Commit Graph

75 Commits

Author SHA1 Message Date
Leo Famulari 7d798b3bb3
gnu: curl: Update replacement to 7.60.0 [Fixes CVE-2018-{1000300,1000301}].
* gnu/packages/curl.scm (curl)[replacement]: Update to 7.60.0.
(curl-7.59.0): Replace with ...
(curl-7.60.0): ... new variable.
2018-05-21 13:34:18 -04:00
Roel Janssen d28e5ad23c
gnu: guile-curl: Use invoke.
* gnu/packages/curl.scm (guile-curl): Use invoke instead of system*.
2018-04-19 14:26:35 +02:00
Roel Janssen 5e3010a2ac
gnu: Add guile-curl.
* gnu/packages/curl.scm (guile-curl): New variable.
2018-04-18 23:00:41 +02:00
Marius Bakke 9a02dcf35a
gnu: curl: Update replacement to 7.59.0 [security fixes].
This fixes CVE-2018-1000120, CVE-2018-1000121, and CVE-2018-1000122.

* gnu/packages/curl.scm (curl-7.58.0): Rename to ...
(curl-7.59.0): ... this.  Update source hash.
(curl)[replacement]: Adjust accordingly.
2018-03-14 16:48:03 +01:00
Tobias Geerinckx-Rice fdcbe78b14
gnu: kurly: Update to 1.2.1.
* gnu/packages/curl.scm (kurly): Update to 1.2.1.
[arguments]: Install the man page, and put README.md in its right place.
Rename ‘install-readme’ to ‘install-documentation’ to match this change.
2018-03-14 07:47:31 +01:00
Efraim Flashner c2c04cde9b
gnu: kurly: Declare a source file-name.
* gnu/packages/curl.scm (kurly)[source]: Declare a source file-name.
2018-03-04 12:05:14 +02:00
Mark H Weaver 78dfc16139
Merge branch 'master' into core-updates 2018-01-24 06:23:33 -05:00
Leo Famulari 133f725773
gnu: curl: Update replacement to 7.58.0 [fixes CVE-2018-{1000005,1000007}].
* gnu/packages/curl.scm (curl)[replacement]: Update to 7.58.0.
(curl-7.57.0): Replace with curl-7.58.0.
2018-01-24 03:31:51 -05:00
Leo Famulari 4adb40bffc
Merge branch 'master' into core-updates 2018-01-11 14:22:50 -08:00
Leo Famulari 4880fddd5c
gnu: kurly: Install some documentation.
* gnu/packages/curl.scm (kurly)[arguments]: Install the README in an
'install-readme' phase and don't install the source code.
2018-01-08 20:39:38 -05:00
Leo Famulari 4ed41f472b
Merge branch 'master' into core-updates 2018-01-03 14:18:01 -05:00
Leo Famulari 8de9d5329e
gnu: Add kurly.
* gnu/packages/curl.scm (kurly): New variable.
2017-12-31 12:36:08 -05:00
Marius Bakke 971af38c89
gnu: curl: Remove obsolete workaround.
* gnu/packages/curl.scm (curl)[arguments]: Remove 'fix-Makefile' phase.
2017-12-13 07:11:18 +01:00
Marius Bakke dc138d6d69
gnu: curl: Add a search path for CURL_CA_BUNDLE.
* gnu/packages/curl.scm (curl)[native-search-paths]: New field.
* gnu/packages/image-viewers.scm (feh)[native-search-paths]: Inherit.
2017-12-13 07:09:02 +01:00
Marius Bakke da663457da
gnu: curl: Remove graft for 7.57.0.
* gnu/packages/curl.scm (curl): Update to 7.57.0.
(curl-7.57.0): Remove variable.
2017-12-05 23:44:47 +01:00
Marius Bakke 77181815ae
Merge branch 'master' into core-updates 2017-12-05 23:41:30 +01:00
Leo Famulari e6e8352382
gnu: curl: Update to 7.57.0 [fixes CVE-2017-{8816,8817,8818}].
* gnu/packages/curl.scm (curl): Update replacement to 7.57.0.
(curl-7.56.1): Replace with ...
(curl-7.57.0): ... new variable.
2017-11-29 14:38:51 -05:00
Marius Bakke a9c4f1ba51
gnu: curl: Remove graft for 7.56.1.
* gnu/packages/curl.scm (curl): Update to 7.56.1.
(curl-7.56.1): Remove variable.
2017-10-24 22:02:27 +02:00
Marius Bakke ca4fd41de8
Merge branch 'master' into core-updates 2017-10-24 22:00:23 +02:00
Marius Bakke 91f2daa58d
gnu: curl: Update replacement to 7.56.1 [fixes CVE-2017-1000257].
* gnu/packages/curl.scm (curl-7.56.0): Rename to ...
(curl-7.56.1): ... this.  Update to 7.56.1.
(curl)[replacement]: Adjust accordingly.
2017-10-24 08:09:47 +02:00
Marius Bakke 1e28118d8d
gnu: curl: Incorporate grafted changes.
* gnu/packages/curl.scm (curl-7.56.0): Remove variable.
(curl): Update to 7.56.0.
2017-10-10 22:34:35 +02:00
Marius Bakke c01ef97594
Merge branch 'master' into core-updates 2017-10-10 22:33:28 +02:00
Marius Bakke 6a317919cf
Merge branch 'master' into staging 2017-10-06 11:03:27 +02:00
Kei Kebreau 46cf31868c
gnu: curl: Update replacement to 7.56.0 [security fixes].
Fixes CVE-2017-1000254.
See <https://curl.haxx.se/docs/adv_20171004.html> for details.

