Compare commits
223 Commits
| Author | SHA256 | Date | |
|---|---|---|---|
| 9c6e648b3b | |||
| 95f6e57134 | |||
| bdcec2b9a6 | |||
| 654bec9160 | |||
| 6e876f3805 | |||
| 277ec98e36 | |||
| b76b9decce | |||
| 4bbb5dbc3e | |||
| e725f30170 | |||
| 4ec2233929 | |||
| ab951e5a8c | |||
| d1265fb1a0 | |||
| 4593f4d9af | |||
| 80b12015bd | |||
| 0ea2c1fd50 | |||
|
2110a90a42 | ||
| d5bc73df79 | |||
| 5fe9d172ce | |||
|
|
156e7a1569 | ||
| 5eb5e9350c | |||
|
|
fd17b786f6 | ||
| 6a1ba46ad1 | |||
|
|
369b608dcd | ||
| 61e0b108e5 | |||
| f37b81a3b9 | |||
| 9a2b64aee3 | |||
|
|
933d4f991f | ||
| 15c6c27134 | |||
|
|
33e78aed93 | ||
|
|
0d4475652c | ||
| 69b47f12bd | |||
|
dda6eff298 | ||
| 88a897c1e2 | |||
| 42b4266fec | |||
| 54b7b83c91 | |||
| 941923fd38 | |||
| d9c933df11 | |||
| 98ac383496 | |||
| 71a3aba26b | |||
| 59b58b2546 | |||
| e7e6e1f303 | |||
| 21dec5ccdf | |||
| c9888ff6d2 | |||
| c70cc7d040 | |||
| b7d4914087 | |||
| 0313fcccb9 | |||
| d158e524ba | |||
| 700aeb30e6 | |||
| 4e62601b79 | |||
| ae4363981e | |||
| 2c300a4137 | |||
| 61375c96e5 | |||
| 03ad9b5de8 | |||
|
b14297c8ba | ||
| 8c69be8980 | |||
|
|
c512d4ed06 | ||
| afb8eed7f6 | |||
| de3e0f894d | |||
| 58a376ab42 | |||
| ced74d8631 | |||
| ca7dd1b39c | |||
|
|
76a7de0b98 | ||
| 0d5f2ebd9e | |||
| 90ef91ed19 | |||
|
9956f6eae8 | ||
| 7890860f65 | |||
|
5605777932 | ||
| e5c610f06b | |||
| 101b1f684e | |||
| 4cdb995447 | |||
|
|
a4b427864c | ||
| 95a422834c | |||
|
|
010eeaff31 | ||
|
|
f89f52bf78 | ||
|
|
ed50f7c230 | ||
|
|
4455ff4fb3 | ||
|
|
dcffbd897d | ||
| bd189bb34e | |||
|
|
1ab3b9a360 | ||
| 5ab1c4f0aa | |||
|
|
357c68ceaa | ||
|
|
450bc8968e | ||
| e03e941b38 | |||
| 3b4f48bae5 | |||
|
|
3e27fb1ef2 | ||
|
|
3a7d8fec85 | ||
|
|
fdaa161c0b | ||
| 5725cb2f12 | |||
|
|
b52242687e | ||
| e3b20e69a2 | |||
|
|
d6bd27301a | ||
|
|
0083957a62 | ||
|
|
1329b4c8df | ||
|
|
2ce6cf08f7 | ||
|
|
1c3f141485 | ||
| 9d1003ce7d | |||
| 491c541700 | |||
| de4d1be4ab | |||
| f7574150c5 | |||
| 021091d55f | |||
| 6a01eea162 | |||
| fa61203f41 | |||
| fa96b8cfdd | |||
| 2ebd052507 | |||
|
ed81eb44e1 | ||
|
|
7f772876ff | ||
| bdf3209e96 | |||
| 42aa3a9eb7 | |||
| 840c62159b | |||
| 9f18cdd3d8 | |||
| 984610bf7f | |||
|
|
0985bc43b2 | ||
|
|
0dd078bb95 | ||
|
|
a57bd6b997 | ||
|
|
66d6e48709 | ||
|
|
6a3418284a | ||
|
|
94fbf434c7 | ||
|
|
191f308eaf | ||
|
|
0bb9b0ad33 | ||
|
44a951fc87 | ||
|
|
c32f963846 | ||
|
|
165c77cea8 | ||
|
|
d5a92c035d | ||
|
|
9a6d63222e | ||
|
|
ccb7f79a32 | ||
|
|
bcd15fd76a | ||
|
|
d3d7dacdf7 | ||
|
|
db3e410d01 | ||
|
|
4a0df891cc | ||
|
|
17914da9d0 | ||
|
|
a4f9e5aa25 | ||
|
|
4ed020414f | ||
|
|
179c3b2765 | ||
|
|
9633d36713 | ||
|
|
5d8dc7c34b | ||
|
|
3f2f2de8bf | ||
|
|
dbd1e42ea5 | ||
|
|
a79c9d166c | ||
|
|
11127842fa | ||
|
|
483bcc84c1 | ||
|
|
bb5cf13064 | ||
|
|
dd9592a972 | ||
|
|
24a6c5b091 | ||
|
|
13cf635235 | ||
|
|
c594036828 | ||
|
|
03c573920f | ||
|
|
f3f9661f10 | ||
|
|
e77612338e | ||
|
|
f64483c532 | ||
|
df44f45fc9 | ||
|
|
e5e7ad330f | ||
|
|
05940ba9a1 | ||
|
|
036b19de96 | ||
|
|
1b922295b2 | ||
|
|
5fcf0408aa | ||
|
|
350402e556 | ||
|
|
d08abccec7 | ||
|
|
c5f2d42ba8 | ||
|
|
1d93e26aad | ||
|
|
abc16f3f92 | ||
|
8eaf71fb35 | ||
|
|
712cc1be28 | ||
|
|
6793d223c7 | ||
|
|
f071498cb4 | ||
|
|
4843e122d8 | ||
|
|
f2e7b32247 | ||
|
|
18daff1b9a | ||
|
|
c6216dbc49 | ||
|
|
39b11f4174 | ||
|
|
afb2b76da7 | ||
|
|
ca270b4d26 | ||
|
|
d425c7ed3c | ||
|
b32661c9cd | ||
|
|
6cfdd4b39b | ||
|
|
1940ee9ff3 | ||
|
|
555d1d3ad9 | ||
|
|
feaf39ed5b | ||
|
|
84e854a513 | ||
| 78d80e3bc3 | |||
| 0f03a76ce8 | |||
| 361ca2c7b1 | |||
| 267ff371fa | |||
| b9b61b5f50 | |||
| 26d03f47ca | |||
|
|
3b41ce1450 | ||
|
|
ae817a00dd | ||
|
|
5899018aa2 | ||
|
|
19cbe2fba1 | ||
|
|
8b3a3dc1bb | ||
|
|
c5cd5769ed | ||
|
|
642fe9a80e | ||
|
|
c7d7ac9b58 | ||
|
|
9586798e06 | ||
|
|
3be4b95390 | ||
|
|
823face082 | ||
|
|
7227fc370f | ||
|
|
da29a2e6df | ||
|
|
61dcd4d00d | ||
|
|
412a5012b8 | ||
|
|
fc7e76a88f | ||
|
|
fd14d1dfb2 | ||
|
|
d6d00ec713 | ||
|
|
447814bf43 | ||
|
|
24c7aba2bf | ||
|
|
b060716978 | ||
|
|
41f54b98bd | ||
|
|
2292bcfe4e | ||
|
|
8941772209 | ||
|
|
0d0b9e04b1 | ||
|
|
1d6ac8be60 | ||
|
|
6b8de97dba | ||
|
|
a8f402bd34 | ||
|
|
d737dbc710 | ||
|
|
d033455313 | ||
|
|
d2f19ec93b | ||
|
|
6f38c49570 | ||
|
|
4b865a26e1 | ||
|
|
3495fdf026 | ||
|
|
2cc9b83c51 | ||
|
|
f379b7e46f | ||
|
|
5c38772ce8 | ||
|
|
00a1bde5db | ||
|
|
181a9b12af |
433
openssl.changes
433
openssl.changes
@@ -1,13 +1,3 @@
|
||||
-------------------------------------------------------------------
|
||||
Tue Aug 5 16:55:27 UTC 2025 - Lucas Mulling <lucas.mulling@suse.com>
|
||||
|
||||
- Update to 3.5.2
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Mon Jul 7 13:40:36 UTC 2025 - Lucas Mulling <lucas.mulling@suse.com>
|
||||
|
||||
- Update to 3.5.1
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Fri Apr 4 13:34:27 UTC 2025 - Lucas Mulling <lucas.mulling@suse.com>
|
||||
|
||||
@@ -44,242 +34,43 @@ Fri Feb 23 11:31:44 UTC 2024 - Pedro Monreal <pmonreal@suse.com>
|
||||
- Build the 32bit flavor of libopenssl-fips-provider [bsc#1220232]
|
||||
* Update baselibs.conf
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Tue Feb 13 15:11:23 UTC 2024 - Otto Hollmann <otto.hollmann@suse.com>
|
||||
|
||||
- Add Conflicts, Provides: openssl(cli) (bsc#1210313)
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Mon Jan 29 15:17:22 UTC 2024 - Pedro Monreal <pmonreal@suse.com>
|
||||
|
||||
- New libopenssl-fips-provider package.
