openembedded-core.git/meta/recipes-support/curl, branch master Mirror of openembedded-core curl: upgrade to 7.53.1 2017-03-11T16:08:49+00:00 Fan Xin fan.xin@jp.fujitsu.com 2017-03-10T09:54:47+00:00 f34ab1aae3c9cb2a4068ec684492df1a48f5cd4d Signed-off-by: Fan Xin <fan.xin@jp.fujitsu.com> Signed-off-by: Ross Burton <ross.burton@intel.com> 
Signed-off-by: Fan Xin <fan.xin@jp.fujitsu.com>
Signed-off-by: Ross Burton <ross.burton@intel.com>
curl: upgrade to 7.53.0 2017-03-01T12:54:19+00:00 Oleksandr Kravchuk oleksandr.kravchuk@pelagicore.com 2017-02-23T12:33:34+00:00 8889426d822fb403db1c2263e88ed7608202aafa Signed-off-by: Oleksandr Kravchuk <oleksandr.kravchuk@pelagicore.com> Signed-off-by: Ross Burton <ross.burton@intel.com> 
Signed-off-by: Oleksandr Kravchuk <oleksandr.kravchuk@pelagicore.com>
Signed-off-by: Ross Burton <ross.burton@intel.com>
recipes: Make use of the new bb.utils.filter() function 2017-03-01T11:17:22+00:00 Peter Kjellerstedt peter.kjellerstedt@axis.com 2017-02-27T13:02:50+00:00 0a1427bf9aeeda6bee2cc0af8da4ea5fd90aef6f Signed-off-by: Peter Kjellerstedt <peter.kjellerstedt@axis.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> 
Signed-off-by: Peter Kjellerstedt <peter.kjellerstedt@axis.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
curl: upgrade to 7.52.1 2017-01-09T13:34:30+00:00 Oleksandr Kravchuk oleksandr.kravchuk@pelagicore.com 2017-01-04T08:19:27+00:00 d4218bb468ab9485a0a0cb12b07cb1d96dc6326b Signed-off-by: Oleksandr Kravchuk <oleksandr.kravchuk@pelagicore.com> Signed-off-by: Ross Burton <ross.burton@intel.com> 
Signed-off-by: Oleksandr Kravchuk <oleksandr.kravchuk@pelagicore.com>
Signed-off-by: Ross Burton <ross.burton@intel.com>
curl: set CVE_PRODUCT 2016-12-13T22:47:25+00:00 Ross Burton ross.burton@intel.com 2016-12-07T16:41:40+00:00 f5381da49ac781ef017a1b9816c00b512ca9c7c2 This is 'libcurl' in NVD. Signed-off-by: Ross Burton <ross.burton@intel.com> 
This is 'libcurl' in NVD.

Signed-off-by: Ross Burton <ross.burton@intel.com>
curl: Update to version 7.51.0 2016-11-15T15:18:48+00:00 Fabio Berton fabio.berton@ossystems.com.br 2016-11-03T20:41:58+00:00 0154ff997db8021f93e6ffe8f7a0627d7a1d9b89 CVE fixed in 7.51.0: CVE-2016-8615: cookie injection for other servers CVE-2016-8616: case insensitive password comparison CVE-2016-8617: OOB write via unchecked multiplication CVE-2016-8618: double-free in curl_maprintf CVE-2016-8619: double-free in krb5 code CVE-2016-8620: glob parser write/read out of bounds CVE-2016-8621: curl_getdate read out of bounds CVE-2016-8622: URL unescape heap overflow via integer truncation CVE-2016-8623: Use-after-free via shared cookies CVE-2016-8624: invalid URL parsing with '#' CVE-2016-8625: IDNA 2003 makes curl use wrong host To see complete log access link bellow: https://curl.haxx.se/changes.html#7_51_0 Signed-off-by: Fabio Berton <fabio.berton@ossystems.com.br> Signed-off-by: Ross Burton <ross.burton@intel.com> 
CVE fixed in 7.51.0:

  CVE-2016-8615: cookie injection for other servers
  CVE-2016-8616: case insensitive password comparison
  CVE-2016-8617: OOB write via unchecked multiplication
  CVE-2016-8618: double-free in curl_maprintf
  CVE-2016-8619: double-free in krb5 code
  CVE-2016-8620: glob parser write/read out of bounds
  CVE-2016-8621: curl_getdate read out of bounds
  CVE-2016-8622: URL unescape heap overflow via integer truncation
  CVE-2016-8623: Use-after-free via shared cookies
  CVE-2016-8624: invalid URL parsing with '#'
  CVE-2016-8625: IDNA 2003 makes curl use wrong host

To see complete log access link bellow:
  https://curl.haxx.se/changes.html#7_51_0

Signed-off-by: Fabio Berton <fabio.berton@ossystems.com.br>
Signed-off-by: Ross Burton <ross.burton@intel.com>
curl: upgrade to 7.50.1 2016-08-17T09:33:35+00:00 Ross Burton ross.burton@intel.com 2016-08-12T10:26:15+00:00 62157e2b31c206be40f95574bb205dae5e8e4b68 This fixes 3 CVES: CVE-2016-5419 CVE-2016-5420 CVE-2016-5421 Signed-off-by: Ross Burton <ross.burton@intel.com> 
This fixes 3 CVES:

CVE-2016-5419
CVE-2016-5420
CVE-2016-5421

Signed-off-by: Ross Burton <ross.burton@intel.com>
curl: upgrade to 7.50.0 2016-08-10T08:36:19+00:00 Fan Xin fan.xin@jp.fujitsu.com 2016-08-03T06:16:40+00:00 638e648fdcba2f2a4fdf53747290a9a98ea0a86e Signed-off-by: Fan Xin <fan.xin@jp.fujitsu.com> Signed-off-by: Ross Burton <ross.burton@intel.com> 
Signed-off-by: Fan Xin <fan.xin@jp.fujitsu.com>
Signed-off-by: Ross Burton <ross.burton@intel.com>
curl: upgrade to 7.49.1 2016-06-14T11:56:30+00:00 Chen Qi Qi.Chen@windriver.com 2016-06-12T02:21:04+00:00 53761f4f2d4b8463bf9f996a87ee0dc61e21a2d0 Signed-off-by: Chen Qi <Qi.Chen@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> 
Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
curl: add krb5 to PACKAGECONFIG 2016-05-06T09:30:58+00:00 Roy Li rongqing.li@windriver.com 2016-04-26T05:13:01+00:00 78811b6e608452a3137df6ed2346c69d42d8fd27 krb5 is needed to enables GSS-Negotiate authentication Signed-off-by: Roy Li <rongqing.li@windriver.com> Signed-off-by: Ross Burton <ross.burton@intel.com> 
krb5 is needed to enables GSS-Negotiate authentication

Signed-off-by: Roy Li <rongqing.li@windriver.com>
Signed-off-by: Ross Burton <ross.burton@intel.com>