lp:ubuntu/lucid/curl

Created by James Westby on 2009-10-30 and last modified on 2009-12-12
Get this branch:
bzr branch lp:ubuntu/lucid/curl
Members of Ubuntu branches can upload to this branch. Log in for directions.

Branch merges

Related bugs

Related blueprints

Branch information

Owner:
Ubuntu branches
Review team:
Ubuntu Development Team
Status:
Development

Recent revisions

41. By Kees Cook on 2009-12-11

* Merge with Debian testing. Remaining changes:
  - Keep build deps in main:
    - Drop build dependencies: stunnel, libdb4.6-dev, libssh2-1-dev
    - Add build-dependency on openssh-server
    - Drop libssh2-1-dev from libcurl4-openssl-dev's Depends.

40. By Kees Cook on 2009-08-13

* SECURITY UPDATE: SSL cert hostname checking bypass with NULL byte.
  - add debian/patches/cert-null-cn: backported upstream changes.
  - CVE-2009-2417

39. By Bhavani Shankar on 2009-05-26

* Merge from Debian unstable (LP: #380281), remaining changes:
  - Drop build dependencies: stunnel, libdb4.6-dev, libssh2-1-dev
  - Add build-dependency on openssh-server
  - Drop libssh2-1-dev from libcurl4-openssl-dev's Depends.
  - Call automake-1.9 with --add-missing --copy --force
* Fixes LP: #379477

38. By Michael Vogt on 2009-04-29

* Merge from debian unstable, remaining changes:
  - Drop build dependencies: stunnel, libdb4.6-dev, libssh2-1-dev
  - Add build-dependency on openssh-server
  - Drop libssh2-1-dev from libcurl4-openssl-dev's Depends.
  - Call automake-1.9 with --add-missing --copy --force
* drop debian/patches/security_CVE-2009-0037.patch
  - this patch is part of 7.19.4

37. By Marc Deslauriers on 2009-03-03

* SECURITY UPDATE: add fix for CVE-2009-0037 back in
  - debian/patches/security_CVE-2009-0037.patch: updated patch to add missing
    section to lib/easy.c
  - CVE-2009-0037

36. By Jamie Strandboge on 2009-03-03

Revert last patch due to https regression (LP: #337501)

35. By Marc Deslauriers on 2009-03-03

* SECURITY UPDATE: Local file exposure via redirect
  - debian/patches/security_CVE-2009-0037.patch: add logic to lib/url.c and
    lib/urldata.h to limit what protocols curl will automatically follow via a
    redirect. By default, it now follows all protocols except FILE and SCP.
  - CVE-2009-0037

34. By Bhavani Shankar on 2009-01-06

* Merge from debian unstable, remaining changes: LP: #314279
  - Drop the stunnel build dependency.
  - Drop the build-dependency on libdb4.5-dev
  - Add build-dependency on openssh-server
  - Call automake-1.9 with --add-missing --copy --force.
  - Drop libssh2-1-dev from libcurl4-openssl-dev's Depends.

33. By Michael Vogt on 2008-11-10

* drop change:
  - "Added Recommends: on ca-certificate for curl package", libcurl3
    has a depends on ca-certificates already

32. By Michael Vogt on 2008-11-10

* Merge from debian unstable, remaining changes:
  - Drop the stunnel build dependency.
  - Drop the build-dependency on libdb4.5-dev
  - Add build-dependency on openssh-server
  - Drop libssh2-1-dev from libcurl4-openssl-dev's Depends.
  - Call automake-1.9 with --add-missing --copy --force
  - Added Recommends: on ca-certificate for curl package

Branch metadata

Branch format:
Branch format 7
Repository format:
Bazaar repository format 2a (needs bzr 1.16 or later)
Stacked on:
lp:ubuntu/maverick/curl
This branch contains Public information 
Everyone can see this information.

Subscribers