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Tue Oct 24 14:55:05 UTC 2023 - Otto Hollmann <otto.hollmann@suse.com>
|
||||
Thu Nov 23 16:07:51 UTC 2023 - Otto Hollmann <otto.hollmann@suse.com>
|
||||
|
||||
- Update to 3.1.4
|
||||
- Update to 3.1.4 (jsc#PED-6570)
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Tue Sep 19 14:17:56 UTC 2023 - Otto Hollmann <otto.hollmann@suse.com>
|
||||
Tue Sep 12 05:09:28 UTC 2023 - Otto Hollmann <otto.hollmann@suse.com>
|
||||
|
||||
- Update to 3.1.3
|
||||
- Update to 1.1.1w release for SLE-15-SP6 (jsc#PED-6559)
|
||||
-------------------------------------------------------------------
|
||||
Wed Sep 22 05:08:11 UTC 2021 - Jason Sikes <jsikes@suse.com>
|
||||
|
||||
- Update to 1.1.1l release for SLE-15-SP4
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Tue Aug 1 15:24:46 UTC 2023 - Pedro Monreal <pmonreal@suse.com>
|
||||
|
||||
- Update to 3.1.2
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Tue Jun 20 15:18:56 UTC 2023 - Otto Hollmann <otto.hollmann@suse.com>
|
||||
|
||||
- Improve cross-package provides/conflicts [boo#1210313]
|
||||
* Add Conflicts: openssl(cli) for mutual exclusion between
|
||||
openssl, openssl-1_0_0 and libressl.
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Tue May 30 14:00:15 UTC 2023 - Otto Hollmann <otto.hollmann@suse.com>
|
||||
|
||||
- Update to 3.1.1
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Tue Mar 14 09:24:03 UTC 2023 - Otto Hollmann <otto.hollmann@suse.com>
|
||||
|
||||
- Update to 3.1.0
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Tue Feb 7 13:31:16 UTC 2023 - Otto Hollmann <otto.hollmann@suse.com>
|
||||
|
||||
- Update to 3.0.8
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Tue Nov 1 15:46:44 UTC 2022 - Otto Hollmann <otto.hollmann@suse.com>
|
||||
|
||||
- Update to 3.0.7
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Tue Nov 1 10:42:00 UTC 2022 - Otto Hollmann <otto.hollmann@suse.com>
|
||||
|
||||
- Update to 3.0.6
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Thu Jul 21 09:09:07 UTC 2022 - Pedro Monreal <pmonreal@suse.com>
|
||||
|
||||
- Update to 3.0.5
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Mon Jul 18 12:03:55 UTC 2022 - Pedro Monreal <pmonreal@suse.com>
|
||||
|
||||
- Update to 3.0.4
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Mon Jul 18 12:03:21 UTC 2022 - Pedro Monreal <pmonreal@suse.com>
|
||||
|
||||
- Update to 3.0.3
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Tue Mar 15 17:41:47 UTC 2022 - Pedro Monreal <pmonreal@suse.com>
|
||||
|
||||
- Update to 3.0.2
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Thu Jan 13 10:49:26 UTC 2022 - Pedro Monreal <pmonreal@suse.com>
|
||||
|
||||
- Update to 3.0.1
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Tue Sep 7 14:58:35 UTC 2021 - Pedro Monreal <pmonreal@suse.com>
|
||||
|
||||
- Update to 3.0.0
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Thu Jul 29 16:46:14 UTC 2021 - Pedro Monreal <pmonreal@suse.com>
|
||||
|
||||
- Update to 3.0.0 Beta 2
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Mon Jul 5 14:29:05 UTC 2021 - Pedro Monreal <pmonreal@suse.com>
|
||||
|
||||
- Update to 3.0.0 Beta 1
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Fri Jun 11 13:17:54 UTC 2021 - Pedro Monreal <pmonreal@suse.com>
|
||||
|
||||
- Update to 3.0.0 Alpha 17
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Mon May 31 09:56:39 UTC 2021 - Dominique Leuenberger <dimstar@opensuse.org>
|
||||
|
||||
- Provide openssl(cli) by the meta package: Together with the
|
||||
suggests openssl in the base patterns, any consumer of this
|
||||
symbols should get the openssl meta package as candidate, which
|
||||
allows us to easier change the recommended default version.
