diff options
| author | taca <taca> | 2012-05-11 13:27:26 +0000 |
|---|---|---|
| committer | taca <taca> | 2012-05-11 13:27:26 +0000 |
| commit | d8fb6936b2384fdfae27d66d0eed0e07e026cbdd (patch) | |
| tree | b9409e00ba87deda5f3a6348753b8ab8432279fb /security | |
| parent | 77b8b47c5798e2fa4125c5994804010374c20fe0 (diff) | |
| download | pkgsrc-d8fb6936b2384fdfae27d66d0eed0e07e026cbdd.tar.gz | |
Update openssl to 0.9.8x.
OpenSSL CHANGES
_______________
Changes between 0.9.8w and 0.9.8x [10 May 2012]
*) Sanity check record length before skipping explicit IV in DTLS
to fix DoS attack.
Thanks to Codenomicon for discovering this issue using Fuzz-o-Matic
fuzzing as a service testing platform.
(CVE-2012-2333)
[Steve Henson]
*) Initialise tkeylen properly when encrypting CMS messages.
Thanks to Solar Designer of Openwall for reporting this issue.
[Steve Henson]
Diffstat (limited to 'security')
| -rw-r--r-- | security/openssl/Makefile | 4 | ||||
| -rw-r--r-- | security/openssl/distinfo | 8 |
2 files changed, 6 insertions, 6 deletions
diff --git a/security/openssl/Makefile b/security/openssl/Makefile index fca319d690d..90398fbc69e 100644 --- a/security/openssl/Makefile +++ b/security/openssl/Makefile @@ -1,8 +1,8 @@ -# $NetBSD: Makefile,v 1.166 2012/04/24 05:03:48 taca Exp $ +# $NetBSD: Makefile,v 1.167 2012/05/11 13:27:26 taca Exp $ OPENSSL_SNAPSHOT?= # empty OPENSSL_STABLE?= # empty -OPENSSL_VERS?= 0.9.8w +OPENSSL_VERS?= 0.9.8x .if empty(OPENSSL_SNAPSHOT) DISTNAME= openssl-${OPENSSL_VERS} diff --git a/security/openssl/distinfo b/security/openssl/distinfo index bc6d3391b70..4db22207dcc 100644 --- a/security/openssl/distinfo +++ b/security/openssl/distinfo @@ -1,8 +1,8 @@ -$NetBSD: distinfo,v 1.88 2012/04/24 05:03:48 taca Exp $ +$NetBSD: distinfo,v 1.89 2012/05/11 13:27:26 taca Exp $ -SHA1 (openssl-0.9.8w.tar.gz) = 6dd276534f87aaca4bee679537fef3aaa6b43069 -RMD160 (openssl-0.9.8w.tar.gz) = 6904c2b85a199b8ec0262ba7d52adbbe7e8df351 -Size (openssl-0.9.8w.tar.gz) = 3782900 bytes +SHA1 (openssl-0.9.8x.tar.gz) = 8c3be5160513c0af1e558d3f932390ecb16f59e9 +RMD160 (openssl-0.9.8x.tar.gz) = 18a805c177af1667a05104e87acbff97a420864c +Size (openssl-0.9.8x.tar.gz) = 3782486 bytes SHA1 (patch-aa) = eb25505e8a745eb5ba85f857b0f9302fd5e9bda1 SHA1 (patch-ac) = 6ff4a20440666f5c520837e10547091e1bee2208 SHA1 (patch-ad) = bb86ac463fc4ab8b485df5f1a4fb9c13c1fc41c3 |