1 curl (7.56.1-2) unstable; urgency=low
3 * Change build-depends to list libssl-dev first. Outcome in sid/buster
4 is to switch to openssl 1.1. I am not changing the soname despite the
5 implied change to the libcurl ABI, because we don't want to make our
6 libcurl have a nonstandard soname.
8 -- Ian Jackson <ijackson@chiark.greenend.org.uk> Thu, 23 Nov 2017 12:48:48 +0000
10 curl (7.56.1-1) unstable; urgency=medium
12 * New upstream release
13 - Fix IMAP FETCH response out of bounds read as per CVE-2017-1000257
14 https://curl.haxx.se/docs/adv_20171023.html
15 * Bump Standards-Version to 4.1.1 (no changes needed)
16 * Drop 01_runtests_gdb.patch
17 * Drop 12_dont-wait-on-CONNECT.patch
19 * Update *.symbols files
20 * Use https:// URL in watch file
22 -- Alessandro Ghedini <ghedo@debian.org> Tue, 24 Oct 2017 11:05:48 +0100
24 curl (7.55.1-1) unstable; urgency=medium
26 * New upstream release
27 - Fix FTBFS on powerpc (Closes: #872502)
28 * Apply upstream patch to fix connection timeouts with NetworkManager
31 * Bump Standards-Version to 4.1.0 (no changes needed)
33 -- Alessandro Ghedini <ghedo@debian.org> Sat, 02 Sep 2017 12:10:22 +0100
35 curl (7.55.0-1) unstable; urgency=medium
37 * New upstream release
38 - Fix TFTP sends more than buffer size as per CVE-2017-1000100
40 - Fix URL globbing out of bounds read as per CVE-2017-1000101
42 * Refresh patches and drop patches merged upstream
43 * Update Standards-Version to 4.0.1 (no changes needed)
46 -- Alessandro Ghedini <ghedo@debian.org> Sat, 12 Aug 2017 15:18:05 +0100
48 curl (7.52.1-5) unstable; urgency=high
50 * Fix TLS session resumption client cert bypass as per CVE-2017-7468
51 https://curl.haxx.se/docs/adv_20170419.html
53 -- Alessandro Ghedini <ghedo@debian.org> Wed, 19 Apr 2017 11:19:50 +0100
55 curl (7.52.1-4) unstable; urgency=medium
57 * Fix regression in CONNECT response handling (Closes: #857613)
58 * Fix buffer read overrun on --write-out as per CVE-2017-7407
59 https://curl.haxx.se/docs/adv_20170403.html (Closes: #859500)
61 -- Alessandro Ghedini <ghedo@debian.org> Sat, 08 Apr 2017 21:55:27 +0100
63 curl (7.52.1-3) unstable; urgency=high
65 * Make SSL_VERIFYSTATUS work again as per CVE-2017-2629
66 https://curl.haxx.se/docs/adv_20170222.html
68 -- Alessandro Ghedini <ghedo@debian.org> Tue, 21 Feb 2017 22:38:41 +0000
70 curl (7.52.1-2) unstable; urgency=medium
72 * Fix HTTPS connection timeout with OpenSSL (Closes: #852317)
74 -- Alessandro Ghedini <ghedo@debian.org> Sun, 29 Jan 2017 21:34:10 +0000
76 curl (7.52.1-1) unstable; urgency=medium
78 * New upstream release
79 - Fix printf floating point buffer overflow as per CVE-2016-9586
81 * B-D on "libssl1.0-dev | libssl-dev (<< 1.1)" (Closes: #850880, #844018)
82 * Another attempt at making -dev packages multi-arch.
83 Thanks to Benjamin Moody for the patches. (Closes: #731998, #846360)
84 * Enable support for PSL (Closes: #847958)
85 * Re-enable support for IDN (Closes: #849539)
86 * Drop 10_disable-network-tests.patch.
87 It didn't really work, and the issue is not urgent.
88 * Switch curl binary back to libcurl3/OpenSSL.
89 While the GnuTLS flavour mostly worked fine, there are a bunch of features
90 that are not implemented.
92 -- Alessandro Ghedini <ghedo@debian.org> Thu, 12 Jan 2017 22:02:44 +0000
94 curl (7.51.0-1) unstable; urgency=medium
96 * New upstream release
97 - Fix cookie injection for other servers as per CVE-2016-8615
98 https://curl.haxx.se/docs/adv_20161102A.html
99 - Fix case insensitive password comparison as per CVE-2016-8616
100 https://curl.haxx.se/docs/adv_20161102B.html
101 - Fix OOB write via unchecked multiplication as per CVE-2016-8617
102 https://curl.haxx.se/docs/adv_20161102C.html
103 - Fix double-free in curl_maprintf as per CVE-2016-8618
104 https://curl.haxx.se/docs/adv_20161102D.html
105 - Fix double-free in krb5 code as per CVE-2016-8619
106 https://curl.haxx.se/docs/adv_20161102E.html
107 - Fix glob parser write/read out of bounds as per CVE-2016-8620
108 https://curl.haxx.se/docs/adv_20161102F.html
109 - Fix curl_getdate read out of bounds as per CVE-2016-8621
110 https://curl.haxx.se/docs/adv_20161102G.html
111 - Fix URL unescape heap overflow via integer truncation as per CVE-2016-8622
112 https://curl.haxx.se/docs/adv_20161102H.html
113 - Fix use-after-free via shared cookies as per CVE-2016-8623
114 https://curl.haxx.se/docs/adv_20161102I.html
115 - Fix invalid URL parsing with '#' as per CVE-2016-8624
116 https://curl.haxx.se/docs/adv_20161102J.html
117 - Fix IDNA 2003 makes curl use wrong host
118 https://curl.haxx.se/docs/adv_20161102K.html
119 - Fix escape and unescape integer overflows as
120 per CVE-2016-7167 (Closes: #837945)
121 https://curl.haxx.se/docs/adv_20160914.html
122 - Fix incorrect reuse of client certificates (NSS backend)
123 as per CVE-2016-7141 (Closes: #836918)
124 https://curl.haxx.se/docs/adv_20160907.html
125 * Drop 02_art_http_scripting.patch (file not shipped anymore)
127 * Temporarily disable IDN support
128 * Don't install pdf and html docs (they are not shipped in the tarball anymore)
129 * Install markdown docs
131 -- Alessandro Ghedini <ghedo@debian.org> Thu, 03 Nov 2016 22:46:14 +0000
133 curl (7.50.1-2) unstable; urgency=medium
135 * Disable more network tests (Closes: #830273)
137 -- Alessandro Ghedini <ghedo@debian.org> Sun, 28 Aug 2016 14:48:05 +0100
139 curl (7.50.1-1) unstable; urgency=medium
141 * New upstream release (Closes: #827900)
142 - Fix TLS session resumption client cert bypass as per CVE-2016-5419
143 https://curl.haxx.se/docs/adv_20160803A.html
144 - Fix re-using connection with wrong client cert as per CVE-2016-5420
145 https://curl.haxx.se/docs/adv_20160803B.html
146 - Fix use of connection struct after free as per CVE-2016-5421
147 https://curl.haxx.se/docs/adv_20160803C.html
148 - Support OpenSSL 1.1 (Closes: #828127)
149 * Fix 04_workaround_as_needed_bug.patch.
150 Thanks to Yuriy M. Kaminskiy for the patch (Closes: #818131)
151 * Bump Standards-Version to 3.9.8 (no changes needed)
154 * Add 08_enable-zsh.patch to re-enable zsh completion generation
155 * Remove 08_fix-zsh-completion.patch (was already disabled)
156 * Add 09_fix-typo.patch to fix spelling-error-in-manpage
157 * Add 10_disable-network-tests.patch to disable networked tests
159 * Improve cross Build-Depends satisfiability.
160 Thanks to Helmut Grohne for the patch (Closes: #818092)
162 -- Alessandro Ghedini <ghedo@debian.org> Wed, 03 Aug 2016 12:46:05 +0100
164 curl (7.47.0-1) unstable; urgency=high
166 * New upstream release
167 - Fix NTLM credentials not-checked for proxy connection re-use
169 http://curl.haxx.se/docs/adv_20160127A.html
170 - Set uyrgency=high accordingly
171 * Remove hard-coded dependency on libgnutls (Closes: #812542)
172 * Drop 08_fix-zsh-completion.patch (merged upstream)
175 -- Alessandro Ghedini <ghedo@debian.org> Wed, 27 Jan 2016 11:45:59 +0000
177 curl (7.46.0-1) unstable; urgency=medium
179 * New upstream release
180 - Initialize OpenSSL algorithms after loading config (Closes: #805408)
181 * Install curl zsh completion (Closes: #805509)
182 - Add 08_fix-zsh-completion.patch to fix zsh completion generation
184 -- Alessandro Ghedini <ghedo@debian.org> Sun, 27 Dec 2015 18:18:09 +0100
186 curl (7.45.0-1) unstable; urgency=medium
188 * New upstream release
189 * Drop 08_spelling.patch (merged upstream)
191 -- Alessandro Ghedini <ghedo@debian.org> Wed, 07 Oct 2015 12:59:03 +0200
193 curl (7.44.0-2) unstable; urgency=medium
195 * Enable HTTP/2 support (Closes: #796302)
197 -- Alessandro Ghedini <ghedo@debian.org> Thu, 10 Sep 2015 11:25:14 +0200
199 curl (7.44.0-1) unstable; urgency=medium
201 * New upstream release
203 * Update symbols files
204 * Add 08_spelling.patch to fix some spelling errors
206 -- Alessandro Ghedini <ghedo@debian.org> Wed, 12 Aug 2015 11:49:04 +0200
208 curl (7.43.0-1) unstable; urgency=medium
210 * New upstream release
211 - Fix lingering HTTP credentials in connection re-use as per CVE-2015-3236
212 http://curl.haxx.se/docs/adv_20150617A.html
213 - Fix SMB send off unrelated memory contents as per CVE-2015-3237
214 http://curl.haxx.se/docs/adv_20150617B.html
216 * Fix spelling-error-in-description
218 -- Alessandro Ghedini <ghedo@debian.org> Wed, 17 Jun 2015 10:21:34 +0200
220 curl (7.42.1-3) unstable; urgency=medium
223 * Set both CA bundle and CA path default values for OpenSSL and GnuTLS
225 * Bump versioned depends on libgnutls to workaround lack of nettle versioned
226 symbols (Closes: #787960)
228 -- Alessandro Ghedini <ghedo@debian.org> Sun, 07 Jun 2015 18:15:15 +0200
230 curl (7.42.1-2) unstable; urgency=medium
232 * Switch curl binary to libcurl3-gnutls (Closes: #342719)
233 This is the first step of a possible migration to a GnuTLS-only
234 libcurl for Debian. Let's see how it goes.