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Mon May 10 02:13:06 UTC 2021 - Pedro Monreal <pmonreal@suse.com>
|
||||
|
||||
- Update to 3.0.0 Alpha 16
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Sat May 1 19:58:48 UTC 2021 - Pedro Monreal <pmonreal@suse.com>
|
||||
|
||||
- Update to 3.0.0 Alpha 15
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Mon Apr 19 12:35:57 UTC 2021 - Pedro Monreal <pmonreal@suse.com>
|
||||
|
||||
- Update to 3.0.0 Alpha 14
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Wed Apr 14 17:55:21 UTC 2021 - Pedro Monreal <pmonreal@suse.com>
|
||||
|
||||
- Update to 3.0.0 Alpha 13
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Fri Feb 19 08:58:35 UTC 2021 - Pedro Monreal <pmonreal@suse.com>
|
||||
|
||||
- Update to 3.0.0 Alpha 12
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Fri Feb 12 11:47:35 UTC 2021 - Pedro Monreal <pmonreal@suse.com>
|
||||
|
||||
- Update to 3.0.0 Alpha 11
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Sat Jan 9 10:05:06 UTC 2021 - Pedro Monreal <pmonreal@suse.com>
|
||||
|
||||
- Update to 3.0.0 Alpha 10
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Thu Dec 17 09:14:33 UTC 2020 - Pedro Monreal <pmonreal@suse.com>
|
||||
|
||||
- Update to 3.0.0 Alpha 9
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Thu Nov 5 18:34:07 UTC 2020 - Pedro Monreal <pmonreal@suse.com>
|
||||
|
||||
- Update to 3.0.0 Alpha 8
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Thu Oct 15 16:44:44 UTC 2020 - Pedro Monreal <pmonreal@suse.com>
|
||||
|
||||
- Update to 3.0.0 Alpha 7
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Fri Aug 7 14:47:10 UTC 2020 - Callum Farmer <callumjfarmer13@gmail.com>
|
||||
|
||||
- Update to 3.0.0 Alpha 6
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Mon Jul 20 09:20:35 UTC 2020 - Vítězslav Čížek <vcizek@suse.com>
|
||||
|
||||
- Update to 3.0.0 Alpha 5
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Fri Jun 26 07:20:13 UTC 2020 - Vítězslav Čížek <vcizek@suse.com>
|
||||
|
||||
- Update to 3.0.0 Alpha 4
|
||||
- Change license to Apache-2.0
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Fri Jun 5 12:31:12 UTC 2020 - Vítězslav Čížek <vcizek@suse.com>
|
||||
|
||||
- Update to 3.0.0 Alpha 3
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Wed May 20 12:41:20 UTC 2020 - Vítězslav Čížek <vcizek@suse.com>
|
||||
|
||||
- Update to 3.0.0 Alpha 2
|
||||
- Update baselibs.conf
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Tue Apr 21 13:43:27 UTC 2020 - Vítězslav Čížek <vcizek@suse.com>
|
||||
|
||||
- Update to 1.1.1g release
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Tue Mar 31 14:04:29 UTC 2020 - Vítězslav Čížek <vcizek@suse.com>
|
||||
|
||||
- Update to 1.1.1f release
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Sun Mar 22 11:18:29 UTC 2020 - Vítězslav Čížek <vcizek@suse.com>
|
||||
|
||||
- Update to 1.1.1e release
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Tue Dec 3 12:57:07 UTC 2019 - Dominique Leuenberger <dimstar@opensuse.org>
|
||||
|
||||
- Remove Obsoletes: pkgconfig(*): Only package names can be
|
||||
obsoleted. Until RPM 4.15, those lines were simply ineffective
|
||||
and being ignored, but with RPM 4.15 they result in an error.
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Wed Sep 11 14:15:24 UTC 2019 - Vítězslav Čížek <vcizek@suse.com>
|
||||
Thu Sep 12 11:17:31 UTC 2019 - Vítězslav Čížek <vcizek@suse.com>
|
||||
|
||||
- Update to 1.1.1d release
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Thu May 30 13:18:44 UTC 2019 - Vítězslav Čížek <vcizek@suse.com>
|
||||
Thu Aug 29 10:43:19 UTC 2019 - Vítězslav Čížek <vcizek@suse.com>
|
||||
|
||||
- Update to 1.1.1c release
|
||||
- Upgrade to 1.1.1c release to get TLS 1.3 support
|
||||
(jsc#SLE-9135, bsc#1148799)
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Thu Feb 28 09:32:27 UTC 2019 - Pedro Monreal Gonzalez <pmonrealgonzalez@suse.com>
|
||||
|
||||
- Update to 1.1.1b release
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Tue Nov 20 14:36:29 UTC 2018 - Vítězslav Čížek <vcizek@suse.com>
|
||||
|
||||
- Update to 1.1.1a release
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Tue Sep 11 13:46:57 UTC 2018 - Vítězslav Čížek <vcizek@suse.com>
|
||||
|
||||
- Update to 1.1.1 release
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Fri Aug 24 10:32:43 UTC 2018 - vcizek@suse.com
|
||||
|
||||
- Update to 1.1.1~pre9 (Beta 7)
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Tue Aug 14 14:11:48 UTC 2018 - vcizek@suse.com
|
||||
Thu Aug 16 10:26:25 UTC 2018 - vcizek@suse.com
|
||||
|
||||
- Update to 1.1.0i release
|
||||
|
||||
@@ -535,7 +326,7 @@ Tue May 3 14:43:47 UTC 2016 - vcizek@suse.com
|
||||
-------------------------------------------------------------------
|
||||
Fri Apr 15 16:55:05 UTC 2016 - dvaleev@suse.com
|
||||
|
||||
- Remove a hack for bsc#936563
|
||||
- Remove a hack for bsc#936563
|
||||
- Drop bsc936563_hack.patch
|
||||
|
||||
-------------------------------------------------------------------
|
||||
@@ -654,7 +445,7 @@ Thu Jul 9 13:32:34 UTC 2015 - vcizek@suse.com
|
||||
Thu Jul 2 14:46:36 UTC 2015 - dvaleev@suse.com
|
||||
|
||||
- Workaround debugit crash on ppc64le with gcc5
|
||||
bsc936563_hack.patch (bsc#936563)
|
||||
bsc936563_hack.patch (bsc#936563)
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Wed Jul 1 09:26:26 UTC 2015 - normand@linux.vnet.ibm.com
|
||||
@@ -666,10 +457,10 @@ Wed Jul 1 09:26:26 UTC 2015 - normand@linux.vnet.ibm.com
|
||||
-------------------------------------------------------------------
|
||||
Fri Jun 26 00:11:20 UTC 2015 - crrodriguez@opensuse.org
|
||||
|
||||
- Build with no-ssl3, for details on why this is needed read
|
||||
- Build with no-ssl3, for details on why this is needed read
|
||||
rfc7568. Contrary to the "no-ssl2" option, this does not
|
||||
require us to patch dependant packages as the relevant
|
||||
functions are still available (SSLv3_(client|server)_method)
|
||||
require us to patch dependant packages as the relevant
|
||||
functions are still available (SSLv3_(client|server)_method)
|
||||
but will fail to negotiate. if removing SSL3 methods is desired
|
||||
at a later time, option "no-ssl3-method" needs to be used.
|
||||
|
||||
@@ -789,7 +580,7 @@ Fri Jan 9 10:03:37 UTC 2015 - meissner@suse.com
|
||||
bsc#912018 CVE-2014-8275: Fix various certificate fingerprint issues.
|
||||
bsc#912296 CVE-2014-3570: Correct Bignum squaring.
|
||||
and other bugfixes.
|
||||
- openssl.keyring: use Matt Caswells current key.
|
||||
- openssl.keyring: use Matt Caswells current key.
