libcurl-minimal-8.6.0-10.fc40 RPM for aarch64

From Fedora 40 updates for aarch64 / Packages / l

This is a replacement of the 'libcurl' package for minimal installations.  It
comes with a limited set of features compared to the 'libcurl' package.  On the
other hand, the package is smaller and requires fewer run-time dependencies to
be installed.

Provides

• libcurl-minimal
• libcurl
• libcurl(aarch-64)
• libcurl-minimal(aarch-64)
• libcurl.so.4()(64bit)

Requires

• ld-linux-aarch64.so.1()(64bit)
• ld-linux-aarch64.so.1(GLIBC_2.17)(64bit)
• libc.so.6()(64bit)
• libc.so.6(GLIBC_2.17)(64bit)
• libc.so.6(GLIBC_2.33)(64bit)
• libc.so.6(GLIBC_2.34)(64bit)
• libcrypto.so.3()(64bit)
• libcrypto.so.3(OPENSSL_3.0.0)(64bit)
• libgssapi_krb5.so.2()(64bit)
• libgssapi_krb5.so.2(gssapi_krb5_2_MIT)(64bit)
• libidn2.so.0()(64bit)
• libidn2.so.0(IDN2_0.0.0)(64bit)
• libnghttp2(aarch-64) >= 1.59.0
• libnghttp2.so.14()(64bit)
• libssl.so.3()(64bit)
• libssl.so.3(OPENSSL_3.0.0)(64bit)
• libssl.so.3(OPENSSL_3.2.0)(64bit)
• libz.so.1()(64bit)
• openssl-libs(aarch-64) >= 1:3.2.1
• rpmlib(CompressedFileNames) <= 3.0.4-1
• rpmlib(FileDigests) <= 4.6.0-1
• rpmlib(PayloadFilesHavePrefix) <= 4.0-1
• rpmlib(PayloadIsZstd) <= 5.4.18-1
• rtld(GNU_HASH)

