Update to 7.74.0. Includes security fixes for:

CVE-2020-8284: trusting FTP PASV responses CVE-2020-8285: FTP wildcard stack overflow CVE-2020-8286: Inferior OCSP verification
2020-12-10 20:52:25 +00:00 · 2020-12-10 20:52:25 +00:00 · 7f603d888b
commit 7f603d888b
parent 54c61c821a
3 changed files with 13 additions and 7 deletions
--- a/net/curl/Makefile
+++ b/net/curl/Makefile
@ -1,18 +1,18 @@
-# $OpenBSD: Makefile,v 1.157 2020/10/18 11:53:40 naddy Exp $
+# $OpenBSD: Makefile,v 1.158 2020/12/10 20:52:25 naddy Exp $

 COMMENT=	transfer files with FTP, HTTP, HTTPS, etc.

-DISTNAME=	curl-7.73.0
+DISTNAME=	curl-7.74.0
 SHARED_LIBS=	curl                 26.7     # 11.0
 CATEGORIES=	net
-HOMEPAGE=	https://curl.haxx.se/
+HOMEPAGE=	https://curl.se/

 MAINTAINER=	Christian Weisgerber <naddy@openbsd.org>

 # MIT
 PERMIT_PACKAGE=	Yes

-MASTER_SITES=	https://curl.haxx.se/download/
+MASTER_SITES=	https://curl.se/download/
 EXTRACT_SUFX=	.tar.xz

 LIB_DEPENDS=	www/nghttp2
--- a/net/curl/distinfo
+++ b/net/curl/distinfo
@ -1,2 +1,2 @@
-SHA256 (curl-7.73.0.tar.xz) = fEx8pOqIq+AP6kdA3PgQdcAxsdC7I6/y1e/eIKPCQIo=
-SIZE (curl-7.73.0.tar.xz) = 2394228
+SHA256 (curl-7.74.0.tar.xz) = mZ1fLEA89uJdWDGf3VlmEeRV3RlSCHRrxubRl6d+h4s=
+SIZE (curl-7.74.0.tar.xz) = 2400972
--- a/net/curl/pkg/PLIST
+++ b/net/curl/pkg/PLIST
@ -1,4 +1,4 @@
-@comment $OpenBSD: PLIST,v 1.62 2020/10/18 11:53:40 naddy Exp $
+@comment $OpenBSD: PLIST,v 1.63 2020/12/10 20:52:26 naddy Exp $
@bin bin/curl
 bin/curl-config
 include/curl/
@ -176,6 +176,12 @@ lib/pkgconfig/libcurl.pc
@man man/man3/CURLOPT_HEADERDATA.3
@man man/man3/CURLOPT_HEADERFUNCTION.3
@man man/man3/CURLOPT_HEADEROPT.3
+@man man/man3/CURLOPT_HSTS.3
+@man man/man3/CURLOPT_HSTSREADDATA.3
+@man man/man3/CURLOPT_HSTSREADFUNCTION.3
+@man man/man3/CURLOPT_HSTSWRITEDATA.3
+@man man/man3/CURLOPT_HSTSWRITEFUNCTION.3
+@man man/man3/CURLOPT_HSTS_CTRL.3
@man man/man3/CURLOPT_HTTP09_ALLOWED.3
@man man/man3/CURLOPT_HTTP200ALIASES.3
@man man/man3/CURLOPT_HTTPAUTH.3