|
||||
pub 2048R/0E604491 2013-04-30
|
||||
uid Matt Caswell <frodo@baggins.org>
|
||||
uid Matt Caswell <matt@openssl.org>
|
||||
@@ -818,7 +609,7 @@ Fri Nov 7 22:09:27 UTC 2014 - brian@aljex.com
|
||||
-------------------------------------------------------------------
|
||||
Tue Oct 21 19:58:31 UTC 2014 - crrodriguez@opensuse.org
|
||||
|
||||
- openSSL 1.0.1j
|
||||
- openSSL 1.0.1j
|
||||
* Fix SRTP Memory Leak (CVE-2014-3513)
|
||||
* Session Ticket Memory Leak (CVE-2014-3567)
|
||||
* Add SSL 3.0 Fallback protection (TLS_FALLBACK_SCSV)
|
||||
@@ -827,7 +618,7 @@ Tue Oct 21 19:58:31 UTC 2014 - crrodriguez@opensuse.org
|
||||
-------------------------------------------------------------------
|
||||
Thu Aug 21 15:05:43 UTC 2014 - meissner@suse.com
|
||||
|
||||
- openssl.keyring: the 1.0.1i release was done by
|
||||
- openssl.keyring: the 1.0.1i release was done by
|
||||
Matt Caswell <matt@openssl.org> UK 0E604491
|
||||
|
||||
-------------------------------------------------------------------
|
||||
@@ -981,17 +772,17 @@ Mon May 5 16:25:17 UTC 2014 - crrodriguez@opensuse.org
|
||||
- 0009-Fix-double-frees.patch, 0017-Double-free-in-i2o_ECPublicKey.patch
|
||||
fix various double frees (from upstream)
|
||||
|
||||
- 012-Fix-eckey_priv_encode.patch eckey_priv_encode should
|
||||
- 012-Fix-eckey_priv_encode.patch eckey_priv_encode should
|
||||
return an error inmediately on failure of i2d_ECPrivateKey (from upstream)
|
||||
|
||||
- 0001-Axe-builtin-printf-implementation-use-glibc-instead.patch
|
||||
- 0001-Axe-builtin-printf-implementation-use-glibc-instead.patch
|
||||
From libressl, modified to work on linux systems that do not have
|
||||
funopen() but fopencookie() instead.
|
||||
Once upon a time, OS didn't have snprintf, which caused openssl to
|
||||
bundle a *printf implementation. We know better nowadays, the glibc
|
||||
implementation has buffer overflow checking, has sane failure modes
|
||||
deal properly with threads, signals..etc..
|
||||
|
||||
|
||||
- build with -fno-common as well.
|
||||
|
||||
-------------------------------------------------------------------
|
||||
@@ -1005,26 +796,26 @@ Sun Apr 20 00:53:34 UTC 2014 - crrodriguez@opensuse.org
|
||||
|
||||
- Build everything with full RELRO (-Wl,-z,relro,-z,now)
|
||||
- Remove -fstack-protector from the hardcoded build options
|
||||
it is already in RPM_OPT_FLAGS and is replaced by
|
||||
it is already in RPM_OPT_FLAGS and is replaced by
|
||||
-fstack-protector-strong with gcc 4.9
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Sun Apr 20 00:49:25 UTC 2014 - crrodriguez@opensuse.org
|
||||
|
||||
- Remove the "gmp" and "capi" shared engines, nobody noticed
|
||||
but they are just dummies that do nothing.
|
||||
- Remove the "gmp" and "capi" shared engines, nobody noticed
|
||||
but they are just dummies that do nothing.
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Sat Apr 19 22:29:10 UTC 2014 - crrodriguez@opensuse.org
|
||||
|
||||
- Use enable-rfc3779 to allow projects such as rpki.net
|
||||
- Use enable-rfc3779 to allow projects such as rpki.net
|
||||
to work in openSUSE and match the functionality
|
||||
available in Debian/Fedora/etc
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Sat Apr 19 22:22:01 UTC 2014 - crrodriguez@opensuse.org
|
||||
|
||||
- openssl-buffreelistbug-aka-CVE-2010-5298.patch fix
|
||||
- openssl-buffreelistbug-aka-CVE-2010-5298.patch fix
|
||||
CVE-2010-5298 and disable the internal BUF_FREELISTS
|
||||
functionality. it hides bugs like heartbleed and is
|
||||
there only for systems on which malloc() free() are slow.
|
||||
@@ -1043,14 +834,14 @@ Sat Apr 19 03:45:20 UTC 2014 - crrodriguez@opensuse.org
|
||||
-------------------------------------------------------------------
|
||||
Fri Apr 18 14:07:47 UTC 2014 - crrodriguez@opensuse.org
|
||||
|
||||
- openssl-gcc-attributes.patch: fix thinko, CRYPTO_realloc_clean does
|
||||
- openssl-gcc-attributes.patch: fix thinko, CRYPTO_realloc_clean does
|
||||
not return memory of "num * old_num" but only "num" size
|
||||
fortunately this function is currently unused.
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Fri Apr 11 02:40:34 UTC 2014 - crrodriguez@opensuse.org
|
||||
|
||||
- openssl-gcc-attributes.patch
|
||||
- openssl-gcc-attributes.patch
|
||||
* annotate memory allocation wrappers with attribute(alloc_size)
|
||||
so the compiler can tell us if it knows they are being misused
|
||||
* OPENSSL_showfatal is annotated with attribute printf to detect
|
||||
@@ -1084,20 +875,20 @@ Tue Mar 25 08:11:11 UTC 2014 - shchang@suse.com
|
||||
-------------------------------------------------------------------
|
||||
Mon Mar 3 06:44:52 UTC 2014 - shchang@suse.com
|
||||
|
||||
- additional changes required for FIPS validation( from Fedora repo)
|
||||
- additional changes required for FIPS validation( from Fedora repo)
|
||||
Add patch file: openssl-1.0.1e-new-fips-reqs.patch
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Sat Jan 11 08:42:54 UTC 2014 - shchang@suse.com
|
||||
|
||||
- Remove GCC option "-O3" for compiliation issue of ARM version
|
||||
- Remove GCC option "-O3" for compiliation issue of ARM version
|
||||
Modify: openssl.spec
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Fri Jan 10 14:43:20 UTC 2014 - shchang@suse.com
|
||||
|
||||
- Adjust the installation path( libopenssl/hmac into /lib or /lib64)
|
||||
Modify files: README-FIPS.txt openssl.spec
|
||||
Modify files: README-FIPS.txt openssl.spec
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Thu Jan 9 23:08:29 UTC 2014 - andreas.stieger@gmx.de
|
||||
@@ -1131,13 +922,13 @@ Wed Jan 8 10:57:24 UTC 2014 - shchang@suse.com
|
||||
Thu Jan 2 17:28:41 UTC 2014 - shchang@suse.com
|
||||
|
||||
- Fixed bnc#857203, openssl: crash in DTLS renegotiation after packet loss
|
||||
Add file: CVE-2013-6450.patch
|
||||
Add file: CVE-2013-6450.patch
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Sun Dec 22 08:10:55 UTC 2013 - shchang@suse.com
|
||||
|
||||
- Fixed bnc#856687, openssl: crash when using TLS 1.2
|
||||
Add file: CVE-2013-6449.patch
|
||||
- Fixed bnc#856687, openssl: crash when using TLS 1.2
|
||||
Add file: CVE-2013-6449.patch
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Tue Dec 17 13:57:40 UTC 2013 - meissner@suse.com
|
||||
@@ -1181,11 +972,11 @@ Sat Nov 23 08:23:59 UTC 2013 - shchang@suse.com
|
||||
-------------------------------------------------------------------
|
||||
Wed Oct 23 02:59:05 UTC 2013 - crrodriguez@opensuse.org
|
||||
|
||||
- 0001-libcrypto-Hide-library-private-symbols.patch
|
||||
- 0001-libcrypto-Hide-library-private-symbols.patch
|
||||
This patch implements the libcrpto part complimentary to
|
||||
0005-libssl-Hide-library-private-symbols.patch.
