Received: from mail.netbsd.org (mail.netbsd.org [204.152.190.11]) by www.NetBSD.org (Postfix) with ESMTP id 21F1263BAB8 for ; Wed, 4 Mar 2009 14:47:03 +0000 (UTC) Received: by mail.netbsd.org (Postfix, from userid 0) id BE2E363B24A; Wed, 4 Mar 2009 14:47:02 +0000 (UTC) Received: from cvs.netbsd.org (unknown [IPv6:2001:4f8:4:7:2e0:81ff:fe25:eab4]) by mail.netbsd.org (Postfix) with ESMTP id 6B8FA63B118 for ; Wed, 4 Mar 2009 14:47:01 +0000 (UTC) Received: by cvs.netbsd.org (Postfix, from userid 500) id 4AAF8175D0; Wed, 4 Mar 2009 14:47:01 +0000 (UTC) MIME-Version: 1.0 Content-Disposition: inline Content-Transfer-Encoding: binary Content-Type: text/plain Date: Wed, 4 Mar 2009 14:47:01 +0000 From: Matthias Scheler Subject: CVS commit: pkgsrc/www/curl To: pkgsrc-changes@NetBSD.org Reply-To: tron@netbsd.org Message-Id: <20090304144701.4AAF8175D0@cvs.netbsd.org> Sender: pkgsrc-changes-owner@NetBSD.org List-Id: pkgsrc-changes Precedence: list Module Name: pkgsrc Committed By: tron Date: Wed Mar 4 14:47:01 UTC 2009 Modified Files: pkgsrc/www/curl: Makefile distinfo Log Message: Update "curl" package to version 7.19.4. Changes since version 7.19.3: Changes: - Added CURLOPT_NOPROXY and the corresponding --noproxy - the OpenSSL-specific code disables TICKET (rfc5077) which is enabled by default in openssl 0.9.8j - Added CURLOPT_TFTP_BLKSIZE - Added CURLOPT_SOCKS5_GSSAPI_SERVICE and CURLOPT_SOCKS5_GSSAPI_NEC - with the corresponding curl options --socks5-gssapi-service and --socks5-gssapi-nec - Improved IPv6 support when built with with c-ares >= 1.6.1 - Added CURLPROXY_HTTP_1_0 and --proxy1.0 - Added docs/libcurl/symbols-in-versions - Added CURLINFO_CONDITION_UNMET - Added support for Digest and NTLM authentication using GnuTLS - CURLOPT_FTP_CREATE_MISSING_DIRS can now be set to 2 to retry the CWD even when MKD fails - GnuTLS initing moved to curl_global_init() - Added CURLOPT_REDIR_PROTOCOLS and CURLOPT_PROTOCOLS Bugfixes: - missing ssh.obj in VS makefiles - FTP ;type=i URLs now work with CURLOPT_PROXY_TRANSFER_MODE in Turkish locale - realms with quoted quotation marks in HTTP Digest headers - VC9 makefiles are now really included - multi interface memory leak with CURLMOPT_MAXCONNECTS set - CURLINFO_CONTENT_LENGTH_DOWNLOAD size from file:// "transfers" with CURLOPT_NOBODY set true - memory leak on some libz errors for content encodings - NSS-enabled build is repaired - superfluous wait in SFTP downloads removed - FTP with the multi interface no longer kills the control connection as easily on transfer failures - compilation halting when using VS2008 to build a Windows 2000 target - ease creation of libcurl Mac OS X Framework - CURLINFO_CONTENT_LENGTH_DOWNLOAD and CURLINFO_CONTENT_LENGTH_UPLOAD are -1 if unknown - Negotiate proxy authentication - CURLOPT_INTERFACE and CURLOPT_LOCALPORT used together This update fixes the security problem reported in CVE-2009-0037. To generate a diff of this commit: cvs rdiff -u -r1.88 -r1.89 pkgsrc/www/curl/Makefile cvs rdiff -u -r1.57 -r1.58 pkgsrc/www/curl/distinfo Please note that diffs are not public domain; they are subject to the copyright notices on the relevant files.