236 -- Alessandro Ghedini <ghedo@debian.org> Sun, 03 May 2015 13:13:15 +0200
238 curl (7.42.1-1) unstable; urgency=high
240 * New upstream release
241 - Don't send sensitive HTTP server headers to proxies as per
243 http://curl.haxx.se/docs/adv_20150429.html
244 * Drop 08_fix-spelling.patch (merged upstream)
247 -- Alessandro Ghedini <ghedo@debian.org> Wed, 29 Apr 2015 10:43:43 +0200
249 curl (7.42.0-1) unstable; urgency=medium
251 * New upstream release
252 - Fix re-using authenticated connection when unauthenticated
254 http://curl.haxx.se/docs/adv_20150422A.html
255 - Fix host name out of boundary memory access as per CVE-2015-3144
256 http://curl.haxx.se/docs/adv_20150422D.html
257 - Fix cookie parser out of boundary memory access as per CVE-2015-3145
258 http://curl.haxx.se/docs/adv_20150422C.html
259 - Fix Negotiate not treated as connection-oriented as per CVE-2015-3148
260 http://curl.haxx.se/docs/adv_20150422B.html
261 - Disable SSLv3 in the OpenSSL backend when OPENSSL_NO_SSL3_METHOD is
262 defined (Closes: #768562)
263 * Drop patches merged upstream
265 * Bump Standards-Version to 3.9.6 (no changes needed)
267 -- Alessandro Ghedini <ghedo@debian.org> Wed, 22 Apr 2015 11:07:32 +0200
269 curl (7.38.0-4) unstable; urgency=high
271 * Fix URL request injection vulnerability as per CVE-2014-8150
272 http://curl.haxx.se/docs/adv_20150108B.html
273 * Set urgency=high accordingly
275 -- Alessandro Ghedini <ghedo@debian.org> Thu, 08 Jan 2015 10:47:24 +0100
277 curl (7.38.0-3) unstable; urgency=high
279 * Enable all hardening options (Closes: #763372)
280 * Fix duphandle read out of bounds as per CVE-2014-3707
281 http://curl.haxx.se/docs/adv_20141105.html
282 * Set urgency=high accordingly
284 -- Alessandro Ghedini <ghedo@debian.org> Thu, 06 Nov 2014 11:40:24 +0100
286 curl (7.38.0-2) unstable; urgency=medium
288 * Check for libtoolize instead of libtool during build.
289 Thanks to Helmut Grohne for the patch (Closes: #761740)
290 * Add README.source note regarding ordering of patches (Closes: #762193)
291 * Add 10_fix-resolver.patch from upstream (Closes: #762014)
293 -- Alessandro Ghedini <ghedo@debian.org> Tue, 23 Sep 2014 16:41:53 +0200
295 curl (7.38.0-1) unstable; urgency=medium
297 * New upstream release
298 - Only use full host matches for hosts used as IP address
300 http://curl.haxx.se/docs/adv_20140910A.html
301 - Reject incoming cookies set for TLDs as per CVE-2014-3620
302 http://curl.haxx.se/docs/adv_20140910B.html
303 * Drop 08_link-curl-to-nss.patch (merged upstream)
305 * Fix wildcard-matches-nothing-in-dep5-copyright
306 * Add 08_fix-spelling.patch
308 -- Alessandro Ghedini <ghedo@debian.org> Wed, 10 Sep 2014 20:11:02 +0200
310 curl (7.37.1-1) unstable; urgency=medium
312 * New upstream release
313 * Re-enable RTMP support (Closes: #754222)
314 * Add 08_link-curl-to-nss.patch to fix NSS build
316 * Install manpages of single libcurl options too
318 -- Alessandro Ghedini <ghedo@debian.org> Fri, 18 Jul 2014 10:18:03 +0200
320 curl (7.37.0-1) unstable; urgency=medium
322 * New upstream release
323 - Fix NULL pointer dereference in GnuTLS code (Closes: #746349)
324 * Drop 08_fix-imap-tests.patch (merged upstream)
325 * Refresh 01_runtests_gdb.patch
326 * Remove Build-Depends on libgcrypt
328 -- Alessandro Ghedini <ghedo@debian.org> Wed, 21 May 2014 15:22:38 +0200
330 curl (7.36.0-2) unstable; urgency=medium
332 * Move Depends on -dev packages needed to use static libraries to Suggests
333 * Switch to GnuTLS 3.x (Closes: #741568)
334 * Disable RTMP support (librtmp-dev requires libgnutls-dev, which conflicts
335 with libgnutls28-dev)
337 -- Alessandro Ghedini <ghedo@debian.org> Mon, 28 Apr 2014 19:37:14 +0200
339 curl (7.36.0-1) unstable; urgency=high
341 * New upstream release (Closes: #742728)
342 - Fix connection re-use when using different log-in credentials
344 http://curl.haxx.se/docs/adv_20140326A.html
345 - Reject IP address wildcard matches as per CVE-2014-0139
346 http://curl.haxx.se/docs/adv_20140326B.html
347 - Set urgency=high accordingly
348 * Add 08_fix-imap-tests.patch to fix tests broken by the fix for CVE-2014-0138
350 -- Alessandro Ghedini <ghedo@debian.org> Sun, 30 Mar 2014 15:36:35 +0200
352 curl (7.35.0-1) unstable; urgency=high
354 * New upstream release
355 - Fix re-use of wrong HTTP NTLM connection as per CVE-2014-0015
356 http://curl.haxx.se/docs/adv_20140129.html
357 - Set urgency=high accordingly
360 -- Alessandro Ghedini <ghedo@debian.org> Wed, 29 Jan 2014 11:16:57 +0100
362 curl (7.34.0-1) unstable; urgency=high
364 * New upstream release
365 - Fix GnuTLS checking of a certificate CN or SAN name field when the
366 digital signature verification is turned off as per CVE-2013-6422
367 http://curl.haxx.se/docs/adv_20131217.html
368 - Set urgency=high accordingly
369 * Drop patches merged upstream:
371 - 09_fix-urlglob.patch
373 -- Alessandro Ghedini <ghedo@debian.org> Tue, 17 Dec 2013 13:16:19 +0100
375 curl (7.33.0-2) unstable; urgency=low
377 * Make -dev packages Multi-Arch: same too (Closes: #731309)
378 * Bump Standards-Version to 3.9.5 (no changes needed)
379 * Add 09_fix-urlglob.patch to fix URL globbing (Closes: #731855)
381 -- Alessandro Ghedini <ghedo@debian.org> Wed, 11 Dec 2013 18:44:37 +0100
383 curl (7.33.0-1) unstable; urgency=low
385 * New upstream release
386 - Handle arbitrary-length username and password (Closes: #719856)
387 * Remove Luk from Uploaders as per his request (Closes: #723603)
388 * Do not Build-Depends on specific automake version (Closes: #724361)
389 * Fix lintian vcs-field-not-canonical
390 * Add 08_fix-typo.patch
393 -- Alessandro Ghedini <ghedo@debian.org> Mon, 14 Oct 2013 22:11:14 +0200
395 curl (7.32.0-1) unstable; urgency=low
397 * New upstream release
398 * Fix typo in changelog entry for 7.31.0-1 (Closes: #714502)
399 * Drop 08_typo.patch (merged upstream)
400 * Drop 09_openssl-recv.patch (merged upstream)
401 * Refresh 90_gnutls.patch and 99_nss.patch
402 * Refresh 06_always-disable-valgrind.patch
403 * Enable threaded DNS resolver (Closes: #570436)
404 See NEWS.Debian for more info
406 -- Alessandro Ghedini <ghedo@debian.org> Mon, 12 Aug 2013 12:19:05 +0200
408 curl (7.31.0-2) unstable; urgency=high
410 * Add 09_openssl-recv.patch to fix incorrect OpenSSL usage (Closes: #714050)
411 * Set urgency=high because of the security fix in the previous upload
413 -- Alessandro Ghedini <ghedo@debian.org> Wed, 26 Jun 2013 11:47:00 +0200
415 curl (7.31.0-1) unstable; urgency=low
417 * New upstream release
418 - Fix URL decode buffer boundary flaw as per CVE-2013-2174
419 http://curl.haxx.se/docs/adv_20130622.html
420 * Make curl Multi-Arch: foreign (Closes: #712585)
421 * Drop 08_reset-timecond.patch (merged upstream)
423 * Add 08_typo.patch to fix a couple of typos in one of the manpages
425 -- Alessandro Ghedini <ghedo@debian.org> Sat, 22 Jun 2013 15:46:53 +0200
427 curl (7.30.0-2) unstable; urgency=low
429 * Move textual docs to the -doc package too
430 * Move manpages from -dev packages to -doc as well
431 - Add Breaks+Replaces accordingly
432 * Remove outdated Replaces/Conflicts
433 * Update watch file version to 3
434 * Add 08_reset-timecond.patch (Closes: #705783)
436 -- Alessandro Ghedini <ghedo@debian.org> Fri, 10 May 2013 17:46:46 +0200
438 curl (7.30.0-1) unstable; urgency=low
440 * New upstream release
441 * Update upstream copyright years
442 * Drop patches merged upstream:
443 - 08_NULL-pointer-dereference-on-close.patch
444 - 09_CVE-213-1944.patch
445 - 10_test1218-another-cookie-tailmatch-test.patch
447 - 03_keep_symbols_compat.patch
450 * Add libcurl4-doc package:
451 - Move *.pdf and *.html files to the libcurl4-doc package
452 - Add Suggests for -doc package to -dev packages
453 - Move examples to the -doc package
454 * Add Build-Depends on python which is used by some tests
456 -- Alessandro Ghedini <ghedo@debian.org> Thu, 18 Apr 2013 12:55:09 +0200
458 curl (7.29.0-2.1) unstable; urgency=high
460 * Non-maintainer upload.
462 [ Alessandro Ghedini ]
463 * Do not compress *.pdf files (Closes: #704093)
465 [ Salvatore Bonaccorso ]
466 * Add 09_CVE-213-1944.patch.
467 Fix CVE-2013-1944: fix tailmatching to prevent cross-domain leakage.
468 Cookies set for 'example.com' could accidentaly also be sent by libcurl
469 to the 'bexample.com' (ie with a prefix to the first domain name).
471 * Add testcase for CVE-2013-1944.
