Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package curl for openSUSE:Factory checked in at 2022-03-13 20:25:07 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/curl (Old) and /work/SRC/openSUSE:Factory/.curl.new.25692 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "curl" Sun Mar 13 20:25:07 2022 rev:173 rq:961116 version:7.82.0 Changes: -------- --- /work/SRC/openSUSE:Factory/curl/curl.changes 2022-01-11 00:01:39.893228309 +0100 +++ /work/SRC/openSUSE:Factory/.curl.new.25692/curl.changes 2022-03-13 20:25:23.983671760 +0100 @@ -1,0 +2,35 @@ +Fri Mar 11 16:36:50 UTC 2022 - Pedro Monreal <[email protected]> + +- Fix: openssl: fix CN check error code + * Add curl-fix-verifyhost.patch + +------------------------------------------------------------------- +Mon Mar 7 08:01:26 UTC 2022 - Paolo Stivanin <[email protected]> + +- Update to 7.82.0: + * curl: add --json command line option + * curl: make it so that sensitive command line arguments do not + show as easily in the output of ps(1) + * curl_multi_socket.3: remove callback and typical usage descriptions + * ftp: provide error message for control bytes in path + * ldap: return CURLE_URL_MALFORMAT for bad URL + * lib: remove support for CURL_DOES_CONVERSIONS + * mqtt: plug some memory leaks + * multi: allow user callbacks to call curl_multi_assign + * multi: remember connection_id before returning connection to pool + * multi: set in_callback for multi interface callbacks + * netware: remove support + * ngtcp2: adapt to changed end of headers callback proto + * openldap: implement SASL authentication + * openssl: return error if TLS 1.3 is requested when not supported + * sectransp: mark a 3DES cipher as weak + * smb: pass socket for writing and reading data instead of FIRSTSOCKET + * tool_getparam: DNS options that need c-ares now fail without it + * TPF: drop support + * url: given a user in the URL, find pwd for that user in netrc + * url: keep trailing dot in host name + * urlapi: handle "redirects" smarter + * urldata: CONN_IS_PROXIED replaces bits.proxy when proxy can be disabled + * urldata: remove conn->bits.user_passwd + +------------------------------------------------------------------- Old: ---- curl-7.81.0.tar.xz curl-7.81.0.tar.xz.asc New: ---- curl-7.82.0.tar.xz curl-7.82.0.tar.xz.asc curl-fix-verifyhost.patch ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ curl.spec ++++++ --- /var/tmp/diff_new_pack.awgKvw/_old 2022-03-13 20:25:24.887672824 +0100 +++ /var/tmp/diff_new_pack.awgKvw/_new 2022-03-13 20:25:24.895672833 +0100 @@ -21,7 +21,7 @@ # need ssl always for python-pycurl %bcond_without openssl Name: curl -Version: 7.81.0 +Version: 7.82.0 Release: 0 Summary: A Tool for Transferring Data from URLs License: curl @@ -33,8 +33,10 @@ Patch0: libcurl-ocloexec.patch Patch1: dont-mess-with-rpmoptflags.diff Patch2: curl-secure-getenv.patch -# PATCH-FIX-OPENSUSE bsc#1076446 protocol redirection not supported or disabled +#PATCH-FIX-OPENSUSE bsc#1076446 protocol redirection not supported or disabled Patch3: curl-disabled-redirect-protocol-message.patch +#PATCH-FIX-UPSTREAM Fix: openssl: fix CN check error code +Patch4: curl-fix-verifyhost.patch BuildRequires: libtool BuildRequires: pkgconfig Requires: libcurl4 = %{version} @@ -95,6 +97,7 @@ %patch1 %patch2 %patch3 -p1 +%patch4 -p1 %build # curl complains if macro definition is contained in CFLAGS ++++++ curl-7.81.0.tar.xz -> curl-7.82.0.tar.xz ++++++ ++++ 106426 lines of diff (skipped) ++++++ curl-fix-verifyhost.patch ++++++ >From 911714d617c106ed5d553bf003e34ec94ab6a136 Mon Sep 17 00:00:00 2001 From: Daniel Stenberg <[email protected]> Date: Tue, 8 Mar 2022 13:38:13 +0100 Subject: [PATCH] openssl: fix CN check error code Due to a missing 'else' this returns error too easily. Regressed in: d15692ebb Reported-by: Kristoffer Gleditsch Fixes #8559 Closes #8560 --- lib/vtls/openssl.c | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/lib/vtls/openssl.c b/lib/vtls/openssl.c index 0b79fc50a9c5..4618beeb3867 100644 --- a/lib/vtls/openssl.c +++ b/lib/vtls/openssl.c @@ -1817,7 +1817,8 @@ CURLcode Curl_ossl_verifyhost(struct Curl_easy *data, struct connectdata *conn, memcpy(peer_CN, ASN1_STRING_get0_data(tmp), peerlen); peer_CN[peerlen] = '\0'; } - result = CURLE_OUT_OF_MEMORY; + else + result = CURLE_OUT_OF_MEMORY; } } else /* not a UTF8 name */