License

curl

Changelog

* Tue Jul 30 2024 Jan Macku <jamacku@redhat.com> - 8.6.0-10
  - fix speed throttling precision issues in transfer.c
  - fix speed limiting fix for 32bit systems
* Thu Jul 25 2024 Jan Macku <jamacku@redhat.com> - 8.6.0-9
  - fix freeing stack buffer in utf8asn1str (CVE-2024-6197)
* Wed Apr 03 2024 Jan Macku <jamacku@redhat.com> - 8.6.0-8
  - fix Usage of disabled protocol (CVE-2024-2004)
  - fix HTTP/2 push headers memory-leak (CVE-2024-2398)
* Mon Feb 19 2024 Jan Macku <jamacku@redhat.com> - 8.6.0-7
  - Fix: Leftovers after chunking should not be part of the curl buffer output (#2264220)
* Mon Feb 12 2024 Jan Macku <jamacku@redhat.com> - 8.6.0-6
  - revert "receive max buffer" + add test case
  - temporarily disable test 0313
  - remove suggests of libcurl-minimal in curl-full
* Mon Feb 12 2024 Jan Macku <jamacku@redhat.com> - 8.6.0-5
  - add Provides to curl-minimal
* Wed Feb 07 2024 Jan Macku <jamacku@redhat.com> - 8.6.0-4
  - drop curl-minimal subpackage in favor of curl-full (#2262096)
* Mon Feb 05 2024 Jan Macku <jamacku@redhat.com> - 8.6.0-3
  - ignore response body to HEAD requests
* Fri Feb 02 2024 Jan Macku <jamacku@redhat.com> - 8.6.0-2
  - don't build manual for curl-full - use man 1 curl instead (#2262373)
* Thu Feb 01 2024 Jan Macku <jamacku@redhat.com> - 8.6.0-1
  - new upstream release, which fixes the following vulnerabilities
      CVE-2024-0853 - OCSP verification bypass with TLS session reuse
  - drop 001-dist-add-tests-errorcodes.pl-to-the-tarball.patch (replaced by upstream fix)
  - remove accidentally included mk-ca-bundle.1 man page (upstream bug #12843)
* Fri Jan 19 2024 Fedora Release Engineering <releng@fedoraproject.org> - 8.5.0-2
  - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Wed Dec 06 2023 Jan Macku <jamacku@redhat.com> - 8.5.0-1
  - new upstream release, which fixes the following vulnerabilities
      CVE-2023-46218 - cookie mixed case PSL bypass
      CVE-2023-46219 - HSTS long file name clears contents
* Wed Oct 11 2023 Jan Macku <jamacku@redhat.com> - 8.4.0-1
  - new upstream release, which fixes the following vulnerabilities
      CVE-2023-38545 - SOCKS5 heap buffer overflow
      CVE-2023-38546 - cookie injection with none file
* Wed Sep 13 2023 Jan Macku <jamacku@redhat.com> - 8.3.0-1
  - new upstream release, which fixes the following vulnerabilities
      CVE-2023-38039 - HTTP headers eat all memory
* Wed Aug 02 2023 Jan Macku <jamacku@redhat.com> - 8.2.1-2
  - enable websockets (#2224651)
* Wed Jul 26 2023 Lukáš Zaoral <lzaoral@redhat.com> - 8.2.1-1
  - new upstream release (rhbz#2226659)
* Wed Jul 19 2023 Jan Macku <jamacku@redhat.com> - 8.2.0-1
  - new upstream release, which fixes the following vulnerabilities
      CVE-2023-32001 - fopen race condition
* Tue May 30 2023 Jan Macku <jamacku@redhat.com> - 8.1.2-1
  - new upstream release, with small bugfixes and improvements
* Tue May 23 2023 Jan Macku <jamacku@redhat.com> - 8.1.1-1
  - new upstream release, with small bugfixes and improvements
* Wed May 17 2023 Kamil Dudka <kdudka@redhat.com> - 8.1.0-1
  - new upstream release, which fixes the following vulnerabilities
      CVE-2023-28321 - IDN wildcard match
      CVE-2023-28322 - more POST-after-PUT confusion
* Fri Apr 21 2023 Kamil Dudka <kdudka@redhat.com> - 8.0.1-3
  - tests: re-enable temporarily disabled test-cases
  - tests: attempt to fix a conflict on port numbers
  - apply patches automatically
* Tue Mar 21 2023 Lukáš Zaoral <lzaoral@redhat.com> - 8.0.1-2
  - migrated to SPDX license
* Mon Mar 20 2023 Kamil Dudka <kdudka@redhat.com> - 8.0.1-1
  - new upstream release
* Mon Mar 20 2023 Kamil Dudka <kdudka@redhat.com> - 8.0.0-1
  - new upstream release, which fixes the following vulnerabilities
      CVE-2023-27538 - SSH connection too eager reuse still
      CVE-2023-27537 - HSTS double-free
      CVE-2023-27536 - GSS delegation too eager connection re-use
      CVE-2023-27535 - FTP too eager connection reuse
      CVE-2023-27534 - SFTP path ~ resolving discrepancy
      CVE-2023-27533 - TELNET option IAC injection
* Mon Feb 20 2023 Kamil Dudka <kdudka@redhat.com> - 7.88.1-1
  - new upstream release
* Fri Feb 17 2023 Kamil Dudka <kdudka@redhat.com> - 7.88.0-2
  - http2: set drain on stream end
* Wed Feb 15 2023 Kamil Dudka <kdudka@redhat.com> - 7.88.0-1
  - new upstream release, which fixes the following vulnerabilities
      CVE-2023-23916 - HTTP multi-header compression denial of service
      CVE-2023-23915 - HSTS amnesia with --parallel
      CVE-2023-23914 - HSTS ignored on multiple requests
* Fri Jan 20 2023 Kamil Dudka <kdudka@redhat.com> - 7.87.0-4
  - fix regression in a public header file (#2162716)
* Thu Jan 19 2023 Fedora Release Engineering <releng@fedoraproject.org> - 7.87.0-3
  - Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild
* Wed Jan 11 2023 Kamil Dudka <kdudka@redhat.com> - 7.87.0-2
  - test3012: temporarily disable valgrind (#2143040)
* Wed Dec 21 2022 Kamil Dudka <kdudka@redhat.com> - 7.87.0-1
  - new upstream release, which fixes the following vulnerabilities
      CVE-2022-43552 - HTTP Proxy deny use-after-free
      CVE-2022-43551 - Another HSTS bypass via IDN
* Tue Nov 29 2022 Kamil Dudka <kdudka@redhat.com> - 7.86.0-4
  - noproxy: tailmatch like in 7.85.0 and earlier (#2149224)
* Thu Nov 24 2022 Kamil Dudka <kdudka@redhat.com> - 7.86.0-3
  - enforce versioned libnghttp2 dependency for libcurl (#2144277)
* Mon Oct 31 2022 Kamil Dudka <kdudka@redhat.com> - 7.86.0-2
  - fix regression in noproxy matching
* Wed Oct 26 2022 Kamil Dudka <kdudka@redhat.com> - 7.86.0-1
  - new upstream release, which fixes the following vulnerabilities
      CVE-2022-42916 - HSTS bypass via IDN
      CVE-2022-42915 - HTTP proxy double-free
      CVE-2022-35260 - .netrc parser out-of-bounds access
      CVE-2022-32221 - POST following PUT confusion
* Thu Sep 01 2022 Kamil Dudka <kdudka@redhat.com> - 7.85.0-1
  - new upstream release, which fixes the following vulnerability
      CVE-2022-35252 - control code in cookie denial of service
* Thu Aug 25 2022 Kamil Dudka <kdudka@redhat.com> - 7.84.0-3
  - tests: fix http2 tests to use CRLF headers to make it work with nghttp2-1.49.0

Files

/usr/lib/.build-id
/usr/lib/.build-id/b4
/usr/lib/.build-id/b4/06680f03da1912519039aa13c8fb09804d696d
/usr/lib64/libcurl.so.4
/usr/lib64/libcurl.so.4.8.0
/usr/share/licenses/libcurl-minimal
/usr/share/licenses/libcurl-minimal/COPYING

Generated by rpm2html 1.8.1

Fabrice Bellet, Fri Nov 15 06:15:53 2024