testing/openssl-3
SHA256
3
0
Fork 0
forked from pool/openssl-3
Code Pull Requests Activity
2 Commits 2 Branches 0 Tags 31 MiB
4bad59c768
Commit Graph

2 Commits

This Branch
This Branch
All Branches
Author SHA256 Message Date
Pedro Monreal Gonzalez
4bad59c768 Accepting request 1189030 from home:pmonrealgonzalez:branches:security:tls 
- Apply "openssl-CVE-2024-4741.patch" to fix a use-after-free
  security vulnerability. Calling the function SSL_free_buffers()
  potentially caused memory to be accessed that was previously
  freed in some situations and a malicious attacker could attempt
  to engineer a stituation where this occurs to facilitate a
  denial-of-service attack. [CVE-2024-4741, bsc#1225551]

OBS-URL: https://build.opensuse.org/request/show/1189030
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl-3?expand=0&rev=107
 2024-07-22 13:04:55 +00:00
Pedro Monreal Gonzalez
aa970d108e Accepting request 1188975 from home:pmonrealgonzalez:branches:security:tls 
- Security fix: [bsc#1227138, CVE-2024-5535]
  * SSL_select_next_proto buffer overread
  * Add openssl-CVE-2024-5535.patch

- Build with enabled sm2 and sm4 support [bsc#1222899]

OBS-URL: https://build.opensuse.org/request/show/1188975
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl-3?expand=0&rev=106
 2024-07-22 09:57:50 +00:00