7f772876ff
- update to 1.0.2d
* fixes CVE-2015-1793 (bsc#936746)
Alternate chains certificate forgery
During certificate verfification, OpenSSL will attempt to find an
alternative certificate chain if the first attempt to build such a chain
fails. An error in the implementation of this logic can mean that an
attacker could cause certain checks on untrusted certificates to be
bypassed, such as the CA flag, enabling them to use a valid leaf
certificate to act as a CA and "issue" an invalid certificate.
- drop openssl-fix_invalid_manpage_name.patch (upstream) (forwarded request 315682 from vitezslav_cizek)
OBS-URL: https://build.opensuse.org/request/show/315685
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=128
|
||
|---|---|---|
| .gitattributes | ||
| .gitignore | ||
| 0001-Axe-builtin-printf-implementation-use-glibc-instead.patch | ||
| 0001-libcrypto-Hide-library-private-symbols.patch | ||
| 0005-libssl-Hide-library-private-symbols.patch | ||
| baselibs.conf | ||
| bsc936563_hack.patch | ||
| bug610223.patch | ||
| compression_methods_switch.patch | ||
| merge_from_0.9.8k.patch | ||
| openssl-1.0.0-c_rehash-compat.diff | ||
| openssl-1.0.1e-add-suse-default-cipher.patch | ||
| openssl-1.0.1e-add-test-suse-default-cipher-suite.patch | ||
| openssl-1.0.1e-truststore.diff | ||
| openssl-1.0.2a-default-paths.patch | ||
| openssl-1.0.2a-fips-ctor.patch | ||
| openssl-1.0.2a-fips-ec.patch | ||
| openssl-1.0.2a-fips.patch | ||
| openssl-1.0.2a-ipv6-apps.patch | ||
| openssl-1.0.2a-new-fips-reqs.patch | ||
| openssl-1.0.2a-padlock64.patch | ||
| openssl-1.0.2d.tar.gz | ||
| openssl-1.0.2d.tar.gz.asc | ||
| openssl-fips-hidden.patch | ||
| openssl-fix-pod-syntax.diff | ||
| openssl-gcc-attributes.patch | ||
| openssl-missing_FIPS_ec_group_new_by_curve_name.patch | ||
| openssl-no-egd.patch | ||
| openssl-ocloexec.patch | ||
| openssl-pkgconfig.patch | ||
| openssl.changes | ||
| openssl.keyring | ||
| openssl.spec | ||
| openssl.test | ||
| README-FIPS.txt | ||
| README.SUSE | ||
Please note that the man pages for the openssl libraries and tools have been placed in a package on its own right: openssl-doc Please install the openssl-doc package if you need the man pages, HTML documentation or sample C programs. The C header files and static libraries have also been extracted, they can now be found in the openssl-devel package. Your SuSE Team.