473 -- Salvatore Bonaccorso <carnil@debian.org> Fri, 12 Apr 2013 13:55:34 +0200
475 curl (7.29.0-2) unstable; urgency=low
477 * Fix a segfault when closing an unused multi handle (Closes: #701713)
478 * Mention LDAPS in packages' long descriptions
480 - Switch to short-form dh
481 - Enable test suite on hurd and kfreebsd too
482 - Enable GSSAPI support on hurd too
484 -- Alessandro Ghedini <ghedo@debian.org> Mon, 11 Mar 2013 19:02:56 +0100
486 curl (7.29.0-1) unstable; urgency=high
488 * New upstream release
489 - Fix buffer overflow when negotiating SASL DIGEST-MD5 authentication
490 as per CVE-2013-0249 (Closes: #700002)
491 http://curl.haxx.se/docs/adv_20130206.html
492 - Set urgency=high accordingly
493 * Install all the examples
494 * Update 90_gnutls.patch and 99_nss.patch
496 * Correctly pass CPPFLAGS to ./configure
499 -- Alessandro Ghedini <ghedo@debian.org> Mon, 11 Feb 2013 14:48:03 +0100
501 curl (7.28.1-1) experimental; urgency=low
503 * New upstream release
504 * Drop 05_fix-git-over-https.patch and 08_fix-git-auth.patch
506 * Update 07_do-not-disable-debug-symbols.patch
508 * Add NEWS entry about change in CURLOPT_SSL_VERIFYHOST semantics
510 -- Alessandro Ghedini <ghedo@debian.org> Mon, 26 Nov 2012 17:51:27 +0100
512 curl (7.28.0-3) unstable; urgency=low
514 * Add 07_do-not-disable-debug-symbols.patch, do not pass --enable-debug
515 anymore (Closes: #693110)
516 * Update 05_fix-git-over-https.patch to reflect new upstream patch
517 * Add 08_fix-git-auth.patch to fix HTTPS authentication (Closes: #690764)
519 -- Alessandro Ghedini <ghedo@debian.org> Sat, 17 Nov 2012 14:07:21 +0100
521 curl (7.28.0-2) unstable; urgency=low
523 * Add 05_fix-git-over-https.patch (Closes: #690551)
524 * Add 06_always-disable-valgrind.patch (Closes: #690968)
526 -- Alessandro Ghedini <ghedo@debian.org> Mon, 22 Oct 2012 14:35:02 +0200
528 curl (7.28.0-1) unstable; urgency=low
530 * New upstream release
531 - gnutls: do not fail on non-fatal handshake errors (Closes: #685402)
532 * Remove versioned build depends on libssh2 (already in stable)
533 * Bump Standards-Version to 3.9.4 (no changes needed)
534 * Refresh 01_runtests_gdb.patch
535 * Update *.symbols files
536 * Build depend on ca-certifcates to avoid test failure
538 -- Alessandro Ghedini <ghedo@debian.org> Thu, 11 Oct 2012 19:11:09 +0200
540 curl (7.27.0-1) unstable; urgency=low
542 * New upstream release
543 * Update upstream copyright
544 * Refresh 01_runtests_gdb.patch, 90_gnutls.patch and 99_nss.patch
546 -- Alessandro Ghedini <ghedo@debian.org> Wed, 08 Aug 2012 17:22:00 +0200
548 curl (7.26.0-1) unstable; urgency=low
550 * New upstream release
551 - Reject numerical IPv6 addresses outside brackets (Closes: #670126)
552 * Email change: Alessandro Ghedini -> ghedo@debian.org
553 * Stricter Depends on libcurl3 (Closes: #666089)
554 * Remove Ramakrishnan (as per his request), move myself to Maintainer
555 Thank you for all your work so far
556 * Disable memory tracking, but keep debug enabled
557 - Remove memdebug symbols (used by curl only)
558 * Refresh 01_runtests_gdb.patch, 90_gnutls.patch and 99_nss.patch
559 * Disable not-quite-working symbols hiding
561 -- Alessandro Ghedini <ghedo@debian.org> Fri, 25 May 2012 15:19:51 +0200
563 curl (7.25.0-1) unstable; urgency=low
565 * New upstream release
566 - Add --ssl-allow-beast and CURLOPT_SSL_OPTIONS (Closes: #658276)
567 - Allow negative numbers as option value (Closes: #659591)
568 * Add libssh2-1-dev to libcurl4-gnutls-dev and libcurl4-nss-dev Depends
569 * Bump debhelper compat level to 9
570 - Make *.links files executable to simplify rules file
571 * Pass --as-needed ld flag to avoid unneeded dependencies
572 - Add workaround_as_needed_bug to workaround a libtool bug
573 - Drop dont_link_to_krb5 (not needed because of --as-needed)
574 * Do some clean-up in debian/rules
575 * Update debian/copyright format as in Debian Policy 3.9.3
576 * Bump Standards-Version to 3.9.3
577 * Explicit Conflicts in -dev packages (fixes binaries-have-file-conflict)
578 * Add openssh-server to build depends to enable some more tests
579 * Update upstream copyright years
582 -- Alessandro Ghedini <al3xbio@gmail.com> Fri, 23 Mar 2012 16:24:51 +0100
584 curl (7.24.0-1) unstable; urgency=high
586 * New upstream release
587 - Improve documentation for the --capath option (Closes: #628697)
588 - Fix URL sanitization vulnerability as per CVE-2012-0036
589 http://curl.haxx.se/docs/adv_20120124.html
590 - Fix SSL CBC IV vulnerability as per CVE-2011-3389
591 http://curl.haxx.se/docs/adv_20120124B.html
592 - Set urgency=high accordingly
593 * Remove curl_links_with_rt patch (curl links to librt anyway)
594 * Improve descriptions of -dev and -dbg packages
595 * Drop fix_manpage_spelling and versioned patches (merged upstream)
597 * Add keep_symbols_compat patch to not break backwards ABI compatibility
598 * Enable libssh2 support for GnuTLS and NSS flavours too
599 (libssh2 now uses libgcrypt instead of libssl)
601 -- Alessandro Ghedini <al3xbio@gmail.com> Tue, 24 Jan 2012 12:04:04 +0100
603 curl (7.23.1-3) unstable; urgency=low
605 * Enable security hardening flags
606 * Remove libdb-dev from B-D (not used)
607 * Improve short and long descriptions
608 * Provide proper *.symbols files (Closes: #651619)
609 * Do not version Curl_* symbols (for internal use only)
610 * Do not override dh_makeshlibs version anymore
612 -- Alessandro Ghedini <al3xbio@gmail.com> Tue, 13 Dec 2011 19:55:31 +0100
614 curl (7.23.1-2) unstable; urgency=low
616 * Bump shlibs version for libcurl3-nss (Closes: #650498)
618 -- Alessandro Ghedini <al3xbio@gmail.com> Thu, 01 Dec 2011 22:32:19 +0100
620 curl (7.23.1-1) unstable; urgency=low
622 * New upstream release
623 - Do not use gnutls_priority_set_direct and
624 gnutls_certificate_type_set_priority anymore (Closes: #624024)
626 * Add --enable-debug flag to configure (Closes: #648902)
627 * One Provides/Replaces per line
628 * libcurl4-openssl-dev Provides libcurl4-dev too (Closes: #644126)
629 * Specify only 3 components for Standards-Version
630 (the fourth is not really needed)
631 * Move ca-certificates to Recommends in lib* packages (Closes: #546607)
632 * Add NSS flavour to versioned symbols
634 -- Alessandro Ghedini <al3xbio@gmail.com> Sun, 27 Nov 2011 18:45:01 +0100
636 curl (7.22.0-3) unstable; urgency=low
638 [ Ramakrishnan Muthukrishnan ]
639 * Add new Uploaders, Ian and Alessandro. (Closes: #647255)
642 * Install lintian overrides with dh_lintian.
643 * Install all files with dh_install and get rid of dh_installdirs.
645 [ Alessandro Ghedini ]
646 * New upstream release.
647 * Bump debhelper compat level to 8.
649 - One (Build-)Depends per line.
650 - Sort (Build-)Depends.
651 - Remove Build-Depends on binutils
652 (v2.18 is already in oldstable and it is Build-Essential: yes).
653 - Build depends on stunnel4 instead of stunnel
654 (stunnel is just a dummy package).
655 - Remove duplicate Section field in package curl.
656 - Add Luk to Uploaders too, sort names.
658 - Update runtests_gdb patch, add DEP3 headers.
659 - Update gnutls and nss patches, add DEP3 headers.
660 - Refresh other patches.
661 - Add DEP3 headers to all the patches.
662 - Remove libtool patch (not applied anyway)
663 - Set Forwarded: not-needed for Debian specific patches
664 * Replace dh_clean -k call with dh_prep
665 (dh_clean -k is deprecated since debhelper 7).
666 * Add fix_manpage_spelling patch
668 - Switch to DEP5 format
669 - Update copyright information
670 * Add librtmp-dev to libcurl4-nss-dev too
672 -- Alessandro Ghedini <al3xbio@gmail.com> Sun, 13 Nov 2011 21:07:32 +0100
674 curl (7.21.7-3) unstable; urgency=low
676 * debian/rules: Build only curl and libcurl3 with rtmp support. Rest of the
677 packages do not need to be built with rtmp support. (closes: #641173)
679 -- Ramakrishnan Muthukrishnan <rkrishnan@debian.org> Sun, 11 Sep 2011 22:08:08 +0200
681 curl (7.21.7-2) unstable; urgency=low
683 * debian/control: libcurl*-dev packages should depend on librtmp-dev.
685 * debian/rules: add build-arch and build-indep targets.
687 -- Ramakrishnan Muthukrishnan <rkrishnan@debian.org> Mon, 05 Sep 2011 16:12:42 +0200
689 curl (7.21.7-1) unstable; urgency=low
691 * New Upstream release which fixes the following bugs.
692 - libcurl3-gnutls: HTTPS over HTTP still broken in
693 Git (closes: #627335)
694 - git-core: gnutls_handshake() fail when using
695 https:// over a proxy (closes: #559371)
696 * debian/control: capitalize 'ftp'. (closes: #587338)
697 * debian/rules: add build-arch and build-indep targets.
699 -- Ramakrishnan Muthukrishnan <rkrishnan@debian.org> Sat, 30 Jul 2011 17:57:08 +0530
701 curl (7.21.6-3) unstable; urgency=low
703 * Apply the Multiarch patch from Steve Langasek.
706 -- Ramakrishnan Muthukrishnan <rkrishnan@debian.org> Wed, 29 Jun 2011 08:26:56 +0530
708 curl (7.21.6-2) unstable; urgency=high
710 * Fix for the inappropriate GSSAPI delegation vulnerability (CVE-2011-2192).
713 -- Ramakrishnan Muthukrishnan <rkrishnan@debian.org> Sat, 25 Jun 2011 23:37:04 +0530
715 curl (7.21.6-1) unstable; urgency=low
717 * New upstream release to fix a HTTPS over a HTTP proxy bug on 7.21.5.
719 -- Ramakrishnan Muthukrishnan <rkrishnan@debian.org> Sat, 23 Apr 2011 07:12:57 +0530
721 curl (7.21.5-1) unstable; urgency=low
723 * New Upstream version. (closes: #623459)
724 * debian/patches/{sslv2_disable, error_code}: removed as these
725 patches were backported earlier from new upstream and this
726 release incorporates them.
728 -- Ramakrishnan Muthukrishnan <rkrishnan@debian.org> Fri, 22 Apr 2011 13:14:41 +0530
730 curl (7.21.4-2) unstable; urgency=low
732 * debian/patches/{sslv2-disable, series}: Apply the
733 upstream commit c66b0b32fba175d5f096c944d8ec8f9f06299f4a.
735 * debian/{rules, control}: enable rtmp. (closes: #622328)
736 * debian/control: removing hurd from dependencies. Hurd is
737 an 'essential' package.
739 -- Ramakrishnan Muthukrishnan <rkrishnan@debian.org> Wed, 13 Apr 2011 16:15:27 -0700
741 curl (7.21.4-1) unstable; urgency=low
743 * New upstream release.
744 * debian/control: downgraded the version number of libdb-dev required
745 to 4.6 from 4.7, based on the inputs from Erik Schanze <schanzi_@gmx.de>.
747 -- Ramakrishnan Muthukrishnan <rkrishnan@debian.org> Mon, 28 Feb 2011 19:35:36 +0530
749 curl (7.21.3-1) unstable; urgency=low
751 * New upstream release.
752 * debian/*.manpages: adding all manpages for the curl library.
754 * gnutls->handshake: improved timeout handling. See #594150 for details.
