254773 – ftp/curl: Update to 7.76.1

Bug 254773 - ftp/curl: Update to 7.76.1

Summary: ftp/curl: Update to 7.76.1

Status:	Closed FIXED

Alias:	None

Product:	Ports & Packages
Classification:	Unclassified
Component:	Individual Port(s) (show other bugs)
Version:	Latest
Hardware:	Any Any

Importance:	Normal Affects Many People
Assignee:	Po-Chuan Hsieh

URL:	https://curl.se/changes.html#7_76_1
Keywords:	needs-qa, security

Duplicates (1):	254667 (view as bug list)
Depends on:	254772
Blocks:
	Show dependency tree / graph

Reported:	2021-04-04 22:29 UTC by Yasuhiro Kimura
Modified:	2021-04-28 23:49 UTC (History)
CC List:	5 users (show)

See Also:

Flags:	bugzilla: maintainer-feedback? (sunpoet) koobs: merge-quarterly?

Attachments
Patch file (2.72 KB, patch) 2021-04-04 22:29 UTC, Yasuhiro Kimura	no flags	Details \| Diff
Updated patch file (3.31 KB, patch) 2021-04-14 10:07 UTC, Yasuhiro Kimura	no flags	Details \| Diff
Updated patch file (1.26 KB, patch) 2021-04-19 00:55 UTC, Yasuhiro Kimura	no flags	Details \| Diff
Show Obsolete (2) View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Yasuhiro Kimura freebsd_committer

2021-04-04 22:29:12 UTC

Created attachment 223812 [details]
Patch file

Update to 7.76.0, which fixes CVE-2021-22876 and CVE-2021-22890.

ChangeLog: https://curl.se/changes.html

Bug #254772 describes the vulnerabilities fixed with this release. So please commit it together.

Comment 1 Kubilay Kocak freebsd_committer

2021-04-06 03:39:53 UTC

"There will be a patch release: curl 7.76.1 on April 14" [1]

Upcoming release notes:

  https://curl.se/dev/release-notes.html

Not sure if they are regressions in 7.76.0 or just late fixed issues that didn't make the last release and don't break compat.

[1] https://twitter.com/bagder/status/1379010331134066690?s=20

Comment 2 Kubilay Kocak freebsd_committer

2021-04-09 10:21:23 UTC

*** Bug 254667 has been marked as a duplicate of this bug. ***

Comment 3 Yasuhiro Kimura freebsd_committer

2021-04-14 10:07:28 UTC

Created attachment 224100 [details]
Updated patch file

New version 7.76.1 is released.

ChangeLog: https://curl.se/changes.html#7_76_1

Comment 4 Yasuhiro Kimura freebsd_committer

2021-04-19 00:55:27 UTC

Created attachment 224236 [details]
Updated patch file

Chase update of ports tree.

Comment 5 Yasuhiro Kimura freebsd_committer

2021-04-28 23:49:03 UTC

This port is updated to 7.76.1 with ports 013715b5620f