summaryrefslogtreecommitdiff
AgeCommit message (Expand)AuthorFilesLines
2020-01-14Curl_close: clear data->multi_easy on free to avoid use-after-freesubmit/tizen_4.0_base/20200116.015045accepted/tizen/4.0/base/20200117.010705tizen_4.0_baseaccepted/tizen_4.0_baseSeonah Moon1-1/+3
2019-11-05tftp: reject file name lengths that don't fitSeonah Moon1-1/+6
2019-11-05FTP: zero terminate the entry path even on bad inputSeonah Moon3-2/+67
2019-09-19ftp: Alloc maximum blksize, and use default unless OACK is receivedsubmit/tizen_4.0_base/20190919.235345accepted/tizen/4.0/base/20190920.002352Seonah Moon1-3/+9
2019-09-19security:read_data fix bad realloc()Daniel Stenberg1-4/+2
2019-06-03tftp: use the current blksize for recvfrom()submit/tizen_4.0_base/20190730.005521accepted/tizen/4.0/base/20190730.063831Seonah Moon1-1/+1
2019-04-15Curl_llist_remove: fix potential NULL pointer derefsubmit/tizen_4.0_base/20190416.012502accepted/tizen/4.0/base/20190417.101145Niraj Kumar Goit1-1/+5
2019-04-15llist: replace Curl_llist_alloc with Curl_llist_initNiraj Kumar Goit18-314/+216
2019-03-09NTLM: fix size check condition for type2 received datasubmit/tizen_4.0_base/20190311.044203Nishant Chaprana2-4/+5
2019-03-09ntlm: fix *_type3_message size check to avoid buffer overflowNishant Chaprana2-5/+8
2019-03-09smtp: avoid risk of buffer overflow in strtolNishant Chaprana2-3/+7
2019-01-22Curl_ntlm_core_mk_nt_hash: return error on too long passwordsubmit/tizen_4.0_base/20190207.055647submit/tizen_4.0_base/20190122.231711Daniel Stenberg1-1/+4
2018-12-28vauth/cleartext: fix integer overflow checksubmit/tizen_4.0_base/20181228.021032accepted/tizen/4.0/base/20190107.224501Seonah Moon2-9/+9
2018-12-20Curl_auth_create_plain_message: fix too-large-input-checksubmit/tizen_4.0_base/20181227.231355Seonah Moon1-9/+3
2018-12-20voutf: fix bad arethmetic when outputting warnings to stderrSeonah Moon1-1/+1
2018-07-12Force to use getifaddrs() to get interface addressessubmit/tizen_4.0_base/20181114.092412submit/tizen_4.0_base/20180720.015013accepted/tizen/4.0/base/20181116.115202Seonah Moon1-1/+2
2018-07-06readwrite: make sure excess reads don't go beyond buffer endsubmit/tizen_4.0_base/20180706.060310accepted/tizen/4.0/base/20180713.183502Seonah Moon1-2/+6
2018-07-06openldap: check ldap_get_attribute_ber() results for NULL before usingSeonah Moon1-4/+4
2018-07-06FTP: reject path components with control codesSeonah Moon3-21/+72
2018-07-02pingpong: fix response cache memcpy overflowsubmit/tizen_4.0_base/20180704.234152accepted/tizen/4.0/base/20180706.152756Seonah Moon1-1/+4
2018-07-02... leaving the k->str could lead to buffer over-reads later on.Seonah Moon1-1/+5
2018-06-14http2: fix incorrect trailer buffer sizesubmit/tizen_4.0_base/20180614.042321accepted/tizen/4.0/base/20180615.171425Seonah Moon1-2/+2
2018-06-14http: prevent custom Authorization headers in redirectsSeonah Moon7-5/+212
2018-05-08Revert "Disable the IDN feature temporary"submit/tizen_4.0_base/20180508.013138accepted/tizen/4.0/base/20180509.114727seonah moon1-0/+2
2018-04-18wildcardmatch: fix heap buffer overflow in setcharsetsubmit/tizen_4.0_base/20180502.014023submit/tizen_4.0_base/20180419.073748submit/tizen_4.0_base/20180418.134458accepted/tizen/4.0/base/20180504.063425accepted/tizen/4.0/base/20180420.153255Seonah Moon3-6/+56
2018-04-18ntlm: avoid integer overflow for malloc sizeDaniel Stenberg1-2/+21
2018-04-05imap: if a FETCH response has no size, don't call write callbacksubmit/tizen_4.0_base/20180417.012505submit/tizen_4.0/20180416.225251accepted/tizen/4.0/unified/20180417.174458Daniel Stenberg1-0/+5