756 -- Ramakrishnan Muthukrishnan <rkrishnan@debian.org> Wed, 15 Dec 2010 23:39:26 +0530
758 curl (7.21.2-4) unstable; urgency=low
760 * support for curl library built against nss.
762 * honour DEB_BUILD_OPTIONS=nocheck option.
765 -- Ramakrishnan Muthukrishnan <rkrishnan@debian.org> Thu, 09 Dec 2010 20:11:37 +0530
767 curl (7.21.2-3) unstable; urgency=low
769 * debian/rules: reverting changes related to c-ares inclusion.
770 * debian/control: removing libc-ares-dev for now.
773 -- Ramakrishnan Muthukrishnan <rkrishnan@debian.org> Thu, 02 Dec 2010 10:56:36 +0530
775 curl (7.21.2-2) unstable; urgency=low
777 * debian/control: add libc-ares-dev as build dependency.
778 * debian/rules: invoke configure with --enable-ares.
780 * debian/copyright: add copyright notice of `lib/security.c'
781 to the copyright file. (closes: #603712)
783 -- Ramakrishnan Muthukrishnan <rkrishnan@debian.org> Tue, 30 Nov 2010 17:35:29 +0530
785 curl (7.21.2-1) unstable; urgency=low
787 * New upstream release.
789 -- Ramakrishnan Muthukrishnan <rkrishnan@debian.org> Mon, 18 Oct 2010 11:13:17 +0530
791 curl (7.21.1-1) unstable; urgency=low
793 * New upstream release.
795 -- Ramakrishnan Muthukrishnan <rkrishnan@debian.org> Thu, 12 Aug 2010 08:20:48 +0530
797 curl (7.21.0-1) unstable; urgency=low
801 -- Ramakrishnan Muthukrishnan <rkrishnan@debian.org> Wed, 16 Jun 2010 19:25:37 +0530
803 curl (7.20.1-2) unstable; urgency=low
805 * debian/rules: Removed the custom LDFLAGS variable. This is not
806 required as we are no longer using the libtool patch.
809 -- Ramakrishnan Muthukrishnan <rkrishnan@debian.org> Wed, 28 Apr 2010 18:40:27 +0530
811 curl (7.20.1-1) unstable; urgency=low
813 * New upstream release.
814 * debian/patches/missing-double-quote: No longer needed as it has been
815 fixed by the upstream.
816 * debian/patches/no_com_err: Reworked the patches for the new release.
817 * debian/patches/versioned: fix for build failure of 'make test'.
819 * debian/rules: removed --enable-ldaps option from the configure as LDAP
820 SSL (Novell extensions to openldap) is not available as Debian packages.
821 * lib/http.c: chunked-encoding with Content-Length header problem has
822 been fixed in the upstream. (closes: #572276)
824 -- Ramakrishnan Muthukrishnan <rkrishnan@debian.org> Mon, 19 Apr 2010 09:21:35 +0530
826 curl (7.20.0-3) unstable; urgency=low
828 * debian/control: Vcs* tags added.
829 * docs/libcurl/libcurl.m4: added the missing double quote (closes: #576518).
831 -- Ramakrishnan Muthukrishnan <rkrishnan@debian.org> Mon, 05 Apr 2010 18:56:40 +0530
833 curl (7.20.0-2) unstable; urgency=low
835 * New Maintainer (closes: #574137).
836 * Bug #533669 (curl segmentation fault in addbyter()) is fixed
837 from release 7.19.7 onwards (closes: #533669).
838 * Bug #510559 (curl sends whitespace unencoded in the url) can't
839 be reproduced in the 7.20.0 release (closes: #510559).
841 -- Ramakrishnan Muthukrishnan <rkrishnan@debian.org> Thu, 18 Mar 2010 08:55:19 +0530
843 curl (7.20.0-1) unstable; urgency=low
845 * Package is orphaned.
846 * New upstream release.
847 * Switch to dpkg-source 3.0 (quilt) format (closes: #538547).
848 * Fixed build error with binutils-gold (closes: #554296).
850 -- Domenico Andreoli <cavok@debian.org> Tue, 09 Feb 2010 13:06:39 +0100
852 curl (7.19.7-1) unstable; urgency=low
854 * New upstream release:
855 - curl_getdate(3) now correctly manages single letter military
856 timezones as specified in RFC 822 (closes: #551461).
857 * build depends on generic libdb-dev (closes: #548476).
858 * build depends on libssh2-1-dev (>= 1.2) to enable new curl options.
860 -- Domenico Andreoli <cavok@debian.org> Thu, 05 Nov 2009 10:11:57 +0100
862 curl (7.19.5-1) unstable; urgency=low
864 * New upstream release
865 * Fix "libcurl3-gnutls has memory corruption" by upgrading to new upstream
866 release, which fixes this bug (Closes: #530131)
867 * update standards version to 3.8.1
868 * adjust overrides from libdevel to debug for -dbg package
869 * adjust doc-base section
871 -- Andreas Schuldei <andreas@debian.org> Sun, 24 May 2009 21:12:19 +0200
873 curl (7.19.4-1) unstable; urgency=low
875 * New upstream release
876 * Fix "newer bdb version" <explain what you changed and why>
878 * resolve libtool version confusion, thanks to
879 Stefanos Harhalakis <v13@v13.gr>
880 * add new dependency on libgcrypt11-dev due to newly arising binary symbols
882 -- Andreas Schuldei <andreas@debian.org> Thu, 02 Apr 2009 23:35:45 +0200
884 curl (7.18.2-8lenny1) stable-security; urgency=high
886 * Applied upstream patch to fix arbitrary file access (CVE-2009-0037).
888 -- Domenico Andreoli <cavok@debian.org> Tue, 03 Mar 2009 10:29:03 +0100
890 curl (7.18.2-8) unstable; urgency=low
892 * Fix "Please add support for ldap/ldaps protocols"
893 by changing the linker option for liblber (Closes: #506096)
895 -- Andreas Schuldei <andreas@debian.org> Fri, 26 Dec 2008 23:48:19 +0100
897 curl (7.18.2-7) unstable; urgency=low
899 * disable c-ares support again, no fix yet, just get stuff working again.
901 -- Andreas Schuldei <andreas@debian.org> Tue, 15 Jul 2008 01:17:29 +0200
903 curl (7.18.2-6) unstable; urgency=low
905 * enable c-ares support, with ipv6 support
907 -- Andreas Schuldei <andreas@debian.org> Fri, 11 Jul 2008 02:05:16 +0200
909 curl (7.18.2-5) unstable; urgency=low
911 * /usr/lib/pkgconfig/libcurl.pc: "pkg-config --libs libcurl" returns
912 "-Wl, -z, defs" (Closes: #488701), closing same bug again for
913 curl-config --libs command
915 -- Andreas Schuldei <andreas@jesaja.schuldei.org> Wed, 02 Jul 2008 11:24:40 +0200
917 curl (7.18.2-4) unstable; urgency=medium
919 * /usr/lib/pkgconfig/libcurl.pc: "pkg-config --libs libcurl" returns
920 "-Wl, -z, defs" (Closes: #488701)
922 -- Andreas Schuldei <andreas@debian.org> Mon, 30 Jun 2008 23:59:55 +0200
924 curl (7.18.2-3) unstable; urgency=low
926 * removing c-ares from the dependencies
928 -- Andreas Schuldei <andreas@debian.org> Sat, 28 Jun 2008 03:34:50 +0200
930 curl (7.18.2-2) unstable; urgency=medium
932 * blanking the "dependency_libs" line in lib*.la file to keep all the listed libs
933 from being linked to other libs linking to curl.
934 * fixing miss-linking problem by specifying liblber as a configure argument
935 * disabling c-ares again for stability reasons
936 * correcting libgssapi linking in configure.ac (patch no_com_err)
938 -- Andreas Schuldei <andreas@debian.org> Fri, 27 Jun 2008 03:40:18 +0200
940 curl (7.18.2-1e1) experimental; urgency=low
942 * testing c-ares-ipv6 integration patch
944 -- Andreas Schuldei <andreas@debian.org> Mon, 23 Jun 2008 08:48:31 +0200
946 curl (7.18.2-1) unstable; urgency=low
948 * New upstream release:
949 - removed patches/ftp-response, it is already in the upstream release
950 - fixed issues with kerberos ftp (closes: #478864).
951 * Disable c-ares support, it is still not ready for Debian's wide
952 user base (closes: #478864, #481189).
953 * Standards-Version bumped to 3.8.0:
954 - added support for parallel builds to debian/rules
955 * Removal of $QUILT_PC's override makes this package ready for new
956 source format 3.0 (quilt) (closes: #485023).
957 * Configure build with --with-ca-path but only for OpenSSL flavour,
958 GnuTLS supports only --with-ca-bundle (closes: #482814, #483999).
959 Both libcurl3 and libcurl3-gnutls now depend on ca-certificates.
961 -- Domenico Andreoli <cavok@debian.org> Mon, 09 Jun 2008 14:09:42 +0200
963 curl (7.18.1-1) unstable; urgency=low
965 * New upstream release.
966 * Fixed crossbuilding bug (closes: #465089).
967 * Improved error reporting in case of failing FTP (closes: #474224).
968 * Enable c-ares support (closes: #352694).
969 * libcurl3-dbg now depends on either libcurl3 or libcurl3-gnutls
972 -- Domenico Andreoli <cavok@debian.org> Thu, 17 Apr 2008 10:22:28 +0200
974 curl (7.18.0-1) unstable; urgency=low
976 * New upstream release.
977 * Use Homepage field in debian/control.
979 -- Domenico Andreoli <cavok@debian.org> Tue, 29 Jan 2008 02:16:25 +0100
981 curl (7.17.1-1) unstable; urgency=low
983 * New upstream release:
984 - fixed bad use of "its" in curl.1 (closes: #443734)
985 - fixed curl_easy_escape() with input bytes that are >= 0x80
988 -- Domenico Andreoli <cavok@debian.org> Wed, 31 Oct 2007 01:12:54 +0100
990 curl (7.17.0-1) unstable; urgency=low
992 * New upstream release.
993 * Updated to use libssh2-1-dev (closes: #441979, #442198).
994 * Do not run the test suite on hurd (closes: #433834).
995 * Enabled support for LDAPS protocol.
997 -- Domenico Andreoli <cavok@debian.org> Fri, 14 Sep 2007 00:24:21 +0200
999 curl (7.16.4-5) unstable; urgency=low
1001 * libcurl4-openssl-dev now depends on libssh2-0-dev.
1002 closes: #439317, #439326.
1004 -- Domenico Andreoli <cavok@debian.org> Fri, 24 Aug 2007 18:13:17 +0200
1006 curl (7.16.4-4) unstable; urgency=low
1008 * Build libcurl/GnuTLS without libssh2 because of the usual OpenSSL
1009 vs. GPL software lincense conflict (closes: #439176).
1011 -- Domenico Andreoli <cavok@debian.org> Thu, 23 Aug 2007 23:47:35 +0200
1013 curl (7.16.4-3) unstable; urgency=low
1015 * Added support for scp and SFTP protocols.
