openssl

SHA256

Go to file

Stephan Kulow 66d6e48709 Accepting request 236989 from Base:System NOTE: I submitted perl-Net-SSLeay 1.64 update to devel:languages:perl which fixes its regression. - updated openssl to 1.0.1h (bnc#880891): - CVE-2014-0224: Fix for SSL/TLS MITM flaw. An attacker using a carefully crafted handshake can force the use of weak keying material in OpenSSL SSL/TLS clients and servers. - CVE-2014-0221: Fix DTLS recursion flaw. By sending an invalid DTLS handshake to an OpenSSL DTLS client the code can be made to recurse eventually crashing in a DoS attack. - CVE-2014-0195: Fix DTLS invalid fragment vulnerability. A buffer overrun attack can be triggered by sending invalid DTLS fragments to an OpenSSL DTLS client or server. This is potentially exploitable to run arbitrary code on a vulnerable client or server. - CVE-2014-3470: Fix bug in TLS code where clients enable anonymous ECDH ciphersuites are subject to a denial of service attack. - openssl-buffreelistbug-aka-CVE-2010-5298.patch: removed, upstream - CVE-2014-0198.patch: removed, upstream - 0009-Fix-double-frees.patch: removed, upstream - 0012-Fix-eckey_priv_encode.patch: removed, upstream - 0017-Double-free-in-i2o_ECPublicKey.patch: removed, upstream - 0018-fix-coverity-issues-966593-966596.patch: removed, upstream - 0020-Initialize-num-properly.patch: removed, upstream - 0022-bignum-allow-concurrent-BN_MONT_CTX_set_locked.patch: removed, upstream - 0023-evp-prevent-underflow-in-base64-decoding.patch: removed, upstream - 0024-Fixed-NULL-pointer-dereference-in-PKCS7_dataDecode-r.patch: removed, upstream - 0025-fix-coverity-issue-966597-error-line-is-not-always-i.patch: removed, upstream - 0001-libcrypto-Hide-library-private-symbols.patch: disabled heartbeat testcase - openssl-1.0.1c-ipv6-apps.patch: refreshed - openssl-fix-pod-syntax.diff: some stuff merged upstream, refreshed - Added new SUSE default cipher suite openssl-1.0.1e-add-suse-default-cipher.patch OBS-URL: https://build.opensuse.org/request/show/236989 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=118		2014-06-18 05:47:41 +00:00
.gitattributes	OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=1	2006-12-18 23:17:18 +00:00
.gitignore	OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=1	2006-12-18 23:17:18 +00:00
0001-Axe-builtin-printf-implementation-use-glibc-instead.patch	Accepting request 232889 from Base:System	2014-05-09 04:57:35 +00:00
0001-libcrypto-Hide-library-private-symbols.patch	Accepting request 236989 from Base:System	2014-06-18 05:47:41 +00:00
0005-libssl-Hide-library-private-symbols.patch	Accepting request 232889 from Base:System	2014-05-09 04:57:35 +00:00
baselibs.conf	Accepting request 210985 from Base:System	2013-12-17 09:02:17 +00:00
bug610223.patch	Accepting request 229370 from Base:System	2014-04-09 16:17:23 +00:00
compression_methods_switch.patch	Accepting request 211421 from Base:System	2013-12-19 12:34:52 +00:00
merge_from_0.9.8k.patch	Accepting request 229370 from Base:System	2014-04-09 16:17:23 +00:00
openssl-1.0.0-c_rehash-compat.diff	Accepting request 40076 from Base:System	2010-05-25 08:32:24 +00:00
openssl-1.0.1c-default-paths.patch	Accepting request 229370 from Base:System	2014-04-09 16:17:23 +00:00
openssl-1.0.1c-ipv6-apps.patch	Accepting request 236989 from Base:System	2014-06-18 05:47:41 +00:00
openssl-1.0.1e-add-suse-default-cipher-header.patch	Accepting request 236989 from Base:System	2014-06-18 05:47:41 +00:00
openssl-1.0.1e-add-suse-default-cipher.patch	Accepting request 236989 from Base:System	2014-06-18 05:47:41 +00:00
openssl-1.0.1e-add-test-suse-default-cipher-suite.patch	Accepting request 236989 from Base:System	2014-06-18 05:47:41 +00:00
openssl-1.0.1e-fips-ctor.patch	Accepting request 210985 from Base:System	2013-12-17 09:02:17 +00:00
openssl-1.0.1e-fips-ec.patch	Accepting request 229370 from Base:System	2014-04-09 16:17:23 +00:00
openssl-1.0.1e-fips.patch	Accepting request 229370 from Base:System	2014-04-09 16:17:23 +00:00
openssl-1.0.1e-new-fips-reqs.patch	Accepting request 229370 from Base:System	2014-04-09 16:17:23 +00:00
openssl-1.0.1e-truststore.diff	Accepting request 182147 from Base:System	2013-07-04 16:04:58 +00:00
openssl-1.0.1h.tar.gz	Accepting request 236989 from Base:System	2014-06-18 05:47:41 +00:00
openssl-1.0.1h.tar.gz.asc	Accepting request 236989 from Base:System	2014-06-18 05:47:41 +00:00
openssl-fips-hidden.patch	Accepting request 233553 from Base:System	2014-05-14 08:26:07 +00:00
openssl-fix-pod-syntax.diff	Accepting request 236989 from Base:System	2014-06-18 05:47:41 +00:00
openssl-gcc-attributes.patch	Accepting request 232889 from Base:System	2014-05-09 04:57:35 +00:00
openssl-libssl-noweakciphers.patch	Accepting request 231108 from Base:System	2014-04-26 15:01:45 +00:00
openssl-no-egd.patch	Accepting request 233553 from Base:System	2014-05-14 08:26:07 +00:00
openssl-ocloexec.patch	Accepting request 232889 from Base:System	2014-05-09 04:57:35 +00:00
openssl-pkgconfig.patch	Accepting request 229370 from Base:System	2014-04-09 16:17:23 +00:00
openssl.changes	Accepting request 236989 from Base:System	2014-06-18 05:47:41 +00:00
openssl.keyring	Accepting request 229370 from Base:System	2014-04-09 16:17:23 +00:00
openssl.spec	Accepting request 236989 from Base:System	2014-06-18 05:47:41 +00:00
openssl.test	OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=1	2006-12-18 23:17:18 +00:00
README-FIPS.txt	Accepting request 213629 from Base:System	2014-01-17 10:05:16 +00:00
README.SuSE	OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=1	2006-12-18 23:17:18 +00:00
VIA_padlock_support_on_64systems.patch	Accepting request 141990 from Base:System	2012-11-22 15:51:34 +00:00

README.SuSE

Please note that the man pages for the openssl libraries and tools
have been placed in a package on its own right: openssl-doc Please
install the openssl-doc package if you need the man pages, HTML
documentation or sample C programs.

The C header files and static libraries have also been extracted, they
can now be found in the openssl-devel package.

Your SuSE Team.