2018-03-02glob: do not continue parsing after a strtoul() overflow rangeSeonah Moon3-1/+40
2018-01-25Disable the IDN feature temporarysubmit/tizen_4.0/20180125.065944accepted/tizen/4.0/unified/20180131.050425Seonah Moon1-2/+0
2018-01-24Use icu library for IDN featuresubmit/tizen_4.0/20180124.235235submit/tizen_4.0/20180124.050820Seonah Moon4-39/+54
2018-01-23Added hardening compiler flags in the spec file.submit/tizen_4.0/20180123.012429Abhishek Sansanwal1-1/+1
2017-11-01Fix dlclose issue when calling DLP featuretizen_4.0.IoT.p2_releasesubmit/tizen_4.0/20171106.060955accepted/tizen/4.0/unified/20171107.054640tizen2-2/+2
2017-10-19fix the handle_leak (Svace 302948 and 302613)tizen_4.0.m2_releasesubmit/tizen_4.0/20171019.101314accepted/tizen/4.0/unified/20171019.235209jungkon.kim2-2/+4
2017-10-18Adding integration with DLP feature from privacy-guardsubmit/tizen_4.0/20171019.022145accepted/tizen/4.0/unified/20171019.082240tizen11-3/+247
2017-10-17Revert "Integration w/ DLP feature from privacy-guard"submit/tizen_4.0/20171017.061106accepted/tizen/4.0/unified/20171017.212705taesub kim11-230/+3
2017-10-12Integration w/ DLP feature from privacy-guardtizen_4.0.IoT.p1_releasesubmit/tizen_4.0/20171012.094230accepted/tizen/4.0/unified/20171012.225919Saulo Moraes11-3/+230
2017-08-09Apply ASLR to curl command toolsubmit/tizen_4.0/20170828.100005submit/tizen/20170811.040030accepted/tizen/unified/20170814.060102accepted/tizen/4.0/unified/20170828.222541Seonah Moon1-1/+3
2017-08-01Fixed build errorsubmit/tizen_4.0/20170811.094300submit/tizen/20170803.010203submit/tizen/20170802.230359submit/tizen/20170802.055623submit/tizen/20170801.224410accepted/tizen/unified/20170803.075456accepted/tizen/4.0/unified/20170816.011953Seonah Moon1-1/+1
2017-07-21Remove unnecessary configure filesubmit/tizen/20170731.020626Seonah Moon1-43726/+0
2017-07-21Add glib2 dependency to support IDNSeonah Moon4-2/+144
2017-06-19[CVE-2017-9502] url: fix buffer overwrite with file protocolsubmit/tizen/20170705.224745submit/tizen/20170703.231407submit/tizen/20170630.012307submit/tizen/20170620.102303accepted/tizen/unified/20170706.193711Daniel Stenberg1-5/+22
2017-06-19[CVE-2017-7468] TLS: Fix switching off SSL session id when client cert is usedJay Satiro12-22/+26
2017-06-19[CVE-2017-7407] --write-out out of buffer readSeonah Moon5-4/+101
2017-06-09Revert "Add dependency of nghttp2-devel"taesub kim1-1/+0
2017-06-08Add dependency of nghttp2-develsubmit/tizen/20170608.073827Seonah Moon1-0/+1
2017-03-28Used %license macrotizen_4.0.m1_releasesubmit/tizen/20170328.111440accepted/tizen/wearable/20170329.034853accepted/tizen/unified/20170329.034932accepted/tizen/tv/20170329.034844accepted/tizen/mobile/20170329.034827accepted/tizen/ivi/20170329.034906accepted/tizen/common/20170329.171915accepted/tizen_wearableaccepted/tizen_tvaccepted/tizen_mobileaccepted/tizen_iviaccepted/tizen_commonSeonah Moon1-6/+2
2017-03-23Update version to 7.53.1submit/tizen/20170323.081420submit/tizen/20170323.081345accepted/tizen/wearable/20170324.023330accepted/tizen/unified/20170324.023404accepted/tizen/tv/20170324.023313accepted/tizen/mobile/20170324.023258accepted/tizen/ivi/20170324.023348accepted/tizen/common/20170323.154553Seonah Moon1571-49946/+32827
2017-03-23Imported Upstream version 7.53.1upstream/7.53.1taesub kim1570-50398/+32703
2017-03-23Revert "Imported Upstream version 7.53.1"taesub kim1570-32703/+50398
2017-03-23Revert "Changed the path of license by using '%license' macro"taesub kim1-1/+6