1017 -- Domenico Andreoli <cavok@debian.org> Wed, 22 Aug 2007 00:48:32 +0200
1019 curl (7.16.4-2) unstable; urgency=low
1021 * Fixed regression with FTP sites not requesting PASS (closes: #435771).
1023 -- Domenico Andreoli <cavok@debian.org> Sat, 04 Aug 2007 02:04:40 +0200
1025 curl (7.16.4-1) unstable; urgency=low
1027 * New upstream release (closes: #432514).
1028 * Welcome Andreas to the curl packagers!
1029 * Build-Depends is now more backporting friendly.
1031 -- Domenico Andreoli <cavok@debian.org> Wed, 18 Jul 2007 16:44:30 +0200
1033 curl (7.16.2-6) unstable; urgency=low
1035 * Added missing libcurl3 symlinks (closes: #429945)
1036 Patch courtesy of Bryan Donlan.
1038 -- Domenico Andreoli <cavok@debian.org> Sat, 23 Jun 2007 00:39:20 +0200
1040 curl (7.16.2-5) unstable; urgency=low
1043 * Re-introduce curl3 symbol versions and rename the packages back to
1044 libcurl3*, restoring ABI compatibility with the etch version of the
1047 [ Domenico Andreoli ]
1048 * Package libcurl4-gnutls-dev now suggests libcurl3-dbg.
1049 * libcurl3-dbg replaces/conflict/provide libcurl4-dbg.
1050 * Properly use ${binary:Version} in control file.
1052 -- Domenico Andreoli <cavok@debian.org> Wed, 20 Jun 2007 17:52:38 +0200
1054 curl (7.16.2-4) unstable; urgency=low
1056 * Fixed configure.ac in case of build with GNUTLS (closes: #425013).
1057 * Fixed double-free bug (closes: #424894).
1058 Patch courtesy of Daniel Stenberg.
1060 -- Domenico Andreoli <cavok@debian.org> Sun, 20 May 2007 01:15:01 +0200
1062 curl (7.16.2-3) unstable; urgency=low
1064 * Updated to db4.5 (closes: #421933).
1065 * Got rid of unused libcomerr2 dependency (closes: #392294).
1067 -- Domenico Andreoli <cavok@debian.org> Tue, 08 May 2007 08:46:21 +0200
1069 curl (7.16.2-2) experimental; urgency=low
1071 * Improved package descriptions (closes: #410472).
1072 * Updated package Provides to ease the soname transition.
1074 -- Domenico Andreoli <cavok@debian.org> Fri, 27 Apr 2007 15:37:44 +0200
1076 curl (7.16.2-1) experimental; urgency=low
1078 * New upstream release.
1079 * libcurl4-openssl-dev now depends on libcurl4-openssl (closes: #419774).
1080 * Bumped shlibs version to 7.16.2-1.
1081 * Patches are now managed with quilt.
1083 -- Domenico Andreoli <cavok@debian.org> Wed, 18 Apr 2007 09:29:48 +0200
1085 curl (7.16.1-1) experimental; urgency=low
1087 * New upstream release.
1088 * Bumped shlibs version to 7.16.1-1.
1089 * Added HIDDEN section to version script to handle any __*, _rest or
1090 _save* local symbol.
1091 * Gopher protocol is not supported since 7.15.2. Removed any reference
1092 in package description (closes: #408704).
1093 * Moved libcurl/openssl to the new package libcurl4-openssl, now
1094 libcurl4 contains a version with no SSL or GSSAPI support (any
1095 future cryptographic stuff will be kept out of there).
1096 * Package libcurl4-dev now contains the matching headers for libcurl4
1099 -- Domenico Andreoli <cavok@debian.org> Thu, 1 Feb 2007 12:49:32 +0100
1101 curl (7.16.0-1) experimental; urgency=low
1103 * New upstream release.
1104 * Bumped shlibs version to 7.16.0-1.
1105 * libcurl4 and libcurl4-gnutls now only recommend ca-certificates
1107 * pkg-config .pc file now uses Libs.private (closes: #405226).
1109 -- Domenico Andreoli <cavok@debian.org> Fri, 26 Jan 2007 14:26:55 +0100
1111 curl (7.15.5-1) unstable; urgency=low
1113 * New upstream release:
1114 - fixed nodes removal from the splay tree (closes: #375076).
1115 * Make package build also if $TAPE is set (closes: #377470).
1116 * Bumped shlibs version to 7.15.5-1.
1118 -- Domenico Andreoli <cavok@debian.org> Mon, 7 Aug 2006 10:26:13 +0200
1120 curl (7.15.4-1ubuntu1) edgy; urgency=low
1122 * Synchronize to Debian. Only change left: Removal of stunnel and
1123 libdb4.2-dev build dependencies.
1125 -- Martin Pitt <martin.pitt@ubuntu.com> Thu, 29 Jun 2006 15:04:24 +0200
1127 curl (7.15.4-1) unstable; urgency=low
1129 * New upstream release.
1130 * Bumped shlibs version to 7.15.4-1.
1132 -- Domenico Andreoli <cavok@debian.org> Wed, 14 Jun 2006 14:41:16 +0200
1134 curl (7.15.3-2) unstable; urgency=low
1136 * Fixed bug in configure.ac that makes FTBFS (closes: #367954).
1138 -- Domenico Andreoli <cavok@debian.org> Wed, 31 May 2006 15:18:26 +0200
1140 curl (7.15.3-1) unstable; urgency=high
1142 * New upstream release:
1143 - fixed TFTP packet buffer overflow vulnerability
1144 [lib/tftp.c, CVE-2006-1061].
1145 - improved curl_getenv.3 manpage grammar (closes: #357388).
1147 -- Domenico Andreoli <cavok@debian.org> Mon, 20 Mar 2006 11:46:25 +0100
1149 curl (7.15.2-3) unstable; urgency=low
1151 * Applied upstream patch to fix multi interface and multi-part formposts
1153 * Build back with -O2, gcc 4.0.2-10 fixed the previously trigged bug.
1155 -- Domenico Andreoli <cavok@debian.org> Wed, 8 Mar 2006 15:29:15 +0100
1157 curl (7.15.2-2) unstable; urgency=low
1159 * Added missing autotools invocation. Re-added versioned symbols
1161 * Bumped shlibs version to 7.15.2-2.
1162 * Build with -O3 to work around sospicious segfaults on tests 253
1165 -- Domenico Andreoli <cavok@debian.org> Sat, 4 Mar 2006 22:47:23 +0100
1167 curl (7.15.2-1) unstable; urgency=low
1169 * New upstream release.
1170 * Bumped shlibs version to 7.15.2-1.
1171 * Adopted debhelper's compatibility level 5.
1173 -- Domenico Andreoli <cavok@debian.org> Wed, 1 Mar 2006 16:12:51 +0100
1175 curl (7.15.1-1ubuntu2) dapper; urgency=low
1177 * SECURITY UPDATE: Arbitrary remote code execution with long tftp:// URLs.
1178 * lib/tftp.c: Fix unbounded sprintf() to avoid buffer overflow. Thanks to
1179 Ulf Harnhammar for discovering this.
1182 -- Martin Pitt <martin.pitt@ubuntu.com> Thu, 16 Mar 2006 11:30:25 +0100
1184 curl (7.15.1-1ubuntu1) dapper; urgency=low
1186 * Resynchronise with Debian to get URL parser overflow fix from 7.15.1
1189 -- Martin Pitt <martin.pitt@ubuntu.com> Mon, 12 Dec 2005 15:04:52 +0100
1191 curl (7.15.1-1) unstable; urgency=low
1193 * New upstream release:
1194 - fixed buffer overflow in URL parser function (closes: #342339).
1196 -- Domenico Andreoli <cavok@debian.org> Wed, 7 Dec 2005 11:11:38 +0100
1198 curl (7.15.0-5.1) unstable; urgency=high
1200 * Non-maintainer upload.
1201 * Urgency high for RC bug fix.
1202 * Let libcurl3-*-dev depend on libkrb5-dev (closes: #340784, #340916).
1204 -- Luk Claes <luk@debian.org> Sun, 4 Dec 2005 11:59:20 +0100
1206 curl (7.15.0-5) unstable; urgency=low
1208 * libcurl3-gnutls-dev and libcurl3-openssl-dev now only recommend
1209 libkrb5-dev (closes: #334888).
1210 * Applied upstream patch to fix error message in case FTP-path does
1211 not exist (closes: #338680).
1212 * Applied upstream patch to fix parsing of --limit-rate command line
1213 option (closes: #338681).
1215 -- Domenico Andreoli <cavok@debian.org> Fri, 25 Nov 2005 10:30:25 +0100
1217 curl (7.15.0-4ubuntu1) dapper; urgency=low
1219 * Resynchronise with Debian (only change left: Removal of stunnel build
1221 * Remove libdb4.2-dev build dependency.
1223 -- Martin Pitt <martin.pitt@ubuntu.com> Thu, 10 Nov 2005 17:44:35 -0500
1225 curl (7.15.0-4) unstable; urgency=low
1227 * Fixed output of curl-config --vernum (closes: #335296).
1228 * libcurl3-openssl-dev now replaces libcurl3-dev older than 7.14.1-1
1231 -- Domenico Andreoli <cavok@debian.org> Tue, 25 Oct 2005 11:48:53 +0200
1233 curl (7.15.0-3) unstable; urgency=low
1235 * libcurl3 and libcurl3-gnutls now suggest libldap2 (closes: #294407).
1237 * Re-introduced libcurl3-dev package for transition reasons.
1239 -- Domenico Andreoli <cavok@debian.org> Wed, 19 Oct 2005 12:45:43 +0200
1241 curl (7.15.0-2) unstable; urgency=low
1243 * Fixed depends of libcurl3-*-dev packages (closes: #334021, #333609, #334048).
1244 * Bumped shlibs version to 7.15.0-1 (closes: #334053).
1246 -- Domenico Andreoli <cavok@debian.org> Sun, 16 Oct 2005 15:34:40 +0200
1248 curl (7.15.0-1) unstable; urgency=low
1250 * New upstream release:
1251 - fixed user+domain name buffer overflow in the NTLM code
1252 (CAN-2005-3185, closes: #333734).
1253 - libcurl3-*-dev packages now depend on libkrb5-dev (closes: #333609).
1254 - improved docs about curl_easy_setopt() and ERRORBUFFER (closes: #329313).
1256 -- Domenico Andreoli <cavok@debian.org> Fri, 14 Oct 2005 13:32:06 +0200
1258 curl (7.14.1-5) unstable; urgency=low
1260 * Added build dependency on libtool (closes: #332729, #333174).
1262 -- Domenico Andreoli <cavok@debian.org> Tue, 11 Oct 2005 10:05:36 +0200
1264 curl (7.14.1-4) unstable; urgency=low
1266 * Fixed SEE ALSO section in curl_excape.3 (closes: #331505).
1267 * Fixed configure.ac when --host=i586-mingw32msvc is given (closes: #329444).
1268 * Added missing example files (closes: #331722).
1269 * Updated build dependency for OpenSSL 0.9.8 transition.
1271 -- Domenico Andreoli <cavok@debian.org> Mon, 10 Oct 2005 12:43:25 +0200
1273 curl (7.14.1-3) experimental; urgency=low
1275 * Fixed soname of libcurl-gnutls.so* variant.
