curl: upgrade to release 7.87.0

Fixes CVE-2022-43551 and CVE-2022-43552. https://curl.se/docs/CVE-2022-43551.html https://curl.se/docs/CVE-2022-43552.html Change-Id: I979ed11c212aef226ad9f26420462e5f9dbe15e5 Reviewed-on: https://gerrit.libreoffice.org/c/core/+/144885 Tested-by: Jenkins Reviewed-by: Caolán McNamara <caolanm@redhat.com>
2022-12-30 21:29:58 +09:00 · 2022-12-30 21:29:58 +09:00 · 5a1ddc1a92
commit 5a1ddc1a92
parent f41966222f
5 changed files with 11 additions and 11 deletions
--- a/download.lst
+++ b/download.lst
@ -75,8 +75,8 @@ CPPUNIT_TARBALL := cppunit-1.15.1.tar.gz
 # three static lines
 # so that git cherry-pick
 # will not run into conflicts
-CURL_SHA256SUM := 2d61116e5f485581f6d59865377df4463f2e788677ac43222b496d4e49fb627b
-CURL_TARBALL := curl-7.86.0.tar.xz
+CURL_SHA256SUM := ee5f1a1955b0ed413435ef79db28b834ea5f0fb7c8cfb1ce47175cc3bee08fff
+CURL_TARBALL := curl-7.87.0.tar.xz
 # three static lines
 # so that git cherry-pick
 # will not run into conflicts
--- a/external/curl/asan-poison-nsspem.patch.0
+++ b/external/curl/asan-poison-nsspem.patch.0
@ -1,6 +1,6 @@
 --- lib/vtls/nss.c
 +++ lib/vtls/nss.c
-@@ -1942,7 +1942,7 @@
+@@ -1945,7 +1945,7 @@
 
   PK11_SetPasswordFunc(nss_get_password);
 
--- a/external/curl/curl-msvc-disable-protocols.patch.1
+++ b/external/curl/curl-msvc-disable-protocols.patch.1
@ -2,7 +2,7 @@ disable protocols nobody needs in MSVC build

 --- curl/lib/config-win32.h.orig	2017-08-09 16:43:29.464000000 +0200
 +++ curl/lib/config-win32.h	2017-08-09 16:47:38.549200000 +0200
-@@ -616,4 +616,20 @@
+@@ -654,4 +654,20 @@
 #  define ENABLE_IPV6 1
 #endif
 
--- a/external/curl/curl-nss.patch.1
+++ b/external/curl/curl-nss.patch.1
@ -1,7 +1,7 @@
 diff -ur curl.org/configure curl/configure
 --- curl.org/configure	2016-03-13 15:14:07.177000076 +0100
 +++ curl/configure	2016-03-13 15:16:44.132000076 +0100
-@@ -27985,7 +27985,12 @@
+@@ -28230,7 +28230,12 @@
       { printf "%s\n" "$as_me:${as_lineno-$LINENO}: WARNING: Using hard-wired libraries and compilation flags for NSS." >&5
 printf "%s\n" "$as_me: WARNING: Using hard-wired libraries and compilation flags for NSS." >&2;}
       addld="-L$OPT_NSS/lib"
--- a/external/curl/zlib.patch.0
+++ b/external/curl/zlib.patch.0
@ -1,6 +1,6 @@
 --- configure
 +++ configure
-@@ -22808,7 +22808,6 @@
+@@ -23035,7 +23035,6 @@
 clean_CPPFLAGS=$CPPFLAGS
 clean_LDFLAGS=$LDFLAGS
 clean_LIBS=$LIBS
@ -8,7 +8,7 @@
 
 # Check whether --with-zlib was given.
 if test ${with_zlib+y}
-@@ -22818,6 +22818,7 @@
+@@ -23045,6 +23044,7 @@
 
 
 if test "$OPT_ZLIB" = "no" ; then
@ -16,7 +16,7 @@
     { printf "%s\n" "$as_me:${as_lineno-$LINENO}: WARNING: zlib disabled" >&5
 printf "%s\n" "$as_me: WARNING: zlib disabled" >&2;}
 else
-@@ -22825,6 +825,21 @@
+@@ -23052,6 +23052,21 @@
     OPT_ZLIB=""
   fi
 
@ -38,7 +38,7 @@
   if test -z "$OPT_ZLIB" ; then
 
     if test -n "$PKG_CONFIG"; then
-@@ -23120,6 +23120,7 @@
+@@ -23344,6 +23359,7 @@
 printf "%s\n" "$as_me: found both libz and libz.h header" >&6;}
     curl_zlib_msg="enabled"
   fi
@ -48,7 +48,7 @@
  if test x"$AMFIXLIB" = x1; then
 --- configure.ac
 +++ configure.ac
-@@ -1222,19 +1222,30 @@
+@@ -1243,19 +1243,30 @@
 clean_CPPFLAGS=$CPPFLAGS
 clean_LDFLAGS=$LDFLAGS
 clean_LIBS=$LIBS
@ -80,7 +80,7 @@
   if test -z "$OPT_ZLIB" ; then
     CURL_CHECK_PKGCONFIG(zlib)
 
-@@ -1316,6 +1316,7 @@
+@@ -1336,6 +1347,7 @@
     AC_MSG_NOTICE([found both libz and libz.h header])
     curl_zlib_msg="enabled"
   fi