtmp: Fix missing-variable-declarations warnings
- tests: Fixed OOM handling of unit tests to abort test
curl_setup: Ensure no more than one IDN lib is enabled
tool: Fix missing prototype warnings for CURL_DOES_CONVERSIONS
CURLOPT_BUFFERSIZE: 1024 bytes is now the minimum size
curl: Non-boolean command line args reject --no- prefixes
telnet: Write full buffer instead of byte-by-byte
typecheck-gcc: Add missing string options
typecheck-gcc: Add support for CURLINFO_SOCKET
- opt man pages: They all have examples now
curl_setup_once: Use SEND_QUAL_ARG2 for swrite
test557: Set a known good numeric locale
schannel: Return a more specific error code for SEC_E_UNTRUSTED_ROOT
tests/server: Make string literals const
runtests: Use -R for random order
unit1305: Fix compiler warning
curl_slist_append.3: Clarify a NULL input creates a new list
tests/server: Run checksrc by default in debug-builds
tests: Fix -Wcast-qual warnings
runtests.pl: Simplify the datacheck read section
curl: Remove --environment and tool_writeenv.c
buildconf: Fix hang on IRIX
tftp: Silence bad-function-cast warning
asyn-thread: Fix unused macro warnings
tool_parsecfg: Fix -Wcast-qual warning
sendrecv: Fix MinGW-w64 warning
test537: Use correct variable type
rand: Treat fake entropy the same regardless of endianness
curl: Generate the --help output
tests: Removed redundant --trace-ascii arguments
multi: Assign IDs to all timers and make each timer singleton
multi: Use a fixed array of timers instead of malloc
mbedtls: Support server renegotiation request
pipeline: Fix mistakenly trying to pipeline POSTs
lib510: Don't write past the end of the buffer if it's too small
CURLOPT_HTTPPROXYTUNNEL.3: Clarify, add example
SecureTransport/DarwinSSL: Implement public key pinning
curl.1: Clarify --config
curl_sasl: Fix build error with CURL_DISABLE_CRYPTO_AUTH + USE_NTLM
darwinssl: Fix exception when processing a client-side certificate
curl.1: Mention --oauth2-bearer's <token> argument
mkhelp.pl: Do not add current time into curl binary
asiohiper.cpp / evhiperfifo.c: Deal with negative timerfunction input
ssh: Fix memory leak in disconnect due to timeout
- tests: Stabilize test 1034
cmake: Auto detection of CURL_CA_BUNDLE/CURL_CA_PATH
assert: Avoid, use DEBUGASSERT instead
LDAP: Using ldap_bind_s on Windows with methods
redirect: Store the "would redirect to" URL when max redirs is reached
winbuild: Fix the nghttp2 build
examples: Fix -Wimplicit-fallthrough warnings
time: Fix type conversions and compiler warnings
mbedtls: Fix variable shadow warning
test557: Fix ubsan runtime error due to int left shift
transfer: Init the infilesize from the postfields
docs: Clarify NO_PROXY further
build-wolfssl: Sync config with wolfSSL 3.11
curl-compilers.m4: Enable -Wshift-sign-overflow for clang
example/externalsocket.c: Make it use CLOSESOCKETFUNCTION too
lib574.c: Use correct callback proto
lib583: Fix compiler warning
curl-compilers.m4: Fix compiler_num for clang
typecheck-gcc.h: Separate getinfo slist checks from other pointers
typecheck-gcc.h: Check CURLINFO_TLS_SSL_PTR and CURLINFO_TLS_SESSION
typecheck-gcc.h: Check CURLINFO_CERTINFO
build: Provide easy code coverage measuring
test1537: Dedicated tests of the URL (un)escape API calls
curl_endian: Remove unused functions
test1538: Verify the libcurl strerror API calls
MD(4|5): Silence cast-align clang warning
dedotdot: Fixed output for ".." and "." only input
cyassl: Define build macros before including ssl.h
updatemanpages.pl: Error out on too old git version
curl_sasl: Fix unused-variable warning
x509asn1: Fix implicit-fallthrough warning with GCC 7
libtest: Fix implicit-fallthrough warnings with GCC 7
BINDINGS: Add Ring binding
curl_ntlm_core: Pass unsigned char to toupper
test1262: Verify ftp download with -z for "if older than this"
test1521: Test all curl_easy_setopt options
typecheck-gcc: Allow CURLOPT_STDERR to be NULL too
metalink: Remove unused printf() argument
file: Make speedcheck use current time for checks
configure: Fix link with librtmp when specifying path
examples/multi-uv.c: Fix deprecated symbol
cmake: Fix inconsistency regarding mbed TLS include directory
setopt: Check CURLOPT_ADDRESS_SCOPE option range
gitignore: Ignore all vim swap files
urlglob: Fix division by zero
libressl: OCSP and intermediate certs workaround no longer needed