* gnu/packages/curl.scm (curl)[replacement]: Update to 7.56.0.
(curl-7.55.0): Rename to ...
(curl-7.56.0): ... this.
[arguments]: Remove 'fix-Makefile' phase.
[source]: Remove patch.
* gnu/packages/patches/curl-bounds-check.patch: Delete it.
* gnu/local.mk (dist_patch_DATA): Remove it.
2017-10-04 19:37:55 -04:00
Efraim Flashner 8a1716fe3f
gnu: curl: Update to 7.55.0.
* gnu/packages/curl.scm (curl): Update to 7.55.0.
[replacement]: Remove field.
[arguments]: Add phase to fix doc install location.
(curl-7.55.0): Remove variable.
2017-10-01 22:16:33 +03:00
Marius Bakke e0afc09de4
gnu: curl: Update to 7.55.1.
* gnu/packages/patches/curl-bounds-check.patch: Delete file.
* gnu/local.mk (dist_patch_DATA): Remove it.
* gnu/packages/curl.scm (curl): Update to 7.55.1.
[replacement]: Remove field.
[source]: Use '.xz' tarball.
(curl-7.55.0): Remove variable.
2017-09-21 20:53:15 +02:00
Mark H Weaver 09ec5a0f0c
Merge branch 'master' into core-updates 2017-08-15 03:10:14 -04:00
Marius Bakke d5daf6fbe0
gnu: curl: Fix i686 test failure.
* gnu/packages/patches/curl-bounds-check.patch: New file.
* gnu/local.mk (dist_patch_DATA): Register it.
* gnu/packages/curl.scm (curl-7.55.0)[source]: Use it.
2017-08-13 16:46:41 +02:00
Marius Bakke d156c999d0
Merge branch 'master' into core-updates 2017-08-10 00:18:36 +02:00
Marius Bakke 79d9525071
gnu: curl: Update replacement to 7.55.0. [security fixes]
Fixes CVE-2017-1000099, CVE-2017-1000100, and CVE-2017-100101.
See <https://curl.haxx.se/docs/security.html> for details.

* gnu/packages/curl.scm (curl)[replacement]: Update to 7.55.0.
(curl-7.54.1): Rename to ...
(curl-7.55.0): ... this.
[source]: Update source URI to match upstream compression method change.
[arguments]: Add 'fix-Makefile' phase.
2017-08-10 00:15:35 +02:00
Mark H Weaver 9d4385634d
Merge branch 'master' into core-updates 2017-06-18 02:36:51 -04:00
Leo Famulari daf3006636
gnu: curl: Update replacement to 7.54.1 [fixes CVE-2017-9502].
* gnu/packages/curl.scm (curl)[replacement]: Update to 7.54.1.
(curl-7.54.0): Replace with ...
(curl-7.54.1): ... new variable.
2017-06-14 13:26:51 -04:00
Ricardo Wurmus d1a914082b
Merge branch 'master' into core-updates 2017-05-24 12:05:47 +02:00
Leo Famulari e1444afa2d
gnu: curl: Replace with curl@7.54.0 [fixes CVE-2017-7468]
* gnu/packages/curl.scm (curl)[replacement]: New field.
(curl-7.54.0): New variable.
2017-04-19 18:29:00 -04:00
Leo Famulari a33d518e24
gnu: curl: Update to 7.53.1.
* gnu/packages/curl.scm (curl): Update to 7.53.1.
2017-04-07 10:45:43 -04:00
Ludovic Courtès e90e0fad1b
Merge branch 'master' into core-updates 2017-03-09 16:35:41 +01:00
Leo Famulari 53a55c9c86
gnu: curl: Update replacement to 7.53.0 [fixes CVE-2017-2629].
* gnu/packages/curl.scm (curl-7.52.1): Replace variable with ...
(curl-7.53.0): ... new variable.
(curl)[replacement]: Update to 7.53.0.
2017-02-21 19:07:05 -05:00
Leo Famulari 678dd8a5ed
gnu: curl: Incorporate grafted changes.
* gnu/packages/curl.scm (curl)[replacement]: Remove field.
(curl-7.52.1): Remove variable.
2017-01-25 13:23:25 -05:00
Marius Bakke 14251e30c4
gnu: curl: Update replacement to 7.52.1 [fixes CVE-2016-{9586,9594}].
* gnu/packages/curl.scm (curl)[replacement]: Update to 7.52.1.
[home-page]: Use HTTPS.
(curl-7.51.0): Replace with ...
(curl-7.52.1): ... this.
2016-12-23 15:31:36 +01:00
Leo Famulari c8c385a04a
Revert "gnu: curl: Update replacement to 7.52.0 [fixes CVE-2016-{9586,9952,9953}]."
The curl maintainers said this about 7.52.0:

"Attention! We will release a patch update within a few days to fix a
serious security problem found in curl 7.52.0. You may consider holding
off until then."

This message was displayed at <https://curl.haxx.se/download.html> on
2016-12-21.

This reverts commit 42366b35c3.
2016-12-21 11:52:36 -05:00
Marius Bakke 42366b35c3
gnu: curl: Update replacement to 7.52.0 [fixes CVE-2016-{9586,9952,9953}].
* gnu/packages/curl.scm (curl)[replacement]: Update to 7.52.0.
(curl-7.51.0): Replace with ...
(curl-7.52.0): ... this.
2016-12-21 14:56:34 +01:00
Leo Famulari b3cc0dce08
Merge branch 'master' into core-updates 2016-11-02 20:03:35 -04:00
Marius Bakke cbf5889fe5
gnu: curl: Update replacement to 7.51.0 [fixes CVE-2016-{8615..8625}].
* gnu/packages/curl.scm (curl)[replacement]: Update to 7.51.0.
(curl-7.50.3): Replace with ...
(curl-7.51.0): ... this.
2016-11-02 12:01:37 +00:00
Ludovic Courtès 79355ae3e8
Merge branch 'master' into core-updates 2016-09-30 12:05:27 +02:00
Leo Famulari 2a0ed3254b
gnu: curl: Update replacement to 7.50.3 [fixes CVE-2016-7167].
* gnu/packages/curl.scm (curl)[replacement]: Update to 7.50.3.
(curl-7.50.2): Replace with ....
(curl-7.50.3): ... this.
2016-09-14 14:12:04 -04:00
Leo Famulari 7fb461d2fe
gnu: curl: Update replacement to 7.50.2 [fixes CVE-2016-7141].
* gnu/packages/curl.scm (curl)[replacement]: Update to 7.50.2
(curl-7.50.1): Replace with ...
(curl-7.50.2): ... this.
2016-09-08 11:44:31 -04:00
Leo Famulari ddfba024d4
gnu: curl: Update to 7.50.1.
* gnu/packages/curl.scm (curl)[replacement]: Remove field.
[version, source]: Update to 7.50.1.
[arguments]: Re-enable test.
(curl-7.50.1): Remove variable.
2016-08-10 15:29:41 -04:00
Leo Famulari e686e633ad
gnu: curl: Replace with 7.50.1 [fixes CVE-2016-{3739,4802,5419,5420,5421].
* gnu/packages/curl.scm (curl)[replacement]: New field.
(curl-7.50.1): New variable.
2016-08-04 12:57:36 -04:00
Mark H Weaver 8d5ceb120d gnu: curl: Use updated libssh2 [fixes CVE-2016-7087].
* gnu/packages/curl.scm (curl)[inputs]: Use libssh2.
* gnu/packages/ssh.scm (libssh2-1.4): Remove variable.
2016-02-29 20:09:29 -05:00
Leo Famulari 78d80c5c6a gnu: libssh2: Update to 1.7.0 [fixes CVE-2016-0787].
* gnu/packages/ssh.scm (libssh2): Update to 1.7.0.
  (libssh2-1.4): New variable.
* gnu/packages/curl.scm (curl)[inputs]: Use libssh4-1.4.

Modified-By: Mark H Weaver <mhw@netris.org>
2016-02-24 16:32:08 -05:00