1276 * Fixed broken sentence (closes: #329305).
1277 * Fixed reference to TheArtOfHttpScripting.gz (closes: #329299).
1278 * Added clarification about WRITEFUNCTION and WRITEDATA (closes: #329311).
1280 -- Domenico Andreoli <cavok@debian.org> Wed, 28 Sep 2005 17:13:51 +0200
1282 curl (7.14.1-2) experimental; urgency=low
1284 * Started using the system-wide CA certificate file (closes: #308514).
1285 * Fixed apostrophe typos in the curl man page (closes: #326511).
1286 * Only curl_* symbols are now globally visible outside of libcurl.
1288 -- Domenico Andreoli <cavok@debian.org> Sat, 17 Sep 2005 23:52:28 +0200
1290 curl (7.14.1-1) experimental; urgency=low
1292 * New upstream release.
1293 * libcurl3-gnutls has a modified soname and may be installed together
1294 with libcurl3 (closes: #318590).
1295 * Both libcurl3 and libcurl3-gnutls are built with versioned symbols
1296 and with support of GSSAPI authentication.
1297 * Renamed libcurl3-dev to libcurl3-openssl-dev.
1298 * Dropped package libcurl3-gssapi.
1300 -- Domenico Andreoli <cavok@debian.org> Thu, 15 Sep 2005 23:59:32 +0200
1302 curl (7.14.0-5) unstable; urgency=low
1304 * Added libcurl3-gnutls and libcurl3-gnutls-dev packages (closes: #318590).
1305 * libcurl3-gssapi now has its own shlibs file. Packages built with this
1306 package installed will depend on it.
1308 -- Domenico Andreoli <cavok@debian.org> Thu, 18 Aug 2005 02:26:38 +0200
1310 curl (7.14.0-4) unstable; urgency=low
1312 * OpenSSL is back (closes: #321294, #321391).
1314 -- Domenico Andreoli <cavok@debian.org> Fri, 5 Aug 2005 23:34:45 +0200
1316 curl (7.14.0-3) unstable; urgency=low
1318 * Updated the use of dpkg-architecture (closes: #320046).
1319 * Added missing aclocal file libcurl.m4 to libcurl3-dev (closes: #315848).
1320 * Added (many) missing man pages (closes: #315850).
1321 * OpenSSL is replaced by GnuTLS in providing SSL support (closes: #318590).
1322 * Heimdal is replaced by MIT Kerberos in providing GSSAPI support.
1324 -- Domenico Andreoli <cavok@debian.org> Tue, 2 Aug 2005 22:34:01 +0200
1326 curl (7.14.0-2ubuntu1) breezy; urgency=low
1328 * Synchronize with Debian.
1330 -- Matthias Klose <doko@ubuntu.com> Tue, 26 Jul 2005 19:03:01 +0200
1332 curl (7.14.0-2) unstable; urgency=low
1334 * Rebuilt and uploaded to unstable.
1336 -- Domenico Andreoli <cavok@debian.org> Wed, 15 Jun 2005 11:41:32 +0200
1338 curl (7.14.0-1) experimental; urgency=low
1340 * New upstream release.
1342 -- Domenico Andreoli <cavok@debian.org> Tue, 17 May 2005 10:42:35 +0200
1344 curl (7.13.2-3) unstable; urgency=high
1346 * HTTP response headers with null bytes are now correctly managed
1349 -- Domenico Andreoli <cavok@debian.org> Fri, 3 Jun 2005 23:59:30 +0200
1351 curl (7.13.2-2) unstable; urgency=low
1353 * Fixed conditional build of package libcurl3-gssapi
1354 (closes: #303939, #303953).
1356 -- Domenico Andreoli <cavok@debian.org> Mon, 11 Apr 2005 19:00:27 +0200
1358 curl (7.13.2-1) unstable; urgency=low
1360 * New upstream release:
1361 - fixed curl man page typos (closes: #302820).
1363 -- Domenico Andreoli <cavok@debian.org> Tue, 5 Apr 2005 14:41:13 +0200
1365 curl (7.13.1-3) unstable; urgency=low
1367 * Fixed hanging of some SSL connections (closes: #302366).
1369 -- Domenico Andreoli <cavok@debian.org> Thu, 31 Mar 2005 16:27:41 +0200
1371 curl (7.13.1-2) unstable; urgency=low
1373 * Rebuilt to get the correct libidn11 dependency (closes: #299348).
1374 * Added some missing documentation files (closes: #298855).
1376 -- Domenico Andreoli <cavok@debian.org> Wed, 16 Mar 2005 14:30:03 +0100
1378 curl (7.13.1-1) unstable; urgency=low
1380 * New upstream release.
1381 * Bumped up shlibs version for libcurl3 because of new curl options.
1383 -- Domenico Andreoli <cavok@debian.org> Fri, 4 Mar 2005 16:03:17 +0100
1385 curl (7.13.0-2) unstable; urgency=high
1387 * Fixed NTLM Authentication buffer overflow (closes: #296678).
1388 Patch courtesy of Daniel Stenberg. This handles CAN-2005-0490.
1389 * Removed libcurl2* packages and all the scary stuff used to build them
1392 -- Domenico Andreoli <cavok@debian.org> Thu, 24 Feb 2005 10:07:22 +0100
1394 curl (7.13.0-1) unstable; urgency=low
1396 * New upstream release.
1397 * libcurl3 now suggests package libldap2-dev to enable support for
1399 * Bumped up shlibs version for libcurl3 because of new curl options.
1401 -- Domenico Andreoli <cavok@debian.org> Sat, 5 Feb 2005 10:39:52 +0100
1403 curl (7.12.3-2ubuntu3) hoary; urgency=low
1405 * Fix the version numbers internal to debian/rules. Closes; #8088
1407 -- LaMont Jones <lamont@ubuntu.com> Wed, 23 Mar 2005 18:41:29 -0700
1409 curl (7.12.3-2) unstable; urgency=low
1411 * Disabled test suite on m68k, it stalls.
1413 -- Domenico Andreoli <cavok@debian.org> Thu, 30 Dec 2004 11:11:48 +0100
1415 curl (7.12.3-1) unstable; urgency=low
1417 * New upstream release:
1418 - fixed debug tracing to network socket is stderr is closed
1420 * Applied patch to fix getpass license problems (closes: #286794).
1421 Patch courtesy of Daniel Stenberg.
1422 * Bumped up shlibs version for libcurl3 because of new curl options.
1424 -- Domenico Andreoli <cavok@debian.org> Mon, 27 Dec 2004 12:50:30 +0100
1426 curl (7.12.2-2) unstable; urgency=low
1428 * libcurl3-dbg package is now built by dh_strip --dbg-package
1430 * Added build dependency on libdb4.2-dev.
1432 -- Domenico Andreoli <cavok@debian.org> Thu, 4 Nov 2004 11:36:17 +0100
1434 curl (7.12.2-1) unstable; urgency=low
1436 * New upstream release.
1437 * Update diff to 7.11.2.
1438 * Add debian/watch file.
1439 * Add myself as a uploader.
1441 -- Matthias Klose <doko@debian.org> Wed, 3 Nov 2004 00:55:52 +0100
1443 curl (7.12.1-1) unstable; urgency=low
1445 * New upstream release:
1446 - workaround for ASN1_STRING_to_UTF8 failing if input is already
1447 UTF-8 encoded (closes: #264711).
1448 * Bumped up shlibs version for libcurl3 because of the introduction
1449 of FTP 3rd party transfer support options.
1451 -- Domenico Andreoli <cavok@debian.org> Tue, 10 Aug 2004 11:40:29 +0200
1453 curl (7.12.0.rel-6) unstable; urgency=low
1455 * In rebuilding the 7.11.2 tree starting from the 7.12.0 one,
1456 lib/getdate.y is patched before lib/getdate.c (closes: #262597).
1458 -- Domenico Andreoli <cavok@debian.org> Sun, 1 Aug 2004 17:59:57 +0200
1460 curl (7.12.0.rel-5) unstable; urgency=low
1462 * Tests are performed only if build target and building host are the
1463 same and are not kfreebsd-gnu or knetbsd-gnu (closes: #261591).
1464 * On hurd-i386 libcurl3-gssapi is not built.
1466 -- Domenico Andreoli <cavok@debian.org> Thu, 29 Jul 2004 15:17:51 +0200
1468 curl (7.12.0.rel-4) unstable; urgency=low
1470 * Added build dependency on groff-base to really build the built-in
1472 * libcurl3 now replaces old libcurl2 versions (closes: #255262).
1474 -- Domenico Andreoli <cavok@debian.org> Tue, 20 Jul 2004 11:40:09 +0200
1476 curl (7.12.0.rel-3) unstable; urgency=low
1478 * Enabled curl's built-in manual.
1479 * configure script for 7.11.2 is now managed correctly.
1481 -- Domenico Andreoli <cavok@debian.org> Sun, 18 Jul 2004 22:25:00 +0200
1483 curl (7.12.0.rel-2) unstable; urgency=low
1485 * libcurl2 uses curl-ca-bundle-7.11.2.crt (closes: #255262).
1486 Yes, it is a hack to not add libcurl-common package right now.
1488 -- Domenico Andreoli <cavok@debian.org> Sun, 18 Jul 2004 16:40:45 +0200
1490 curl (7.12.0.rel-1) experimental; urgency=low
1492 * Version 7.12.0 is back with proper libcurl3* packages.
1493 * libcurl2* 7.11.2 packages are still provided (closes: #252879).
1494 * Enabled again the support for libidn.
1496 -- Domenico Andreoli <cavok@debian.org> Sun, 6 Jun 2004 23:09:33 +0200
1498 curl (7.12.0.is.7.11.2-1) unstable; urgency=low
1500 * Reverted to version 7.11.2 (closes: #252348).
1501 * Disabled support for libidn (closes: #252367). This is to leave
1502 curl in unstable as much similar as possible to the one in testing.
1504 -- Domenico Andreoli <cavok@debian.org> Fri, 4 Jun 2004 19:09:25 +0200
1506 curl (7.12.0-1) unstable; urgency=low
1508 * New upstream release:
1509 - fixed minor man page problem (closes: #232928)
1510 - improved --create-dirs description in curl man page (closes: #251351)
1511 * Enabled support for libidn.
1513 -- Domenico Andreoli <cavok@debian.org> Wed, 2 Jun 2004 18:06:05 +0200
1515 curl (7.11.2-2) unstable; urgency=low
1517 * Fixed curl.1 man page (closes: #232928).
1518 Patch courtesy of Daniel Stenberg, the upstream developer.
1520 -- Domenico Andreoli <cavok@debian.org> Tue, 27 Apr 2004 19:47:09 +0200
1522 curl (7.11.2-1) unstable; urgency=low
1524 * New upstream release.
1525 * Bumped up shlibs version because of the introduction of
1526 CURLOPT_TCP_NODELAY option.
1528 -- Domenico Andreoli <cavok@debian.org> Mon, 26 Apr 2004 14:14:20 +0200
1530 curl (7.11.1-2) unstable; urgency=low
1532 * Added GSSAPI support to package libcurl2-gssapi (closes: #241553).
1534 -- Domenico Andreoli <cavok@debian.org> Fri, 2 Apr 2004 18:03:15 +0200
1536 curl (7.11.1-1) unstable; urgency=low
1538 * New upstream release.
