From f628ba9e29293c2b9fc8be20c7ccb9e373a08083 Mon Sep 17 00:00:00 2001
From: wiz <wiz@pkgsrc.org>
Date: Thu, 20 Feb 2003 07:59:24 +0000
Subject: Add patch from http://www.openssl.org/news/secadv_20030219.txt: In
 ssl3_get_record (ssl/s3_pkt.c), minimize information leaked via timing by
 performing a MAC computation even if incorrrect block cipher padding has been
 found.  This is a countermeasure against active attacks where the attacker
 has to distinguish between bad padding and a MAC verification error.
 (CAN-2003-0078)

Bump PKGREVISION.
---
 security/openssl/Makefile | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

(limited to 'security/openssl/Makefile')

diff --git a/security/openssl/Makefile b/security/openssl/Makefile
index 9e53d5c7b3c..9a3eb706ccd 100644
--- a/security/openssl/Makefile
+++ b/security/openssl/Makefile
@@ -1,6 +1,7 @@
-# $NetBSD: Makefile,v 1.65 2003/01/28 22:04:07 jlam Exp $
+# $NetBSD: Makefile,v 1.66 2003/02/20 07:59:24 wiz Exp $
 
 DISTNAME=		openssl-0.9.6g
+PKGREVISION=		1
 SVR4_PKGNAME=		ossl
 CATEGORIES=		security
 MASTER_SITES=		ftp://ftp.openssl.org/source/
-- 
cgit v1.2.3