|
||||
This patch is however not 100% complete, as some private library
|
||||
symbols are declared in public headers that shall not be touched
|
||||
This patch is however not 100% complete, as some private library
|
||||
symbols are declared in public headers that shall not be touched
|
||||
or are defined/declared in "perlasm". (tested in 13.1, 12.3, factory)
|
||||
|
||||
- openSSL defaults to -O3 optimization level but we override
|
||||
@@ -1194,7 +985,7 @@ Wed Oct 23 02:59:05 UTC 2013 - crrodriguez@opensuse.org
|
||||
-------------------------------------------------------------------
|
||||
Fri Oct 11 12:24:14 UTC 2013 - meissner@suse.com
|
||||
|
||||
- openssl-1.0.1c-ipv6-apps.patch:
|
||||
- openssl-1.0.1c-ipv6-apps.patch:
|
||||
Support ipv6 in the openssl s_client / s_server commandline app.
|
||||
|
||||
-------------------------------------------------------------------
|
||||
@@ -1206,7 +997,7 @@ Fri Sep 27 10:26:43 UTC 2013 - dmacvicar@suse.de
|
||||
-------------------------------------------------------------------
|
||||
Wed Sep 4 18:56:38 UTC 2013 - guillaume@opensuse.org
|
||||
|
||||
- Fix armv6l arch (armv7 was previously used to build armv6 which
|
||||
- Fix armv6l arch (armv7 was previously used to build armv6 which
|
||||
lead to illegal instruction when used)
|
||||
|
||||
-------------------------------------------------------------------
|
||||
@@ -1218,7 +1009,7 @@ Mon Aug 12 06:05:03 UTC 2013 - shchang@suse.com
|
||||
-------------------------------------------------------------------
|
||||
Fri Aug 9 23:24:14 UTC 2013 - crrodriguez@opensuse.org
|
||||
|
||||
- Via padlock is only found in x86 and x86_64 CPUs, remove
|
||||
- Via padlock is only found in x86 and x86_64 CPUs, remove
|
||||
the shared module for other archs.
|
||||
|
||||
-------------------------------------------------------------------
|
||||
@@ -1230,15 +1021,15 @@ Wed Aug 7 18:30:45 UTC 2013 - crrodriguez@opensuse.org
|
||||
* libgmp.so --> may help to doing some maths using GMP
|
||||
* libgost.so --> implements the GOST block cipher
|
||||
* libpadlock.so --> VIA padlock support
|
||||
- Al other are removed because they require third party propietary
|
||||
- Al other are removed because they require third party propietary
|
||||
shared libraries nowhere to be found or that we can test.
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Wed Aug 7 18:30:23 UTC 2013 - crrodriguez@opensuse.org
|
||||
|
||||
- openssl-pkgconfig.patch: Here we go.. For applications
|
||||
to benefit fully of features provided by openSSL engines
|
||||
(rdrand, aes-ni..etc) either builtin or in DSO form applications
|
||||
- openssl-pkgconfig.patch: Here we go.. For applications
|
||||
to benefit fully of features provided by openSSL engines
|
||||
(rdrand, aes-ni..etc) either builtin or in DSO form applications
|
||||
have to call ENGINE_load_builtin_engines() or OPENSSL_config()
|
||||
unfortunately from a total of 68 apps/libraries linked to libcrypto
|
||||
in a desktop system, only 4 do so, and there is a sea of buggy
|
||||
@@ -1253,13 +1044,13 @@ not using pkgconfig or using it incorrectly, but it is a good start.
|
||||
Wed Aug 7 09:33:55 UTC 2013 - dmueller@suse.com
|
||||
|
||||
- add openssl-1.0.1c-default-paths.patch:
|
||||
Fix from Fedora for openssl s_client not setting
|
||||
Fix from Fedora for openssl s_client not setting
|
||||
CApath by default
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Sat Aug 3 21:15:07 UTC 2013 - crrodriguez@opensuse.org
|
||||
|
||||
- 0005-libssl-Hide-library-private-symbols.patch: hide
|
||||
- 0005-libssl-Hide-library-private-symbols.patch: hide
|
||||
private symbols, this *only* applies to libssl where
|
||||
it is straightforward to do so as applications should
|
||||
not be using any of the symbols declared/defined in headers
|
||||
@@ -1294,7 +1085,7 @@ Sat Jun 29 22:47:54 UTC 2013 - crrodriguez@opensuse.org
|
||||
security as the new implementations are secure against timing
|
||||
attacks)"
|
||||
It is not enabled by default due to the build system being unable
|
||||
to detect if the compiler supports __uint128_t.
|
||||
to detect if the compiler supports __uint128_t.
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Thu Jun 20 07:58:33 UTC 2013 - coolo@suse.com
|
||||
@@ -1322,7 +1113,7 @@ Tue Feb 12 00:08:06 UTC 2013 - hrvoje.senjan@gmail.com
|
||||
-------------------------------------------------------------------
|
||||
Sun Feb 10 20:33:51 UTC 2013 - hrvoje.senjan@gmail.com
|
||||
|
||||
- Added openssl-1.0.1d-s3-packet.patch from upstream, fixes
|
||||
- Added openssl-1.0.1d-s3-packet.patch from upstream, fixes
|
||||
bnc#803004, openssl ticket#2975
|
||||
|
||||
-------------------------------------------------------------------
|
||||
@@ -1347,7 +1138,7 @@ Sun Aug 19 23:38:32 UTC 2012 - crrodriguez@opensuse.org
|
||||
|
||||
- Open Internal file descriptors with O_CLOEXEC, leaving
|
||||
those open across fork()..execve() makes a perfect
|
||||
vector for a side-channel attack...
|
||||
vector for a side-channel attack...
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Tue Aug 7 17:17:34 UTC 2012 - dmueller@suse.com
|
||||
@@ -1409,7 +1200,7 @@ Tue Mar 20 14:29:24 UTC 2012 - cfarrell@suse.com
|
||||
-------------------------------------------------------------------
|
||||
Fri Feb 24 02:33:22 UTC 2012 - gjhe@suse.com
|
||||
|
||||
- fix bug[bnc#748738] - Tolerate bad MIME headers in openssl's
|
||||
- fix bug[bnc#748738] - Tolerate bad MIME headers in openssl's
|
||||
asn1 parser.