1539 * Bumped up shlibs version because of the introduction of
1540 CURLOPT_POSTFIELDSIZE_LARGE option.
1542 -- Domenico Andreoli <cavok@debian.org> Fri, 19 Mar 2004 11:39:07 +0100
1544 curl (7.11.0-4) unstable; urgency=low
1546 * Applied fix from upstream's CVS which adds another CRLF in
1549 -- Domenico Andreoli <cavok@debian.org> Sun, 1 Feb 2004 13:19:02 +0100
1551 curl (7.11.0-3) unstable; urgency=low
1553 * "Fixed" build process, now the right file is searched for CA
1554 certificates (closes: #228182).
1556 -- Domenico Andreoli <cavok@debian.org> Sat, 31 Jan 2004 20:06:10 +0100
1558 curl (7.11.0-2) unstable; urgency=low
1560 * Test suite is still performed but is not critical for the build
1561 being successful any more.
1563 -- Domenico Andreoli <cavok@debian.org> Fri, 30 Jan 2004 13:03:03 +0100
1565 curl (7.11.0-1) unstable; urgency=low
1567 * New upstream release.
1569 -- Domenico Andreoli <cavok@debian.org> Sun, 25 Jan 2004 17:50:43 +0100
1571 curl (7.10.8+7.11.0-pre1-1) unstable; urgency=low
1573 * New upstream pre-release:
1574 - proxy+ssl now passes post variables (closes: #222901)
1575 - various test case problems exposed in #222140 should now be fixed.
1576 * Bumped up shlibs version because of the introduction of
1577 CURLOPT_NETRC_FILE and CURLOPT_FTP_SSL options in libcurl.
1579 -- Domenico Andreoli <cavok@debian.org> Wed, 14 Jan 2004 17:35:46 +0100
1581 curl (7.10.8-1) unstable; urgency=low
1583 * New upstream release:
1584 - fixed LDAP support (closes: #149609)
1585 - cleaner environment for testsuite execution (closes: #210253)
1586 - fixed lib/Makefile.am's use of LDFLAGS (closes: #212086)
1587 - fixed name clash in curl.h with respect to unistd.h (closes: #213180)
1588 - fixed typo in curl manpage (closes: #218046).
1589 * Bumped up shlibs version because of new libcurl options.
1590 * Added stunnel to the Build-Depends in order to enable SSL test cases.
1592 -- Domenico Andreoli <cavok@debian.org> Mon, 3 Nov 2003 10:26:12 +0100
1594 curl (7.10.7-2) unstable; urgency=low
1596 * Fixed bug in cache_resolv_response on alpha and ia64 (closes: #207174).
1597 Patch courtesy of Jurij Smakov.
1599 -- Domenico Andreoli <cavok@debian.org> Mon, 8 Sep 2003 21:55:46 +0200
1601 curl (7.10.7-1) unstable; urgency=low
1603 * New upstream release.
1604 * Bumped up shlibs version because of the introduction of CURLOPT_PROXYAUTH
1605 and CURLOPT_FTP_CREATE_MISSING_DIRS options in libcurl.
1607 -- Domenico Andreoli <cavok@debian.org> Mon, 18 Aug 2003 00:19:43 +0200
1609 curl (7.10.6-3) unstable; urgency=low
1611 * Applied patch to fix test 60 on ia64.
1613 -- Domenico Andreoli <cavok@debian.org> Sat, 9 Aug 2003 04:26:15 +0200
1615 curl (7.10.6-2) unstable; urgency=low
1617 * Applied patch from upstream to fix url globbing (closes: #203827).
1618 * make test is still performed on building debug stuff but errors
1621 -- Domenico Andreoli <cavok@debian.org> Thu, 7 Aug 2003 02:20:46 +0200
1623 curl (7.10.6-1) unstable; urgency=low
1625 * New upstream release:
1626 - added spport for http_proxy env var with name:passwd
1628 * make test is invoked after build
1630 -- Domenico Andreoli <cavok@debian.org> Tue, 29 Jul 2003 01:26:50 +0200
1632 curl (7.10.5-1) unstable; urgency=low
1634 * New upstream release:
1635 - fixed typo in curl's man page (closes: #189272).
1636 * New libcurl option CURLOPT_FTP_USE_EPRT has been added, bumped
1639 -- Domenico Andreoli <cavok@debian.org> Mon, 19 May 2003 23:57:12 +0200
1641 curl (7.10.4-1) unstable; urgency=low
1643 * New upstream release:
1644 - now uses new settings properly when re-using an existing connection
1646 - curl man page now refers to MANUAL (closes: #178509).
1647 * Changed section of libcurl2-dev and libcurl2-dbg to libdevel.
1649 -- Domenico Andreoli <cavok@debian.org> Wed, 2 Apr 2003 21:25:24 +0200
1651 curl (7.10.3-3) unstable; urgency=low
1653 * Rebuilt to link against libssl0.9.7.
1654 * Improved package descriptions thanks to suggestions provided by
1655 Filip Van Raemdonck <mechanix@debian.org> (closes: #177995).
1657 -- Domenico Andreoli <cavok@debian.org> Fri, 14 Mar 2003 16:08:38 +0100
1659 curl (7.10.3-2) unstable; urgency=low
1661 * Development package is now named libcurl2-dev, it provides
1662 libcurl-dev. People can now safely make their build dependencies
1663 and be sure to use the right stuff.
1664 * New package libcurl2-dbg is provided to help in debugging sessions.
1666 -- Domenico Andreoli <cavok@debian.org> Mon, 20 Jan 2003 22:04:32 +0100
1668 curl (7.10.3-1) unstable; urgency=low
1670 * New upstream release.
1671 * It now suggests ca-certificates package.
1673 -- Domenico Andreoli <cavok@debian.org> Thu, 16 Jan 2003 00:27:48 +0100
1675 curl (7.10.2-2) unstable; urgency=low
1677 * Added AM_MAINTAINER_MODE to configure.in (closes: #170050).
1679 -- Domenico Andreoli <cavok@debian.org> Fri, 22 Nov 2002 14:28:22 +0100
1681 curl (7.10.2-1) unstable; urgency=low
1683 * New upstream release:
1684 - fixed segfault on retrieving relative redirects (closes: #165382)
1685 - fixed a leak of debug output (closes: #167678).
1686 * Updated config.guess and config.sub (closes: #166153).
1687 * Added zlib1g-dev to build and libcurl-dev dependencies
1689 * Added HTML and PDF versions of all manpages in libcurl-dev package.
1691 -- Domenico Andreoli <cavok@debian.org> Wed, 20 Nov 2002 23:38:24 +0100
1693 curl (7.10.1-1) unstable; urgency=low
1695 * New upstream release.
1697 -- Domenico Andreoli <cavok@debian.org> Fri, 11 Oct 2002 23:26:50 +0200
1699 curl (7.10-1) unstable; urgency=low
1701 * New upstream release:
1702 - new way to use option -x to prevent curl from using any proxy
1703 server (closes: #161153).
1705 -- Domenico Andreoli <cavok@debian.org> Wed, 2 Oct 2002 01:04:20 +0200
1707 curl (7.9.8-2) unstable; urgency=low
1709 * Added again libcurl2-ssl to the libcurl2 conflicts.
1711 -- Domenico Andreoli <cavok@debian.org> Thu, 4 Jul 2002 02:35:24 +0200
1713 curl (7.9.8-1) unstable; urgency=low
1715 * New upstream release.
1716 * Double flavor of curl to support both non-SSL and SSL is gone.
1717 Now curl comes only with SSL. Who needs SSL can require curl
1720 -- Domenico Andreoli <cavok@debian.org> Mon, 24 Jun 2002 23:04:37 +0200
1722 curl (7.9.7-2) unstable; urgency=low
1724 * Fixed the bashism in debian/rules (closes: #147352).
1725 * SSL and non-SSL series of curl packages are now built from the
1726 same source. thanks crypto-in-main! :)
1728 -- Domenico Andreoli <cavok@debian.org> Mon, 20 May 2002 23:28:05 +0200
1730 curl (7.9.7-1) unstable; urgency=low
1732 * New upstream release.
1734 -- Domenico Andreoli <cavok@debian.org> Wed, 15 May 2002 21:09:19 +0200
1736 curl (7.9.6-1) unstable; urgency=low
1738 * New upstream release.
1739 * libcurl.3 manpage is now installed by libcurl-dev instead of
1740 libcurl2. Indeed it provides an overview on how to use libcurl in
1743 -- Domenico Andreoli <cavok@debian.org> Sat, 20 Apr 2002 17:06:51 +0200
1745 curl (7.9.5-2) unstable; urgency=low
1747 * curl-ssl stuff moved from non-US to main.
1749 -- Domenico Andreoli <cavok@debian.org> Mon, 25 Mar 2002 23:40:02 +0100
1751 curl (7.9.5-1) unstable; urgency=low
1753 * New upstream release (closes: #134608).
1754 * Added autotools-dev to the build dependencies. config.{guess,sub}
1755 can now be updated automatically in the build process.
1757 -- Domenico Andreoli <cavok@debian.org> Tue, 12 Mar 2002 19:06:21 +0100
1759 curl (7.9.3-2) unstable; urgency=low
1761 * Upstream source code has been correctly imported in my CVS
1762 repository (closes: #130906).
1764 -- Domenico Andreoli <cavok@debian.org> Sun, 27 Jan 2002 22:23:54 +0100
1766 curl (7.9.3-1) unstable; urgency=low
1768 * New upstream release:
1769 - fixed wrong assumption on char signedness (closes: #127011)
1770 - missing header added accordingly (closes: #130401)
1771 * Fixed a typo in curl description (closes: #124526).
1773 -- Domenico Andreoli <cavok@debian.org> Thu, 24 Jan 2002 20:04:04 +0100
1775 curl (7.9.2-1) unstable; urgency=low
1777 * New upstream release:
1778 - two bad timeout matters in libcurl2 are now solved (closes: #118595).
1780 -- Domenico Andreoli <cavok@debian.org> Fri, 7 Dec 2001 16:58:45 +0100
1782 curl (7.9.1-3) unstable; urgency=low
1784 * Fixed return type of Curl_ftpsendf(...) to CURLcode (closes: #120485).
1785 * Versions in debian/libcurl2.shlibs have been incremented to
1788 -- Domenico Andreoli <cavok@debian.org> Thu, 22 Nov 2001 15:35:40 +0100
1790 curl (7.9.1-2) unstable; urgency=low
1792 * Reverted to unpatched released 7.9.1 source tree, patch behavior
1795 -- Domenico Andreoli <cavok@debian.org> Thu, 15 Nov 2001 18:05:58 +0100
1797 curl (7.9.1-1) unstable; urgency=low
1799 * New upstream release.
1800 * Applied upstream patch #478780 found on sourceforge, fixes libcurl
1801 which didn't restore SIGALRM handler (closes: #118595).
1802 * Applied patch for patch #478780 of above, see bug #118595 in BTS.
1803 Patch courtesy of Enrik Berkhan <Enrik.Berkhan@planb.de>.
1804 * Build-Depends reduced to what is strictly required for building.
