Thursday 13th February 2025
Fedora Project
Updated perltidy to 20250214 in F-42 and Rawhide (see CHANGES.md for details)
Updated proftpd (1.3.8c) in F-40, F-41, F-42, Rawhide and EL-9 to avoid NULL pointer dereferences in mod_ls (CVE-2024-57392, GH#1866)
Local Packages
Updated curl to 8.12.1:
All: Remove FIXME and TODO comments
asyn-thread: Fix build with 'CURL_DISABLE_SOCKETPAIR'
- asyn-thread: Fix HTTPS RR crash
asyn-thread: Fix the returned bitmask from Curl_resolver_getsock
asyn-thread: Survive a c-ares channel set to NULL
build: Add tool_hugehelp.c into IBMi build
checksrc.pl: Warn on FIXME/TODO comments
cmake/Find: Set '<Modulename>_FOUND' for compatibility when found via 'pkg-config'
- cmake: Add integration tests, run them in CI
- cmake: Always reference OpenSSL and ZLIB via imported targets
cmake: Avoid unnecessary '-L' for implicit link dirs
cmake: Drop 'LDAP_DEPRECATED=1' macro, to sync with autotools
cmake: Fix 'HAVE_GETHOSTBYNAME_R_*' detections with 'CURL_WERROR=ON'
cmake: Fix to detect 'HAVE_OPENSSL_SRP' in MSVC UWP builds
- cmake: Fix/add missing feature detections for Windows/MS-DOS
- cmake: Initialize variables where missing
cmake: Library order fixes for picky linkers (e.g. binutils 'ld')
- cmake: Normalize before matching paths with syspaths
cmake: Respect 'GNUTLS_CFLAGS' when detected via 'pkg-config'
cmake: Respect 'GNUTLS_LIBRARY_DIRS' in 'libcurl.pc' and 'curl-config'
cmake: Save a line with 'CMAKE_C_IMPLICIT_LINK_DIRECTORIES' exclusion
- cmake: Tidy up string append and list prepend syntax
configure/cmake: Check for realpath
configure/cmake: Set asyn-rr as feature only if httpsrr is enabled
content_encoding: #error on too old zlib
curl_global_sslset.md: Add SSL backend names
CURLOPT_SSH_KNOWNHOSTS.md: Strongly recommend using this
CURLSHOPT_SHARE.md: Adjust for the new SSL session cache
- docs: Better explain multi-part byte range behaviour
- docs: Use valid example domain names
generate.bat: Remove curl_get_line.c from the curlx file list
header.md: Mention 'Authorization:' and 'Cookie:' special treatment
- imap: TLS upgrade fix
INTERNALS: Fix c-ares, as we actually support 1.6.0 or later
- ldap: Drop support for legacy Novell LDAP SDK
lib: include necessary headers for 'inet_ntop'/'inet_pton'
- lib: Silence LibreSSL collision warning on non-MSVC Windows
libssh2: Comparison is always true because rc <= -1
libssh2: Raise lowest supported version to 1.2.8
libssh: Drop support for libssh older than 0.9.0
libssh: Silence '-Wconversion' with a cast (Windows 32-bit)
netrc: return code clean-up, fix missing file error
- openssl-quic: Ignore ciphers for h3
openssl: Fix out of scope variables in goto
- pop3: TLS upgrade fix
runtests: Fix the disabling of the memory tracking
runtests: Quote commands to support paths with spaces
- scache: Add magic checks
smb: Silence '-Warray-bounds' with gcc 13+
- smtp: TLS upgrade fix
SPONSORS.md: Clarify that we don't promise goods or services
test1516: Avoid failure due to spaces in path
test2080: Simplify, avoid the null byte
tests: Fix test 558, 1330 for MSVC, allow TrackMemory with MSVC in cmake
tidy-up: Make per-file 'ARRAYSIZE' macros global as 'CURL_ARRAYSIZE'
tool_cfgable: Sort struct fields by size, use bitfields for booleans
tool_getparam: Add "TLS required" flag for each such option
tool_progress: Fix percent output of large parallel transfers
tool_ssls: Switch to tool-specific get_line function
verbose.md: Mention how carriage-return might occur in headers
vquic: Make the "disable GSO" use infof, not failf
- vtls: Fix multissl-init
vtls: Eliminate 'data->state.ssl_scache'
wakeup_write: Make sure the eventfd write sends eight bytes
wolfssl: Silence compiler warning (MSVC 2019), simplify existing
I had to use libssh2 rather than libssh for the Fedora 28 and 29 builds since their versions of libssh are too old for curl now
Updated perl-Perl-Tidy to 20250214 as per the Fedora perltidy package
Updated proftpd (1.3.8c) as per the Fedora version