kpriv/pkgsrc
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
pkgsrc/security/openssl
History
taca ff53f07b54 Update openssl package from 0.9.8m to 0.9.8n. 
Changes between 0.9.8m and 0.9.8n [24 Mar 2010]

  *) When rejecting SSL/TLS records due to an incorrect version number, never
     update s->server with a new major version number.  As of
     - OpenSSL 0.9.8m if 'short' is a 16-bit type,
     - OpenSSL 0.9.8f if 'short' is longer than 16 bits,
     the previous behavior could result in a read attempt at NULL when
     receiving specific incorrect SSL/TLS records once record payload
     protection is active.  (CVE-2010-0740)
     [Bodo Moeller, Adam Langley <agl@chromium.org>]

  *) Fix for CVE-2010-0433 where some kerberos enabled versions of OpenSSL
     could be crashed if the relevant tables were not present (e.g. chrooted).
     [Tomas Hoger <thoger@redhat.com>]
2010-04-12 14:19:17 +00:00
..
patches Update openssl package from 0.9.8m to 0.9.8n. 2010-04-12 14:19:17 +00:00
buildlink3.mk Recursive PKGREVISION bump for jpeg update to 8. 2010-01-17 12:02:03 +00:00
builtin.mk Define openssl-fake-pc only once. 2009-06-07 14:24:03 +00:00
DESCR Update to openssl-0.9.8g. Provided by Jukka Salmi in pkgsrc-wip. 2008-01-17 06:42:47 +00:00
distinfo Update openssl package from 0.9.8m to 0.9.8n. 2010-04-12 14:19:17 +00:00
Makefile Update openssl package from 0.9.8m to 0.9.8n. 2010-04-12 14:19:17 +00:00
options.mk Add zlib option. 2008-09-17 00:46:58 +00:00
PLIST.common Fix broken PLIST. 2010-03-01 08:15:40 +00:00
PLIST.darwin Update to openssl-0.9.8g. Provided by Jukka Salmi in pkgsrc-wip. 2008-01-17 06:42:47 +00:00
PLIST.osf1
PLIST.shlib