pool/openssl-3
SHA256
4
0
Fork 2
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
3 Commits 2 Branches 0 Tags
Commit Graph

3 Commits

This Branch
This Branch
All Branches
Author SHA256 Message Date
Pedro Monreal Gonzalez
76e0808cc2 expected. [bsc#1236599, CVE-2024-12797] 
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl-3?expand=0&rev=133
 2025-02-12 07:58:33 +00:00
Pedro Monreal Gonzalez
ef668cd7fa - Update to 3.2.4: 
* Fixed RFC7250 handshakes with unauthenticated servers don't abort as
    expected. [CVE-2024-12797]
  * Fixed timing side-channel in ECDSA signature computation. [CVE-2024-13176]
  * Fixed possible OOB memory access with invalid low-level GF(2^m) elliptic
    curve parameters. [CVE-2024-9143]
- Remove patch openssl-CVE-2024-13176.patch
- Rebase patches:
  * openssl-3-add_EVP_DigestSqueeze_api.patch
  * openssl-DH-Disable-FIPS-186-4-type-parameters-in-FIPS-mode.patch
  * openssl-FIPS-RSA-encapsulate.patch
  * openssl-disable-fipsinstall.patch

OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl-3?expand=0&rev=132
 2025-02-12 07:49:34 +00:00
Pedro Monreal Gonzalez
e5f6af2c44 - bsc#1236136 CVE-2024-13176: Fix timing side-channel in ECDSA signature computation 
* Add patch openssl-CVE-2024-13176.patch

OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl-3?expand=0&rev=130
 2025-01-24 08:48:18 +00:00