Tomáš Chvátal
20fb199cba
Accepting request 612812 from home:vitezslav_cizek:branches:security:tls
...
- Relax CN name restrictions (bsc#1084011)
* added patches:
0001-Limit-scope-of-CN-name-constraints.patch
0002-Skip-CN-DNS-name-constraint-checks-when-not-needed.patch
OBS-URL: https://build.opensuse.org/request/show/612812
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl-1_1?expand=0&rev=12
2018-05-29 09:17:53 +00:00
Dominique Leuenberger
a3c768a628
Accepting request 606163 from security:tls
...
OBS-URL: https://build.opensuse.org/request/show/606163
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl-1_1?expand=0&rev=3
2018-05-13 13:56:45 +00:00
Tomáš Chvátal
1d99f4ef85
Accepting request 606162 from home:vitezslav_cizek:branches:security:tls
...
- OpenSSL Security Advisory [16 Apr 2018]
* Cache timing vulnerability in RSA Key Generation
(CVE-2018-0737, bsc#1089039)
* add openssl-CVE-2018-0737.patch
- Fix escaping in c_rehash (boo#1091961, bsc#1091963)
* add 0001-Revert-util-dofile.pl-only-quote-stuff-that-actually.patch
OBS-URL: https://build.opensuse.org/request/show/606162
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl-1_1?expand=0&rev=10
2018-05-10 13:45:22 +00:00
Dominique Leuenberger
e4b2aa53c5
Accepting request 592073 from security:tls
...
OBS-URL: https://build.opensuse.org/request/show/592073
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl-1_1?expand=0&rev=2
2018-03-30 10:01:42 +00:00
Vítězslav Čížek
54892abfae
Accepting request 592071 from home:vitezslav_cizek:branches:security:tls
...
- Tolerate a Certificate using a non-supported group on server side
(boo#1084651)
* https://github.com/openssl/openssl/pull/5607
* add 0001-Tolerate-a-Certificate-using-a-non-supported-group-o.patch
OBS-URL: https://build.opensuse.org/request/show/592071
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl-1_1?expand=0&rev=8
2018-03-28 14:56:27 +00:00
Tomáš Chvátal
d99d49a007
Accepting request 591684 from home:vitezslav_cizek:branches:security:tls
...
- Update to 1.1.0h
OpenSSL Security Advisory [27 Mar 2018]
* Constructed ASN.1 types with a recursive definition could exceed
the stack (CVE-2018-0739) (bsc#1087102)
* rsaz_1024_mul_avx2 overflow bug on x86_64 (CVE-2017-3738)
(bsc#1071906)
- refresh patches:
* 0001-Axe-builtin-printf-implementation-use-glibc-instead.patch
* openssl-1.1.0-fips.patch
* openssl-pkgconfig.patch
* openssl-rsakeygen-minimum-distance.patch
* openssl-static-deps.patch
OBS-URL: https://build.opensuse.org/request/show/591684
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl-1_1?expand=0&rev=7
2018-03-27 15:20:21 +00:00
Dominique Leuenberger
861086e436
Accepting request 580922 from security:tls
...
If I already fix stuff, it really would be cool to get the stuff forwarded, so the fix is also used
OBS-URL: https://build.opensuse.org/request/show/580922
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl-1_1?expand=0&rev=1
2018-03-01 11:05:23 +00:00
Tomáš Chvátal
062f581322
Accepting request 580786 from home:dimstar:Factory
...
- Move the libopenssl1_1_0-32bit obsoletes in baselibs.conf to the
new libopenssl1_1-32bit: it does not belong to the devel
package.
OBS-URL: https://build.opensuse.org/request/show/580786
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl-1_1?expand=0&rev=5
2018-02-27 20:50:55 +00:00
Vítězslav Čížek
e248990eb1
Accepting request 578316 from home:vitezslav_cizek:branches:security:tls
...
* obsolete the 1_1_0 packages
OBS-URL: https://build.opensuse.org/request/show/578316
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl-1_1?expand=0&rev=4
2018-02-20 11:18:48 +00:00
Vítězslav Čížek
c1b8e5cee5
- update baselibs.conf with the new version names
...
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl-1_1?expand=0&rev=3
2018-02-16 12:58:14 +00:00
Vítězslav Čížek
02427a3414
- Renamed from openssl-1_1_0 (bsc#1081335)
...
* All the minor versions of the 1.1.x openssl branch have the same
sonum and keep ABI compatibility
- Remove bit obsolete syntax
- Use %license macro
- Don't disable afalgeng on aarch64
- Add support for s390x CPACF enhancements (fate#321518)
patches taken from https://github.com/openssl/openssl/pull/2859 :
* 0002-crypto-modes-asm-ghash-s390x.pl-fix-gcm_gmult_4bit-K.patch
* 0004-s390x-assembly-pack-add-OPENSSL_s390xcap-environment.patch
* 0005-s390x-assembly-pack-add-OPENSSL_s390xcap-man-page.patch
* 0006-s390x-assembly-pack-extended-s390x-capability-vector.patch
* 0007-crypto-evp-e_aes.c-add-foundations-for-extended-s390.patch
* 0008-s390x-assembly-pack-extended-s390x-capability-vector.patch
* 0009-crypto-aes-asm-aes-s390x.pl-add-KMA-code-path.patch
* 0010-doc-man3-OPENSSL_s390xcap.pod-update-KMA.patch
* 0011-crypto-aes-asm-aes-s390x.pl-add-CFI-annotations-KMA-.patch
* 0012-s390x-assembly-pack-add-KMA-code-path-for-aes-gcm.patch
* 0013-crypto-aes-asm-aes-s390x.pl-add-CFI-annotations-KMA-.patch
- Do not filter pkgconfig() provides/requires.
- Obsolete openssl-1_0_0 by openssl-1_1_0: this is required for a
clean upgrade path as an aid to zypp (boo#1070003).
- Update to 1.1.0g
OpenSSL Security Advisory [02 Nov 2017]
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl-1_1?expand=0&rev=2
2018-02-16 12:13:08 +00:00