diff --git a/RELEASE-NOTES b/RELEASE-NOTES index f28d2c87e..1c44f8cc8 100644 --- a/RELEASE-NOTES +++ b/RELEASE-NOTES @@ -1,66 +1,19 @@ -Curl and libcurl 7.29.0 +Curl and libcurl 7.29.1 - Public curl releases: 131 + Public curl releases: 132 Command line options: 152 curl_easy_setopt() options: 199 Public functions in libcurl: 58 Known libcurl bindings: 39 - Contributors: 993 - -This release includes the following securify fix: - - o POP3/IMAP/SMTP SASL buffer overflow vulnerability [17] + Contributors: 1005 This release includes the following changes: - o test: offer "automake" output and check for perl better - o always-multi: always use non-blocking internals [1] - o imap: Added support for sasl digest-md5 authentication - o imap: Added support for sasl cram-md5 authentication - o imap: Added support for sasl ntlm authentication - o imap: Added support for sasl login authentication - o imap: Added support for sasl plain text authentication - o imap: Added support for login disabled server capability - o mk-ca-bundle: add -f, support passing to stdout and more [5] - o writeout: -w now supports remote_ip/port and local_ip/port + o This release includes the following bugfixes: - o nss: prevent NSS from crashing on client auth hook failure - o darwinssl: Fixed inability to disable peer verification on Snow Leopard - and Lion - o curl_multi_remove_handle: fix memory leak triggered with CURLOPT_RESOLVE - o SCP: relative path didn't work as documented [7] - o setup_once.h: HP-UX issue workaround - o configure: fix cross pkg-config detection - o runtests: Do not add undefined values to @INC - o build: fix compilation with CURL_DISABLE_CRYPTO_AUTH flag - o multi: fix re-sending request on early connection close - o HTTP: remove stray CRLF in chunk-encoded content-free request bodies - o build: fix AIX compilation and usage of events/revents - o VC Makefiles: add missing hostcheck - o nss: clear session cache if a client certificate from file is used - o nss: fix error messages for CURLE_SSL_{CACERT,CRL}_BADFILE - o fix HTTP CONNECT tunnel establishment upon delayed response [2] - o --libcurl: fix for non-zero default options - o FTP: reject illegal port numbers in EPSV 229 responses - o build: use per-target '_CPPFLAGS' for those currently using default - o configure: fix automake 1.13 compatibility [6] - o curl: ignore SIGPIPE [4] - o pop3: Added support for non-blocking SSL upgrade - o pop3: Fixed default authentication detection - o imap: Fixed usernames and passwords that contain escape characters - o packages/DOS/common.dj: remove COFF debug info generation [3] - o imap/pop3/smtp: Fixed failure detection during TLS upgrade [8] - o pop3: Fixed no known authentication mechanism when fallback is required [9] - o formadd: reject trying to read a directory where a file is expected [10] - o formpost: support quotes, commas and semicolon in file names [11] - o docs: update the comments about loading CA certs with NSS [12] - o docs: fix typos in man pages [13] - o darwinssl: Fix bug where packets were sometimes transmitted twice [14] - o winbuild: include version info for .dll .exe [15] - o schannel: Removed extended error connection setup flag [16] - o VMS: fix and generate the VMS build config + o This release includes the following known bugs: @@ -69,32 +22,10 @@ This release includes the following known bugs: This release would not have looked like this without help, code, reports and advice from friends like these: - Nick Zitzmann, Colin Watson, Fabian Keil, Kamil Dudka, Lijo Antony, - Linus Nielsen Feltzing, Marc Hoersken, Stanislav Ivochkin, Steve Holme, - Yang Tse, Balaji Parasuram, Dan Fandrich, Bob Relyea, Gisle Vanem, - Yves Arrouye, Kai Engert, Lluís Batlle i Rossell, Jirí Hruka, - John E. Malmberg, Tor Arntsen, Matt Arsenault, Sergei Nikulov, - Guenter Knauf, Craig Davison, Ulrich Doehner, Jiri Jaburek, Bruno de Carvalho, - Eldar Zaitov + Thanks! (and sorry if I forgot to mention someone) References to bug reports and discussions on issues: - [1] = http://daniel.haxx.se/blog/2013/01/17/internally-were-all-multi-now/ - [2] = http://curl.haxx.se/mail/lib-2013-01/0191.html - [3] = http://curl.haxx.se/mail/lib-2013-01/0130.html - [4] = http://curl.haxx.se/bug/view.cgi?id=1180 - [5] = http://curl.haxx.se/mail/lib-2013-01/0045.html - [6] = http://curl.haxx.se/mail/lib-2012-12/0246.html - [7] = http://curl.haxx.se/bug/view.cgi?id=1173 - [8] = http://curl.haxx.se/mail/lib-2013-01/0250.html - [9] = http://curl.haxx.se/mail/lib-2013-02/0004.html - [10] = http://curl.haxx.se/mail/archive-2013-01/0017.html - [11] = http://curl.haxx.se/bug/view.cgi?id=1171 - [12] = https://bugzilla.redhat.com/696783 - [13] = https://bugzilla.redhat.com/896544 - [14] = http://curl.haxx.se/mail/lib-2013-01/0295.html - [15] = http://curl.haxx.se/bug/view.cgi?id=1186 - [16] = http://curl.haxx.se/bug/view.cgi?id=1187 - [17] = http://curl.haxx.se/docs/adv_20130206.html + [1] = diff --git a/include/curl/curlver.h b/include/curl/curlver.h index 7e9b2e5c8..85bb6cf93 100644 --- a/include/curl/curlver.h +++ b/include/curl/curlver.h @@ -30,13 +30,13 @@ /* This is the version number of the libcurl package from which this header file origins: */ -#define LIBCURL_VERSION "7.28.2-DEV" +#define LIBCURL_VERSION "7.29.1-DEV" /* The numeric version number is also available "in parts" by using these defines: */ #define LIBCURL_VERSION_MAJOR 7 -#define LIBCURL_VERSION_MINOR 28 -#define LIBCURL_VERSION_PATCH 2 +#define LIBCURL_VERSION_MINOR 29 +#define LIBCURL_VERSION_PATCH 1 /* This is the numeric version of the libcurl version number, meant for easier parsing and comparions by programs. The LIBCURL_VERSION_NUM define will @@ -53,7 +53,7 @@ and it is always a greater number in a more recent release. It makes comparisons with greater than and less than work. */ -#define LIBCURL_VERSION_NUM 0x071c02 +#define LIBCURL_VERSION_NUM 0x071d01 /* * This is the date and time when the full source package was created. The