|
||||
CVE-2006-7250
|
||||
|
||||
@@ -1427,22 +1218,22 @@ Wed Jan 11 05:35:18 UTC 2012 - gjhe@suse.com
|
||||
Uninitialized SSL 3.0 Padding (CVE-2011-4576)
|
||||
Malformed RFC 3779 Data Can Cause Assertion Failures (CVE-2011-4577)
|
||||
SGC Restart DoS Attack (CVE-2011-4619)
|
||||
Invalid GOST parameters DoS Attack (CVE-2012-0027)
|
||||
Invalid GOST parameters DoS Attack (CVE-2012-0027)
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Tue Oct 18 16:43:50 UTC 2011 - crrodriguez@opensuse.org
|
||||
|
||||
- AES-NI: Check the return value of Engine_add()
|
||||
if the ENGINE_add() call fails: it ends up adding a reference
|
||||
to a freed up ENGINE which is likely to subsequently contain garbage
|
||||
- AES-NI: Check the return value of Engine_add()
|
||||
if the ENGINE_add() call fails: it ends up adding a reference
|
||||
to a freed up ENGINE which is likely to subsequently contain garbage
|
||||
This will happen if an ENGINE with the same name is added multiple
|
||||
times,for example different libraries. [bnc#720601]
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Sat Oct 8 21:36:58 UTC 2011 - crrodriguez@opensuse.org
|
||||
|
||||
- Build with -DSSL_FORBID_ENULL so servers are not
|
||||
able to use the NULL encryption ciphers (Those offering no
|
||||
- Build with -DSSL_FORBID_ENULL so servers are not
|
||||
able to use the NULL encryption ciphers (Those offering no
|
||||
encryption whatsoever).
|
||||
|
||||
-------------------------------------------------------------------
|
||||
@@ -1456,12 +1247,12 @@ Sat Aug 6 00:33:47 UTC 2011 - crrodriguez@opensuse.org
|
||||
|
||||
- Add upstream patch that calls ENGINE_register_all_complete()
|
||||
in ENGINE_load_builtin_engines() saving us from adding dozens
|
||||
of calls to such function to calling applications.
|
||||
of calls to such function to calling applications.
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Fri Aug 5 19:09:42 UTC 2011 - crrodriguez@opensuse.org
|
||||
|
||||
- remove -fno-strict-aliasing from CFLAGS no longer needed
|
||||
- remove -fno-strict-aliasing from CFLAGS no longer needed
|
||||
and is likely to slow down stuff.
|
||||
|
||||
-------------------------------------------------------------------
|
||||
@@ -1490,7 +1281,7 @@ Tue May 31 07:07:49 UTC 2011 - gjhe@novell.com
|
||||
-------------------------------------------------------------------
|
||||
Mon May 16 14:38:26 UTC 2011 - andrea@opensuse.org
|
||||
|
||||
- added openssl as dependency in the devel package
|
||||
- added openssl as dependency in the devel package
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Thu Feb 10 07:42:01 UTC 2011 - gjhe@novell.com
|
||||
@@ -1502,7 +1293,7 @@ Thu Feb 10 07:42:01 UTC 2011 - gjhe@novell.com
|
||||
Sat Jan 15 19:58:51 UTC 2011 - cristian.rodriguez@opensuse.org
|
||||
|
||||
- Add patch from upstream in order to support AES-NI instruction
|
||||
set present on current Intel and AMD processors
|
||||
set present on current Intel and AMD processors
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Mon Jan 10 11:45:27 CET 2011 - meissner@suse.de
|
||||
@@ -1529,13 +1320,13 @@ Thu Nov 18 07:53:12 UTC 2010 - gjhe@novell.com
|
||||
Sat Sep 25 08:55:02 UTC 2010 - gjhe@novell.com
|
||||
|
||||
- fix bug [bnc#629905]
|
||||
CVE-2010-2939
|
||||
CVE-2010-2939
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Wed Jul 28 20:55:18 UTC 2010 - cristian.rodriguez@opensuse.org
|
||||
|
||||
- Exclude static libraries, see what breaks and fix that
|
||||
instead
|
||||
instead
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Wed Jun 30 08:47:39 UTC 2010 - jengelh@medozas.de
|
||||
@@ -1552,13 +1343,13 @@ Fri Jun 4 07:11:28 UTC 2010 - gjhe@novell.com
|
||||
|
||||
- fix bnc #610642
|
||||
CVE-2010-0742
|
||||
CVE-2010-1633
|
||||
CVE-2010-1633
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Mon May 31 03:06:39 UTC 2010 - gjhe@novell.com
|
||||
|
||||
- fix bnc #610223,change Configure to tell openssl to load engines
|
||||
from /%{_lib} instead of %{_libdir}
|
||||
from /%{_lib} instead of %{_libdir}
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Mon May 10 16:11:54 UTC 2010 - aj@suse.de
|
||||
@@ -1569,13 +1360,13 @@ Mon May 10 16:11:54 UTC 2010 - aj@suse.de
|
||||
-------------------------------------------------------------------
|
||||
Tue May 4 02:55:52 UTC 2010 - gjhe@novell.com
|
||||
|
||||
- build libopenssl to /%{_lib} dir,and keep only one
|
||||
- build libopenssl to /%{_lib} dir,and keep only one
|
||||
libopenssl-devel for new developping programs.
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Tue Apr 27 05:44:32 UTC 2010 - gjhe@novell.com
|
||||
|
||||
- build libopenssl and libopenssl-devel to a version directory
|
||||
- build libopenssl and libopenssl-devel to a version directory
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Sat Apr 24 09:46:37 UTC 2010 - coolo@novell.com
|
||||
@@ -1600,7 +1391,7 @@ Mon Apr 12 16:12:08 CEST 2010 - meissner@suse.de
|
||||
-------------------------------------------------------------------
|
||||
Mon Apr 12 04:57:17 UTC 2010 - gjhe@novell.com
|
||||
|
||||
- update to 1.0.0
|
||||
- update to 1.0.0
|
||||
Merge the following patches from 0.9.8k:
|
||||
openssl-0.9.6g-alpha.diff
|
||||
openssl-0.9.7f-ppc64.diff
|
||||
@@ -1618,19 +1409,19 @@ Fri Apr 9 11:42:51 CEST 2010 - meissner@suse.de
|
||||
-------------------------------------------------------------------
|
||||
Wed Apr 7 14:08:05 CEST 2010 - meissner@suse.de
|
||||
|
||||
- Openssl is now partially converted to libdir usage upstream,
|
||||
- Openssl is now partially converted to libdir usage upstream,
|
||||
merge that in to fix lib64 builds.
