kpriv/pkgsrc
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
pkgsrc/security/openssl
History
wiz 6bef8dfa4d openssl: update to 1.0.2o. 
Changes between 1.0.2n and 1.0.2o [27 Mar 2018]

  *) Constructed ASN.1 types with a recursive definition could exceed the stack

     Constructed ASN.1 types with a recursive definition (such as can be found
     in PKCS7) could eventually exceed the stack given malicious input with
     excessive recursion. This could result in a Denial Of Service attack. There
     are no such structures used within SSL/TLS that come from untrusted sources
     so this is considered safe.

     This issue was reported to OpenSSL on 4th January 2018 by the OSS-fuzz
     project.
     (CVE-2018-0739)
     [Matt Caswell]
2018-03-29 11:08:44 +00:00
..
patches openssl: Don't set LD_LIBRARY_PATH during build. 2018-01-16 09:48:46 +00:00
buildlink3.mk Fix indentation in buildlink3.mk files. 2018-01-07 13:03:53 +00:00
builtin.mk
DESCR
distinfo openssl: update to 1.0.2o. 2018-03-29 11:08:44 +00:00
Makefile openssl: update to 1.0.2o. 2018-03-29 11:08:44 +00:00
options.mk Remove incorrect comment and resulting weird license. 2016-10-03 11:55:11 +00:00
PLIST.common openssl: Avoid case-sensitive issue on Darwin. Bump PKGREVISION. 2017-12-14 09:18:47 +00:00
PLIST.OSF1
PLIST.shlib