1805 autoconf, automake and libtool build dependencies are gone.
1807 -- Domenico Andreoli <cavok@debian.org> Fri, 9 Nov 2001 13:56:36 +0100
1809 curl (7.9-1) unstable; urgency=low
1811 * New upstream release:
1812 - output of "curl-config --libs" now includes -lcurl.
1814 -- Domenico Andreoli <cavok@debian.org> Tue, 25 Sep 2001 18:38:46 +0200
1816 curl (7.8-3) unstable; urgency=low
1818 * Added libc6-dev to libcurl2-dev dependencies.
1819 * Fixed lack of some FD_ZERO(...)s in lib/transfer.c (closes: #105516).
1821 -- Domenico Andreoli <cavok@debian.org> Fri, 3 Aug 2001 16:32:20 +0200
1823 curl (7.8-2) unstable; urgency=low
1825 * libcurl2.shlibs now includes version numbers. some new symbols have
1826 been introduced in libcurl 7.8, so program linked against 7.8 cannot
1827 work with older ones.
1828 * IPv6 support is now enabled
1829 * configure.in has been renamed to autoconf.ac to force the use of
1832 -- Domenico Andreoli <cavok@debian.org> Thu, 5 Jul 2001 01:38:24 +0200
1834 curl (7.8-1) unstable; urgency=low
1836 * New upstream release.
1837 * Applied patch for correct shared library versioning of libcurl, curl
1838 7.8 comes with broken shared library version out of the box.
1839 Patch provided by upstream developer.
1841 -- Domenico Andreoli <cavok@debian.org> Sat, 9 Jun 2001 21:12:05 +0200
1843 curl (7.7.3-3) unstable; urgency=low
1845 * Fixed manpages libcurl-dev with required simlinks (closes: 99610).
1847 -- Domenico Andreoli <cavok@debian.org> Mon, 4 Jun 2001 14:37:49 +0200
1849 curl (7.7.3-2) unstable; urgency=low
1851 * lib/url.c and lib/version.c are now fixed (closes: #97709).
1852 * install upstream changelog (closes: #97628).
1854 -- Domenico Andreoli <cavok@debian.org> Fri, 18 May 2001 10:32:25 +0200
1856 curl (7.7.3-1) unstable; urgency=low
1858 * New upstream release.
1859 * Using dh_installman instead dh_installmanpages.
1860 * Installing libcurl examples with dh_installexamples.
1861 * Policy 3.5.3.0 compliant.
1863 -- Domenico Andreoli <cavok@debian.org> Thu, 10 May 2001 09:45:05 +0200
1865 curl (7.7.2-1) unstable; urgency=low
1867 * New upstream release.
1869 -- Domenico Andreoli <cavok@debian.org> Tue, 24 Apr 2001 09:14:51 +0200
1871 curl (7.7.1-2) unstable; urgency=low
1873 * Fixed debian/rules (closes: #78232, #93837).
1875 -- Domenico Andreoli <cavok@debian.org> Tue, 17 Apr 2001 17:12:19 +0200
1877 curl (7.7.1-1) unstable; urgency=low
1879 * New upstream release.
1881 -- Domenico Andreoli <cavok@debian.org> Tue, 10 Apr 2001 13:26:09 +0200
1883 curl (7.7-1) unstable; urgency=low
1885 * New upstream release.
1886 * Fixed formatting errors in curl.1 (closes: #90281).
1888 -- Domenico Andreoli <cavok@debian.org> Fri, 23 Mar 2001 18:25:26 +0100
1890 curl (7.6.1-5) unstable; urgency=low
1892 * Fixed debian/libcurl1.shlibs in order to solve any problem for those
1893 packages which should depend on either libcurl1 or libcurl1-ssl.
1894 I should have done it long time ago.
1896 -- Domenico Andreoli <cavok@debian.org> Tue, 13 Mar 2001 18:29:06 +0100
1898 curl (7.6.1-4) unstable; urgency=low
1900 * Added versioned Build-Depend for debhelper.
1902 -- Domenico Andreoli <cavok@debian.org> Tue, 6 Mar 2001 15:16:02 +0100
1904 curl (7.6.1-3) unstable; urgency=low
1906 * Refining the transition to debhelper compatibility 2. I forgot the
1907 executable in the curl package (closes: #87886).
1909 -- Domenico Andreoli <cavok@debian.org> Wed, 28 Feb 2001 14:31:43 +0100
1911 curl (7.6.1-2) unstable; urgency=low
1913 * Switched to debhelper compatibility version 2.
1915 -- Domenico Andreoli <cavok@debian.org> Fri, 23 Feb 2001 18:24:02 +0100
1917 curl (7.6.1-1) unstable; urgency=low
1919 * New upstream release.
1921 -- Domenico Andreoli <cavok@libero.it> Tue, 13 Feb 2001 18:04:04 +0100
1923 curl (7.6-2) unstable; urgency=low
1925 * Adjusted dependencies in order to let curl-ssl package manage a
1926 smooth upgrade from potato.
1928 -- Domenico Andreoli <cavok@libero.it> Fri, 9 Feb 2001 13:36:11 +0100
1930 curl (7.6-1) unstable; urgency=low
1932 * New upstream release.
1934 -- Domenico Andreoli <cavok@libero.it> Mon, 29 Jan 2001 16:00:59 +0100
1936 curl (7.5.2-2) unstable; urgency=low
1938 * This is a service upload in order to fix dependencies problems arose
1939 for a ill-formed upload of 7.5.2-1.
1941 -- Domenico Andreoli <cavok@libero.it> Mon, 29 Jan 2001 14:54:57 +0100
1943 curl (7.5.2-1) unstable; urgency=low
1945 * New upstream release.
1946 * It needed to be recompiled against the new libc (closes: #80256).
1948 -- Domenico Andreoli <cavok@libero.it> Mon, 15 Jan 2001 13:08:15 +0100
1950 curl (7.5-1) unstable; urgency=low
1952 * New upstream release.
1954 -- Domenico Andreoli <cavok@libero.it> Mon, 4 Dec 2000 13:15:33 +0100
1956 curl (7.4.2-2) unstable; urgency=low
1958 * curl replaces curl-ssl. curl is only a frontend for libcurl and is not
1959 aware of any protocol, libcurl is. so what is really different whether
1960 ssl is enable or not is only libcurl.
1961 * curl now depends on (libcurl0 | libcurl0-ssl).
1962 * The workaround for libtool -rpath parameter is not required, so
1963 it has been removed from configure.in.
1964 * Removed "Suggests: " field in control file for libcurl0. It suggested
1965 to install curl and libcurl-dev too but it really doesn't make sense
1966 (this change was really applied in -1).
1968 -- Domenico Andreoli <cavok@libero.it> Tue, 28 Nov 2000 14:27:29 +0100
1970 curl (7.4.2-1) unstable; urgency=low
1972 * New upstream release.
1974 -- Domenico Andreoli <cavok@libero.it> Fri, 17 Nov 2000 16:19:23 +0100
1976 curl (7.2.1-1) unstable; urgency=low
1978 * New upstream release.
1980 -- Domenico Andreoli <cavok@libero.it> Mon, 4 Sep 2000 01:22:44 +0200
1982 curl (7.1-3) unstable; urgency=low
1984 * Added "Suggests: " field in control file for libcurl0. Now curl and
1985 libcurl-dev are suggested upon installation of libcurl0.
1987 -- Domenico Andreoli <cavok@libero.it> Mon, 14 Aug 2000 15:01:08 +0200
1989 curl (7.1-2) unstable; urgency=low
1991 * Fixed a line that did not install development manpages.
1993 -- Domenico Andreoli <cavok@libero.it> Thu, 10 Aug 2000 14:32:23 +0200
1995 curl (7.1-1) unstable; urgency=low
1997 * New upstream release.
1998 * libcurl is now a separate package, it provides shared libraries and
1999 includes to allow developing for other applications.
2001 -- Domenico Andreoli <cavok@libero.it> Wed, 9 Aug 2000 01:21:25 +0200
2003 curl (6.5.2-4) unstable; urgency=low
2005 * Some missing build dependencies (autoconf, automake, libtool) added.
2007 -- Domenico Andreoli <cavok@libero.it> Sat, 8 Jul 2000 00:13:16 +0200
2009 curl (6.5.2-3) unstable; urgency=low
2011 * Due to some policy and technical restrictions, curl's source package
2012 has been splitted again in two, one for main archive and one for non-US.
2014 -- Domenico Andreoli <cavok@libero.it> Tue, 4 Jul 2000 15:52:14 +0200
2016 curl (6.5.2-2) unstable; urgency=low
2018 * Added a Build-Depends in order to compile curl-ssl only if
2019 libssl09-dev is installed.
2020 * Documentation reflects the new location of curl debian packages
2021 home page (http://curl-deb.sourceforge.net).
2022 * Corrected minor spelling errors in README.Debian.
2024 -- Domenico Andreoli <cavok@libero.it> Sat, 17 Jun 2000 01:13:19 +0200
2026 curl (6.5.2-1) unstable; urgency=low
2028 * New upstream release.
2029 * Now curl and curl-ssl binary packages are generated from the same
2030 debian source package.
2031 * Uploads and downloads are now performed simultaneously (closes: #56627).
2033 -- Domenico Andreoli <cavok@libero.it> Sat, 25 Mar 2000 01:06:35 +0100
2035 curl (6.4-1) unstable; urgency=low
2037 * New upstream release.
2039 -- Domenico Andreoli <cavok@libero.it> Sun, 30 Jan 2000 02:21:32 +0100
2041 curl (6.3.1-1) unstable; urgency=low
2043 * New upstream release.
2045 -- Domenico Andreoli <cavok@libero.it> Sat, 11 Dec 1999 17:38:13 +0100
2047 curl (6.2-1) unstable; urgency=low
2049 * New upstream release.
2050 * No hack to compile without SSL is required anymore. Fixed by
2051 upstream maintainer.
2053 -- Domenico Andreoli <cavok@libero.it> Mon, 1 Nov 1999 00:37:32 +0100
2055 curl (6.0-1) unstable; urgency=low
2057 * New upstream release.
2059 -- Domenico Andreoli <cavok@freemail.it> Mon, 27 Sep 1999 22:28:13 +0200
2061 curl (5.11-1.1) unstable; urgency=low
2063 * Put sources into the right section.
2065 -- Domenico Andreoli <cavok@freemail.it> Mon, 30 Aug 1999 03:14:21 +0200
2067 curl (5.11-1) unstable; urgency=low
2069 * New upstream release.
2070 * New debian maintainer.
2072 -- Domenico Andreoli <cavok@freemail.it> Fri, 27 Aug 1999 11:50:04 +0200
2074 curl (5.9-2) unstable; urgency=low
2076 * Moved to non-US, and compiled against ssl (closes: #40099).
2078 -- Leon Breedt <ljb@debian.org> Sat, 3 Jul 1999 15:46:54 +0200
2080 curl (5.9-1) unstable; urgency=low
2082 * New upstream release.
2084 -- Leon Breedt <ljb@debian.org> Sun, 23 May 1999 21:51:30 +0200
2086 curl (5.8-1) unstable; urgency=low
2090 -- Leon Breedt <ljb@debian.org> Sun, 9 May 1999 18:55:48 +0200