Received: from mail.netbsd.org (mail.netbsd.org [149.20.53.66]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client CN "mail.NetBSD.org", Issuer "Postmaster NetBSD.org" (verified OK)) by mollari.NetBSD.org (Postfix) with ESMTPS id 2CCD0716A0 for ; Sat, 29 Jun 2013 19:25:03 +0000 (UTC) Received: by mail.netbsd.org (Postfix, from userid 605) id 876F214A165; Sat, 29 Jun 2013 19:25:02 +0000 (UTC) Received: from localhost (localhost [127.0.0.1]) by mail.netbsd.org (Postfix) with ESMTP id A557E14A101 for ; Sat, 29 Jun 2013 19:24:58 +0000 (UTC) X-Virus-Scanned: amavisd-new at NetBSD.org Received: from mail.netbsd.org ([127.0.0.1]) by localhost (mail.NetBSD.org [127.0.0.1]) (amavisd-new, port 10025) with ESMTP id ujjrgYraz9V3 for ; Sat, 29 Jun 2013 19:24:57 +0000 (UTC) Received: from cvs.netbsd.org (cvs.NetBSD.org [IPv6:2001:4f8:3:7:2e0:81ff:fe30:95bd]) by mail.netbsd.org (Postfix) with ESMTP id DB3AB14A0D5 for ; Sat, 29 Jun 2013 19:24:57 +0000 (UTC) Received: by cvs.netbsd.org (Postfix, from userid 500) id D3A3F96; Sat, 29 Jun 2013 19:24:57 +0000 (UTC) Content-Disposition: inline Content-Transfer-Encoding: 8bit Content-Type: text/plain; charset="US-ASCII" MIME-Version: 1.0 Date: Sat, 29 Jun 2013 19:24:57 +0000 From: "S.P.Zeidler" Subject: CVS commit: pkgsrc/www/curl To: pkgsrc-changes@NetBSD.org Reply-To: spz@netbsd.org X-Mailer: log_accum Message-Id: <20130629192457.D3A3F96@cvs.netbsd.org> Sender: pkgsrc-changes-owner@NetBSD.org List-Id: pkgsrc-changes.NetBSD.org Precedence: bulk Module Name: pkgsrc Committed By: spz Date: Sat Jun 29 19:24:57 UTC 2013 Modified Files: pkgsrc/www/curl: Makefile PLIST distinfo pkgsrc/www/curl/patches: patch-aa patch-curl-config.in Removed Files: pkgsrc/www/curl/patches: patch-CVE-2013-2174 Log Message: update of cURL to the current version. Upstream changelog: Changes: -------- darwinssl: add TLS session resumption darwinssl: add TLS crypto authentication imap/pop3/smtp: Added support for ;auth= in the URL imap/pop3/smtp: Added support for ;auth= to CURLOPT_USERPWD usercertinmem.c: add example showing user cert in memory url: Added smtp and pop3 hostnames to the protocol detection list imap/pop3/smtp: Added support for enabling the SASL initial response curl -E: allow to use ':' in certificate nicknames Bugfixes: --------- SECURITY VULNERABILITY: curl_easy_unescape() may parse data beyond the end of the input buffer [26] FTP: access files in root dir correctly configure: try pthread_create without -lpthread FTP: handle a 230 welcome response curl-config: don't output static libs when they are disabled CURL_CHECK_CA_BUNDLE: don't check for paths when cross-compiling Various documentation updates getinfo.c: reset timecond when clearing session-info variables FILE: prevent an artificial timeout event due to stale speed-check data ftp_state_pasv_resp: connect through proxy also when set by env sshserver: disable StrictHostKeyChecking ftpserver: Fixed imap logout confirmation data curl_easy_init: use less mallocs smtp: Fixed unknown percentage complete in progress bar smtp: Fixed sending of double CRLF caused by first in EOB bindlocal: move brace out of #ifdef winssl: Fixed invalid memory access during SSL shutdown OS X framework: fix invalid symbolic link OpenSSL: allow empty server certificate subject axtls: prevent memleaks on SSL handshake failures cookies: only consider full path matches Revert win32 MemoryTracking: wcsdup() _wcsdup() and _tcsdup() Curl_cookie_add: handle IPv6 hosts ossl_send: SSL_write() returning 0 is an error too ossl_recv: SSL_read() returning 0 is an error too Digest auth: escape user names with backslash or " in them curl_formadd.3: fixed wrong "end-marker" syntax libcurl-tutorial.3: fix incorrect backslash curl_multi_wait: reduce timeout if the multi handle wants to tests/Makefile: typo in the perlcheck target axtls: honor disabled VERIFYHOST OpenSSL: avoid double free in the PKCS12 certificate code multi_socket: reduce timeout inaccuracy margin digest: support auth-int for empty entity body axtls: now done non-blocking lib1900: use tutil_tvnow instead of gettimeofday curl_easy_perform: avoid busy-looping CURLOPT_COOKIELIST: take cookie share lock multi_socket: react on socket close immediately To generate a diff of this commit: cvs rdiff -u -r1.129 -r1.130 pkgsrc/www/curl/Makefile cvs rdiff -u -r1.39 -r1.40 pkgsrc/www/curl/PLIST cvs rdiff -u -r1.86 -r1.87 pkgsrc/www/curl/distinfo cvs rdiff -u -r1.1 -r0 pkgsrc/www/curl/patches/patch-CVE-2013-2174 cvs rdiff -u -r1.21 -r1.22 pkgsrc/www/curl/patches/patch-aa cvs rdiff -u -r1.2 -r1.3 pkgsrc/www/curl/patches/patch-curl-config.in Please note that diffs are not public domain; they are subject to the copyright notices on the relevant files.