21 |
Summary: The OpenSSL toolkit |
Summary: The OpenSSL toolkit |
22 |
Name: openssl |
Name: openssl |
23 |
Version: 0.9.8e |
Version: 0.9.8e |
24 |
Release: 28%{?dist} |
Release: 31.1%{?dist} |
25 |
# The tarball is based on the openssl-fips-1.2.0-test.tar.gz tarball |
# The tarball is based on the openssl-fips-1.2.0-test.tar.gz tarball |
26 |
Source: openssl-fips-%{version}-usa.tar.bz2 |
Source: openssl-fips-%{version}-usa.tar.bz2 |
27 |
Source1: hobble-openssl |
Source1: hobble-openssl |
100 |
Patch111: openssl-fips-0.9.8e-cve-2014-3506.patch |
Patch111: openssl-fips-0.9.8e-cve-2014-3506.patch |
101 |
Patch112: openssl-fips-0.9.8e-cve-2014-3508.patch |
Patch112: openssl-fips-0.9.8e-cve-2014-3508.patch |
102 |
Patch113: openssl-fips-0.9.8e-cve-2014-3510.patch |
Patch113: openssl-fips-0.9.8e-cve-2014-3510.patch |
103 |
|
Patch114: openssl-fips-0.9.8e-fallback-scsv.patch |
104 |
|
|
105 |
License: BSDish |
License: BSDish |
106 |
Group: System Environment/Libraries |
Group: System Environment/Libraries |
208 |
%patch111 -p1 -b .dtls-sizechecks |
%patch111 -p1 -b .dtls-sizechecks |
209 |
%patch112 -p1 -b .oid-handling |
%patch112 -p1 -b .oid-handling |
210 |
%patch113 -p1 -b .adh-dos |
%patch113 -p1 -b .adh-dos |
211 |
|
%patch114 -p1 -b .fallback-scsv |
212 |
|
|
213 |
# Modify the various perl scripts to reference perl in the right location. |
# Modify the various perl scripts to reference perl in the right location. |
214 |
perl util/perlpath.pl `dirname %{__perl}` |
perl util/perlpath.pl `dirname %{__perl}` |
462 |
%postun -p /sbin/ldconfig |
%postun -p /sbin/ldconfig |
463 |
|
|
464 |
%changelog |
%changelog |
465 |
* Tue Sep 2 2014 Charlie Brady <charlie_brady@mitel.com> 0.9.8e-28.el5.sme |
* Sat Oct 18 2014 Daniel Berteaud <daniel@firewall-services.com> 0.9.8e-31.1.el5.sme |
466 |
- update with ca-bundle.crt from SME 9 [SME: 8208] |
- update with ca-bundle.crt from SME 9 [SME: 8208] |
467 |
|
|
468 |
|
* Wed Oct 15 2014 Tomas Mraz <tmraz@redhat.com> 0.9.8e-31 |
469 |
|
- add support for fallback SCSV to partially mitigate CVE-2014-3566 |
470 |
|
(padding attack on SSL3) |
471 |
|
|
472 |
* Fri Aug 8 2014 Tomas Mraz <tmraz@redhat.com> 0.9.8e-27.4 |
* Fri Aug 8 2014 Tomas Mraz <tmraz@redhat.com> 0.9.8e-27.4 |
473 |
- fix CVE-2014-0221 - recursion in DTLS code leading to DoS |
- fix CVE-2014-0221 - recursion in DTLS code leading to DoS |
474 |
- fix CVE-2014-3505 - doublefree in DTLS packet processing |
- fix CVE-2014-3505 - doublefree in DTLS packet processing |