| 21 |
Summary: The OpenSSL toolkit |
Summary: The OpenSSL toolkit |
| 22 |
Name: openssl |
Name: openssl |
| 23 |
Version: 0.9.8e |
Version: 0.9.8e |
| 24 |
Release: 31.1%{?dist} |
Release: 32.1%{?dist} |
| 25 |
# The tarball is based on the openssl-fips-1.2.0-test.tar.gz tarball |
# The tarball is based on the openssl-fips-1.2.0-test.tar.gz tarball |
| 26 |
Source: openssl-fips-%{version}-usa.tar.bz2 |
Source: openssl-fips-%{version}-usa.tar.bz2 |
| 27 |
Source1: hobble-openssl |
Source1: hobble-openssl |
| 101 |
Patch112: openssl-fips-0.9.8e-cve-2014-3508.patch |
Patch112: openssl-fips-0.9.8e-cve-2014-3508.patch |
| 102 |
Patch113: openssl-fips-0.9.8e-cve-2014-3510.patch |
Patch113: openssl-fips-0.9.8e-cve-2014-3510.patch |
| 103 |
Patch114: openssl-fips-0.9.8e-fallback-scsv.patch |
Patch114: openssl-fips-0.9.8e-fallback-scsv.patch |
| 104 |
|
Patch115: openssl-fips-0.9.8e-x509-store-lock.patch |
| 105 |
|
|
| 106 |
License: BSDish |
License: BSDish |
| 107 |
Group: System Environment/Libraries |
Group: System Environment/Libraries |
| 210 |
%patch112 -p1 -b .oid-handling |
%patch112 -p1 -b .oid-handling |
| 211 |
%patch113 -p1 -b .adh-dos |
%patch113 -p1 -b .adh-dos |
| 212 |
%patch114 -p1 -b .fallback-scsv |
%patch114 -p1 -b .fallback-scsv |
| 213 |
|
%patch115 -p1 -b .lock |
| 214 |
|
|
| 215 |
# Modify the various perl scripts to reference perl in the right location. |
# Modify the various perl scripts to reference perl in the right location. |
| 216 |
perl util/perlpath.pl `dirname %{__perl}` |
perl util/perlpath.pl `dirname %{__perl}` |
| 464 |
%postun -p /sbin/ldconfig |
%postun -p /sbin/ldconfig |
| 465 |
|
|
| 466 |
%changelog |
%changelog |
| 467 |
* Sat Oct 18 2014 Daniel Berteaud <daniel@firewall-services.com> 0.9.8e-31.1.el5.sme |
* Thu Jan 15 2015 Daniel Berteaud <daniel@firewall-services.com 0.9.8e-32.1 |
| 468 |
- update with ca-bundle.crt from SME 9 [SME: 8208] |
- update with ca-bundle.crt from SME 9 [SME: 8799] |
| 469 |
|
|
| 470 |
|
* Wed Dec 17 2014 Tomas Mraz <tmraz@redhat.com> 0.9.8e-32 |
| 471 |
|
- properly lock X509_STORE accesses (#1168938) |
| 472 |
|
|
| 473 |
* Wed Oct 15 2014 Tomas Mraz <tmraz@redhat.com> 0.9.8e-31 |
* Wed Oct 15 2014 Tomas Mraz <tmraz@redhat.com> 0.9.8e-31 |
| 474 |
- add support for fallback SCSV to partially mitigate CVE-2014-3566 |
- add support for fallback SCSV to partially mitigate CVE-2014-3566 |
| 475 |
(padding attack on SSL3) |
(padding attack on SSL3) |
| 476 |
|
|
| 477 |
* Fri Aug 8 2014 Tomas Mraz <tmraz@redhat.com> 0.9.8e-27.4 |
* Fri Aug 8 2014 Tomas Mraz <tmraz@redhat.com> 0.9.8e-30 |
| 478 |
- fix CVE-2014-0221 - recursion in DTLS code leading to DoS |
- fix CVE-2014-0221 - recursion in DTLS code leading to DoS |
| 479 |
- fix CVE-2014-3505 - doublefree in DTLS packet processing |
- fix CVE-2014-3505 - doublefree in DTLS packet processing |
| 480 |
- fix CVE-2014-3506 - avoid memory exhaustion in DTLS |
- fix CVE-2014-3506 - avoid memory exhaustion in DTLS |
| 481 |
- fix CVE-2014-3508 - fix OID handling to avoid information leak |
- fix CVE-2014-3508 - fix OID handling to avoid information leak |
| 482 |
- fix CVE-2014-3510 - fix DoS in anonymous (EC)DH handling in DTLS |
- fix CVE-2014-3510 - fix DoS in anonymous (EC)DH handling in DTLS |
| 483 |
|
|
| 484 |
* Tue Jun 3 2014 Tomas Mraz <tmraz@redhat.com> 0.9.8e-27.3 |
* Mon Jun 2 2014 Tomas Mraz <tmraz@redhat.com> 0.9.8e-29 |
| 485 |
- fix for CVE-2014-0224 - SSL/TLS MITM vulnerability |
- fix for CVE-2014-0224 - SSL/TLS MITM vulnerability |
| 486 |
|
|
| 487 |
* Tue Jan 28 2014 Tomas Mraz <tmraz@redhat.com> 0.9.8e-27.1 |
* Tue Jan 28 2014 Tomas Mraz <tmraz@redhat.com> 0.9.8e-28 |
| 488 |
- replace expired GlobalSign Root CA certificate in ca-bundle.crt |
- replace expired GlobalSign Root CA certificate in ca-bundle.crt |
| 489 |
|
|
| 490 |
* Mon Feb 25 2013 Tomas Mraz <tmraz@redhat.com> 0.9.8e-27 |
* Mon Feb 25 2013 Tomas Mraz <tmraz@redhat.com> 0.9.8e-27 |
Parent Directory
| 
Revision Log
| 
Revision Graph
| 
Patch