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Thu Mar 25 02:18:22 UTC 2010 - gjhe@novell.com
|
||||
|
||||
- fix security bug [bnc#590833]
|
||||
- fix security bug [bnc#590833]
|
||||
CVE-2010-0740
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Mon Mar 22 06:29:14 UTC 2010 - gjhe@novell.com
|
||||
|
||||
- update to version 0.9.8m
|
||||
- update to version 0.9.8m
|
||||
Merge the following patches from 0.9.8k:
|
||||
bswap.diff
|
||||
non-exec-stack.diff
|
||||
@@ -1660,7 +1451,7 @@ Tue Nov 3 19:09:35 UTC 2009 - coolo@novell.com
|
||||
-------------------------------------------------------------------
|
||||
Tue Sep 1 10:21:16 CEST 2009 - gjhe@novell.com
|
||||
|
||||
- fix Bug [bnc#526319]
|
||||
- fix Bug [bnc#526319]
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Wed Aug 26 11:24:16 CEST 2009 - coolo@novell.com
|
||||
@@ -1670,14 +1461,14 @@ Wed Aug 26 11:24:16 CEST 2009 - coolo@novell.com
|
||||
-------------------------------------------------------------------
|
||||
Fri Jul 3 11:53:48 CEST 2009 - gjhe@novell.com
|
||||
|
||||
- update to version 0.9.8k
|
||||
- update to version 0.9.8k
|
||||
- patches merged upstream:
|
||||
openssl-CVE-2008-5077.patch
|
||||
openssl-CVE-2009-0590.patch
|
||||
openssl-CVE-2009-0590.patch
|
||||
openssl-CVE-2009-0591.patch
|
||||
openssl-CVE-2009-0789.patch
|
||||
openssl-CVE-2009-0789.patch
|
||||
openssl-CVE-2009-1377.patch
|
||||
openssl-CVE-2009-1378.patch
|
||||
openssl-CVE-2009-1378.patch
|
||||
openssl-CVE-2009-1379.patch
|
||||
openssl-CVE-2009-1386.patch
|
||||
openssl-CVE-2009-1387.patch
|
||||
@@ -1729,18 +1520,18 @@ Mon Dec 8 12:12:14 CET 2008 - xwhu@suse.de
|
||||
-------------------------------------------------------------------
|
||||
Mon Nov 10 10:22:04 CET 2008 - xwhu@suse.de
|
||||
|
||||
- Disable optimization of ripemd [bnc#442740]
|
||||
- Disable optimization of ripemd [bnc#442740]
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Tue Oct 14 09:08:47 CEST 2008 - xwhu@suse.de
|
||||
|
||||
- Passing string as struct cause openssl segment-fault [bnc#430141]
|
||||
- Passing string as struct cause openssl segment-fault [bnc#430141]
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Wed Jul 16 12:02:37 CEST 2008 - mkoenig@suse.de
|
||||
|
||||
- do not require openssl-certs, but rather recommend it
|
||||
to avoid dependency cycle [bnc#408865]
|
||||
to avoid dependency cycle [bnc#408865]
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Wed Jul 9 12:53:27 CEST 2008 - mkoenig@suse.de
|
||||
@@ -1764,8 +1555,8 @@ Tue Jun 24 09:09:04 CEST 2008 - mkoenig@suse.de
|
||||
Wed May 28 15:04:08 CEST 2008 - mkoenig@suse.de
|
||||
|
||||
- fix OpenSSL Server Name extension crash (CVE-2008-0891)
|
||||
and OpenSSL Omit Server Key Exchange message crash (CVE-2008-1672)
|
||||
[bnc#394317]
|
||||
and OpenSSL Omit Server Key Exchange message crash (CVE-2008-1672)
|
||||
[bnc#394317]
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Wed May 21 20:48:39 CEST 2008 - cthiel@suse.de
|
||||
@@ -1775,7 +1566,7 @@ Wed May 21 20:48:39 CEST 2008 - cthiel@suse.de
|
||||
-------------------------------------------------------------------
|
||||
Tue Apr 22 14:39:35 CEST 2008 - mkoenig@suse.de
|
||||
|
||||
- add -DMD32_REG_T=int for x86_64 and ia64 [bnc#381844]
|
||||
- add -DMD32_REG_T=int for x86_64 and ia64 [bnc#381844]
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Thu Apr 10 12:54:45 CEST 2008 - ro@suse.de
|
||||
@@ -1786,7 +1577,7 @@ Thu Apr 10 12:54:45 CEST 2008 - ro@suse.de
|
||||
-------------------------------------------------------------------
|
||||
Mon Nov 5 14:27:06 CET 2007 - mkoenig@suse.de
|
||||
|
||||
- fix Diffie-Hellman failure with certain prime lengths
|
||||
- fix Diffie-Hellman failure with certain prime lengths
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Mon Oct 22 15:00:21 CEST 2007 - mkoenig@suse.de
|
||||
@@ -1810,7 +1601,7 @@ Mon Oct 15 11:17:14 CEST 2007 - mkoenig@suse.de
|
||||
-------------------------------------------------------------------
|
||||
Mon Oct 1 11:29:55 CEST 2007 - mkoenig@suse.de
|
||||
|
||||
- fix buffer overflow CVE-2007-5135 [#329208]
|
||||
- fix buffer overflow CVE-2007-5135 [#329208]
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Wed Sep 5 11:39:26 CEST 2007 - mkoenig@suse.de
|
||||
@@ -1825,7 +1616,7 @@ Fri Aug 3 14:17:27 CEST 2007 - coolo@suse.de
|
||||
-------------------------------------------------------------------
|
||||
Wed Aug 1 18:01:45 CEST 2007 - werner@suse.de
|
||||
|
||||
- Add patch from CVS for RSA key reconstruction vulnerability
|
||||
- Add patch from CVS for RSA key reconstruction vulnerability
|
||||
(CVE-2007-3108, VU#724968, bug #296511)
|
||||
|
||||
-------------------------------------------------------------------
|
||||
@@ -1833,7 +1624,7 @@ Thu May 24 16:18:50 CEST 2007 - mkoenig@suse.de
|
||||
|
||||
- fix build with gcc-4.2
|
||||
openssl-gcc42.patch
|
||||
- do not install example scripts with executable permissions
|
||||
- do not install example scripts with executable permissions
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Mon Apr 30 01:32:44 CEST 2007 - ro@suse.de
|
||||
@@ -1851,12 +1642,12 @@ Fri Apr 27 15:25:13 CEST 2007 - mkoenig@suse.de
|
||||
Wed Apr 25 12:32:44 CEST 2007 - mkoenig@suse.de
|
||||
|
||||
- Split/rename package to follow library packaging policy [#260219]
|
||||
New package libopenssl0.9.8 containing shared libs
|
||||
New package libopenssl0.9.8 containing shared libs
|
||||
openssl-devel package renamed to libopenssl-devel
|
||||
New package openssl-certs containing certificates
|
||||
New package openssl-certs containing certificates
|
||||
- add zlib-devel to Requires of devel package
|
||||
- remove old Obsoletes and Conflicts
|
||||
openssls (Last used Nov 2000)
|
||||
openssls (Last used Nov 2000)
|
||||
ssleay (Last used 6.2)
|
||||
|
||||
-------------------------------------------------------------------
|
||||
@@ -1904,7 +1695,7 @@ Fri Sep 29 18:37:01 CEST 2006 - poeml@suse.de
|
||||
cause a denial of service. (CVE-2006-2940)
|
||||
*) Fix ASN.1 parsing of certain invalid structures that can result
|
||||
in a denial of service. (CVE-2006-2937)
|
||||
*) Fix buffer overflow in SSL_get_shared_ciphers() function.
|
||||
*) Fix buffer overflow in SSL_get_shared_ciphers() function.
