Hello community, here is the log from the commit of package curl for openSUSE:Factory checked in at 2013-06-26 20:17:19 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/curl (Old) and /work/SRC/openSUSE:Factory/.curl.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Package is "curl" Changes: -------- --- /work/SRC/openSUSE:Factory/curl/curl.changes 2013-04-14 10:13:29.000000000 +0200 +++ /work/SRC/openSUSE:Factory/.curl.new/curl.changes 2013-06-26 20:17:21.000000000 +0200 @@ -1,0 +2,17 @@ +Mon Jun 24 14:00:11 UTC 2013 - vcizek@suse.com + +- update to 7.31.0 + * includes fix for CVE-2013-2174 (bnc#824517) + * SECURITY VULNERABILITY: curl_easy_unescape() may parse data + beyond the end of the input buffer [26] + * Changes: + darwinssl: add TLS session resumption + darwinssl: add TLS crypto authentication + imap/pop3/smtp: Added support for ;auth= in the URL + imap/pop3/smtp: Added support for ;auth= to CURLOPT_USERPWD + usercertinmem.c: add example showing user cert in memory + url: Added smtp and pop3 hostnames to the protocol detection list + imap/pop3/smtp: Added support for enabling the SASL initial response + curl -E: allow to use ':' in certificate nicknames + +------------------------------------------------------------------- Old: ---- curl-7.30.0.tar.lzma curl-7.30.0.tar.lzma.asc New: ---- curl-7.31.0.tar.lzma curl-7.31.0.tar.lzma.asc ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ curl.spec ++++++ --- /var/tmp/diff_new_pack.kXSWUV/_old 2013-06-26 20:17:22.000000000 +0200 +++ /var/tmp/diff_new_pack.kXSWUV/_new 2013-06-26 20:17:22.000000000 +0200 @@ -21,7 +21,7 @@ %bcond_without testsuite Name: curl -Version: 7.30.0 +Version: 7.31.0 Release: 0 Summary: A Tool for Transferring Data from URLs License: BSD-3-Clause and MIT -- To unsubscribe, e-mail: opensuse-commit+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-commit+help@opensuse.org