Fedora Packages

curl-7.82.0-13.fc36 in Fedora 36

↵ Return to the main page of curl
View build
Search for updates

Package Info (Data from x86_64 build)
🠗 Changelog
🠗 Dependencies
🠗 Provides
🠗 Files

Changelog

Date Author Change
2023-02-15 Kamil Dudka <kdudka at redhat dot com> - 7.82.0-13 - fix HTTP multi-header compression denial of service (CVE-2023-23916)
2022-12-21 Kamil Dudka <kdudka at redhat dot com> - 7.82.0-12 - smb/telnet: fix use-after-free when HTTP proxy denies tunnel (CVE-2022-43552) - http: use the IDN decoded name in HSTS checks (CVE-2022-43551)
2022-11-24 Kamil Dudka <kdudka at redhat dot com> - 7.82.0-11 - enforce versioned libnghttp2 dependency for libcurl (#2144277)
2022-11-21 Kamil Dudka <kdudka at redhat dot com> - 7.82.0-10 - http2: make nghttp2 less picky about field whitespace (#2144277)
2022-10-26 Kamil Dudka <kdudka at redhat dot com> - 7.82.0-9 - url: use IDN decoded names for HSTS checks (CVE-2022-42916) - http_proxy: restore the protocol pointer on error (CVE-2022-42915) - netrc: replace fgets with Curl_get_line (CVE-2022-35260) - fix POST following PUT confusion (CVE-2022-32221)
2022-09-02 Kamil Dudka <kdudka at redhat dot com> - 7.82.0-8 - control code in cookie denial of service (CVE-2022-35252)
2022-07-18 Kamil Dudka <kdudka at redhat dot com> - 7.82.0-7 - fix build failure with gnutls backend enabled
2022-06-29 Kamil Dudka <kdudka at redhat dot com> - 7.82.0-6 - fix unpreserved file permissions (CVE-2022-32207) - fix Set-Cookie denial of service (CVE-2022-32205) - fix HTTP compression denial of service (CVE-2022-32206) - fix FTP-KRB bad message verification (CVE-2022-32208)
2022-05-11 Kamil Dudka <kdudka at redhat dot com> - 7.82.0-5 - fix too eager reuse of TLS and SSH connections (CVE-2022-27782) - do not accept cookies for TLD with trailing dot (CVE-2022-27779) - hsts: ignore trailing dots when comparing hosts names (CVE-2022-30115) - reject percent-encoded path separator in URL host (CVE-2022-27780)
2022-05-02 Kamil Dudka <kdudka at redhat dot com> - 7.82.0-4 - fix leak of SRP credentials in redirects (CVE-2022-27774)

Dependencies

Provides

  • curl
  • curl(x86-64)
  • curl-full
  • webclient

Files


Sources on Pagure