|
||||
(CVE-2006-3738)
|
||||
*) Fix SSL client code which could crash if connecting to a
|
||||
malicious SSLv2 server. (CVE-2006-4343)
|
||||
@@ -2035,12 +1826,12 @@ Wed Jan 25 21:30:41 CET 2006 - mls@suse.de
|
||||
Mon Jan 16 13:13:13 CET 2006 - mc@suse.de
|
||||
|
||||
- fix build problems on s390x (openssl-s390-config.diff)
|
||||
- build with -fstack-protector
|
||||
- build with -fstack-protector
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Mon Nov 7 16:30:49 CET 2005 - dmueller@suse.de
|
||||
|
||||
- build with non-executable stack
|
||||
- build with non-executable stack
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Thu Oct 20 17:37:47 CEST 2005 - poeml@suse.de
|
||||
@@ -2180,7 +1971,7 @@ Tue Jun 15 16:18:36 CEST 2004 - poeml@suse.de
|
||||
- patch from CVS: make stack API more robust (return NULL for
|
||||
out-of-range indexes). Fixes another possible segfault during
|
||||
engine detection (could also triggered by stunnel)
|
||||
- add patch from Michal Ludvig for VIA PadLock support
|
||||
- add patch from Michal Ludvig for VIA PadLock support
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Wed Jun 2 20:44:40 CEST 2004 - poeml@suse.de
|
||||
@@ -2203,7 +1994,7 @@ Thu Mar 18 13:47:09 CET 2004 - poeml@suse.de
|
||||
- update to 0.9.7d
|
||||
o Security: Fix Kerberos ciphersuite SSL/TLS handshaking bug
|
||||
(CAN-2004-0112)
|
||||
o Security: Fix null-pointer assignment in do_change_cipher_spec()
|
||||
o Security: Fix null-pointer assignment in do_change_cipher_spec()
|
||||
(CAN-2004-0079)
|
||||
o Allow multiple active certificates with same subject in CA index
|
||||
o Multiple X590 verification fixes
|
||||
@@ -2248,7 +2039,7 @@ Wed Feb 25 20:42:39 CET 2004 - poeml@suse.de
|
||||
Output CR+LF for EOL if PKCS7_CRLFEOL is set (this makes opening
|
||||
of files as .eml work). Correctly handle very long lines in MIME
|
||||
parser.
|
||||
- update ICA patch
|
||||
- update ICA patch
|
||||
quote: This version of the engine patch has updated error handling in
|
||||
the DES/SHA code, and turns RSA blinding off for hardware
|
||||
accelerated RSA ops.
|
||||
@@ -2306,7 +2097,7 @@ Thu Jul 10 23:14:22 CEST 2003 - poeml@suse.de
|
||||
-------------------------------------------------------------------
|
||||
Mon May 12 23:27:07 CEST 2003 - poeml@suse.de
|
||||
|
||||
- package the openssl.pc file for pkgconfig
|
||||
- package the openssl.pc file for pkgconfig
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Wed Apr 16 16:04:32 CEST 2003 - poeml@suse.de
|
||||
@@ -2404,7 +2195,7 @@ Thu Oct 24 12:57:36 CEST 2002 - poeml@suse.de
|
||||
-------------------------------------------------------------------
|
||||
Mon Sep 30 16:07:49 CEST 2002 - bg@suse.de
|
||||
|
||||
- enable hppa distribution; use only pa1.1 architecture.
|
||||
- enable hppa distribution; use only pa1.1 architecture.
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Tue Sep 17 17:13:46 CEST 2002 - froh@suse.de
|
||||
@@ -2445,7 +2236,7 @@ Thu Aug 1 00:53:33 CEST 2002 - poeml@suse.de
|
||||
- gcc 3.1 version detection is fixed, we can drop the patch
|
||||
- move the most used man pages from the -doc to the main package
|
||||
[#9913] and resolve man page conflicts by putting them into ssl
|
||||
sections [#17239]
|
||||
sections [#17239]
|
||||
- spec file: use PreReq for %post script
|
||||
|
||||
-------------------------------------------------------------------
|
||||
@@ -2494,14 +2285,14 @@ Thu Apr 18 16:30:01 CEST 2002 - meissner@suse.de
|
||||
Wed Apr 17 16:56:34 CEST 2002 - ro@suse.de
|
||||
|
||||
- fixed gcc version determination
|
||||
- drop sun4c support/always use sparcv8
|
||||
- drop sun4c support/always use sparcv8
|
||||
- ignore return code from showciphers
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Fri Mar 15 16:54:44 CET 2002 - poeml@suse.de
|
||||
|
||||
- add settings for sparc to build shared objects. Note that all
|
||||
sparcs (sun4[mdu]) are recognized as linux-sparcv7
|
||||
sparcs (sun4[mdu]) are recognized as linux-sparcv7
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Wed Feb 6 14:23:44 CET 2002 - kukuk@suse.de
|
||||
@@ -2524,7 +2315,7 @@ Tue Jan 29 12:42:58 CET 2002 - poeml@suse.de
|
||||
- add IBMCA patch for IBM eServer Cryptographic Accelerator Device
|
||||
Driver (#12565) (forward ported from 0.9.6b)
|
||||
(http://www-124.ibm.com/developerworks/projects/libica/)
|
||||
- tell Configure how to build shared libs for s390 and s390x
|
||||
- tell Configure how to build shared libs for s390 and s390x
|
||||
- tweak Makefile.org to use %_libdir
|
||||
- clean up spec file
|
||||
- add README.SuSE as source file instead of in a patch
|
||||
@@ -2538,7 +2329,7 @@ Wed Dec 5 10:59:59 CET 2001 - uli@suse.de
|
||||
-------------------------------------------------------------------
|
||||
Wed Dec 5 02:39:16 CET 2001 - ro@suse.de
|
||||
|
||||
- removed subpackage src
|
||||
- removed subpackage src
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Wed Nov 28 13:28:42 CET 2001 - uli@suse.de
|
||||
@@ -2560,7 +2351,7 @@ Fri Aug 31 11:19:46 CEST 2001 - rolf@suse.de
|
||||
Wed Jul 18 10:27:54 CEST 2001 - rolf@suse.de
|
||||
|
||||
- update to 0.9.6b
|
||||
- switch to engine version of openssl, which supports hardware
|
||||
- switch to engine version of openssl, which supports hardware
|
||||
encryption for a few popular devices
|
||||
- check wether shared libraries have been generated
|
||||
|
||||
@@ -2583,7 +2374,7 @@ Mon May 7 21:02:30 CEST 2001 - kukuk@suse.de
|
||||
Mon May 7 11:36:53 MEST 2001 - rolf@suse.de
|
||||
|
||||
- Fix ppc and s390 shared library builds
|
||||
- resolved conflict in manpage naming:
|
||||
- resolved conflict in manpage naming:
|
||||
rand.3 is now sslrand.3 [BUG#7643]
|
||||
|
||||
-------------------------------------------------------------------
|
||||
@@ -2616,7 +2407,7 @@ Wed Mar 21 10:12:59 MET 2001 - rolf@suse.de
|
||||
-------------------------------------------------------------------
|
||||
Fri Dec 15 18:09:16 CET 2000 - sf@suse.de
|
||||
|
||||
- changed CFLAG to -O1 to make the tests run successfully
|
||||
- changed CFLAG to -O1 to make the tests run successfully
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Mon Dec 11 13:33:55 CET 2000 - rolf@suse.de
|
||||
|
||||
@@ -1,7 +1,7 @@
|
||||
#
|
||||
# spec file for package openssl
|
||||
#
|
||||
# Copyright (c) 2025 SUSE LLC and contributors
|
||||
# Copyright (c) 2025 SUSE LLC
|
||||
#
|
||||
# All modifications and additions to the file contributed by third parties
|
||||
# remain the property of their copyright owners, unless otherwise agreed
|
||||
@@ -18,7 +18,7 @@
|
||||
|
||||
%define _sonum 3
|
||||
Name: openssl
|
||||
Version: 3.5.2
|
||||
Version: 3.5.0
|
||||
Release: 0
|
||||
Summary: Secure Sockets and Transport Layer Security
|
||||
# Yes there is no license but to not confuse people keep it aligned to the pkg
|
||||
|
||||
Reference in New Issue
Block a user