ubuntu/+source/curl:ubuntu/devel

Last commit made on 2019-09-11
Get this branch:
git clone -b ubuntu/devel https://git.launchpad.net/ubuntu/+source/curl
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
ubuntu/devel
Repository:
lp:ubuntu/+source/curl

Recent commits

a266835... by Alex Murray on 2019-09-06

Import patches-unapplied version 7.65.3-1ubuntu3 to ubuntu/eoan-proposed

Imported using git-ubuntu import.

Changelog parent: 025797b055a7ab8ea00e7c8fcbca8412c23376fc

New changelog entries:
  * SECURITY UPDATE: double-free when using kerberos over FTP may cause
    denial-of-service
    - debian/patches/CVE-2019-5481.patch: update lib/security.c to avoid
      double-free on large memory allocation failures
    - CVE-2019-5481
  * SECURITY UPDATE: heap buffer overflow when receiving TFTP data may
    cause denial-of-service or remote code-execution
    - debian/patches/CVE-2019-5482.patch: ensure to use the correct block
      size when calling recvfrom() if the server returns an OACK without
      specifying a block size in lib/tftp.c
    - CVE-2019-5482

025797b... by Matthias Klose on 2019-09-05

Import patches-unapplied version 7.65.3-1ubuntu2 to ubuntu/eoan-proposed

Imported using git-ubuntu import.

Changelog parent: 9c2f41c40dee1b777b54f33de82da2f26f09e97b

New changelog entries:
  * No-change upload with strops.h and sys/strops.h removed in glibc.

9c2f41c... by Gianfranco Costamagna on 2019-08-10

Import patches-unapplied version 7.65.3-1ubuntu1 to ubuntu/eoan-proposed

Imported using git-ubuntu import.

Changelog parent: 61be1b705aa1a58a91b0c110af966e39db1f055a

New changelog entries:
  * Merge from Debian unstable. Remaining changes:
    - debian/control, debian/rules: build with libssh instead of libssh2.

61be1b7... by Alessandro Ghedini on 2019-08-09

Import patches-unapplied version 7.65.3-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 9914c3e04c7289772ceddf26f25b74e159e930d5

New changelog entries:
  * New upstream release
  * Drop 12_fix-man-errors.patch (merged upstream)
  * Remove Ian Jackson from Uploaders as he has never done an upload

9914c3e... by Alessandro Ghedini on 2019-07-13

Import patches-unapplied version 7.65.1-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: fea687bb019af05ab54422673ca3070e0e56bfb1

New changelog entries:
  * New upstream release
    + Reduce verbose output (Closes: #926148)
    + Fix parsing URLs with link local addresses (Closes: #926812)
  * Drop patches merged upstream
  * Refresh patches
  * Bump STandards-Version to 4.4.0 (no changes needed)
  * Update entry in copyright for renamed files
  * Fix some man errors.
    Thanks to Bjarni Ingi Gislason for the patch (Closes: #926352)
  * Add Build-Depends-Package field to symbols files

fea687b... by Alessandro Ghedini on 2019-06-14

Import patches-unapplied version 7.64.0-4 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 961ba65d8a086ebf69f284c0e8e3ab831ef4c833

New changelog entries:
  * Fix TFTP receive buffer overflow as per CVE-2019-5436 (Closes: #929351)
    https://curl.haxx.se/docs/CVE-2019-5436.html
  * Fix integer overflow in curl_url_set() as per CVE-2019-5435 (Closes: #929352)
    https://curl.haxx.se/docs/CVE-2019-5435.html

961ba65... by Alessandro Ghedini on 2019-05-04

Import patches-unapplied version 7.64.0-3 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 8adf12e02041b5ba0eced44c50e182c3fe24a0a8

New changelog entries:
  * Fix potential crash in HTTP/2 code and busy loop at the end of connections
    (Closes: #927471)

8adf12e... by Alessandro Ghedini on 2019-03-07

Import patches-unapplied version 7.64.0-2 to debian/sid

Imported using git-ubuntu import.

Changelog parent: eeb6703b488e4a663508622fefdb7086850967a6

New changelog entries:
  * Fix infinite loop when fetching URLs with unreachable IPv6 (Closes: #922554)

eeb6703... by Alessandro Ghedini on 2019-02-06

Import patches-unapplied version 7.64.0-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: e202d40710f7d1e52fa1b3026ff477b186de5b8d

New changelog entries:
  * New upstream release
    + Fix NTLM type-2 out-of-bounds buffer read as per CVE-2018-16890
      https://curl.haxx.se/docs/CVE-2018-16890.html
    + Fix NTLMv2 type-3 header stack buffer overflow as per CVE-2019-3822
      https://curl.haxx.se/docs/CVE-2019-3822.html
    + Fix SMTP end-of-response out-of-bounds read as per CVE-2019-3823
      https://curl.haxx.se/docs/CVE-2019-3823.html
    + Fix HTTP negotiation with POST requests (Closes: #920267)

e202d40... by Alessandro Ghedini on 2019-01-15

Import patches-unapplied version 7.63.0-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 73ce9f1bd176377a3e2cd6c6e3e45a93389fe55b

New changelog entries:
  * New upstream release
    + Fix IPv6 numeral address parser (Closes: #915520)
    + Fix timeout handling (Closes: #914793)
    + Fix HTTP auth to include query in URI (Closes: #913214)
  * Drop 12_fix-runtests-curl.patch (merged upstream)
  * Update symbols
  * Update copyright for removed files
  * Bump debhlper compat level to 12
  * Bump Standards-Version to 4.3.0 (no changes needed)