]> git.ipfire.org Git - ipfire-2.x.git/commit
projects / ipfire-2.x.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 8bbed7a) | patch
openssl: Update to 1.0.2i
authorMichael Tremer <michael.tremer@ipfire.org>
Thu, 22 Sep 2016 11:02:32 +0000 (12:02 +0100)
committerMichael Tremer <michael.tremer@ipfire.org>
Thu, 22 Sep 2016 11:03:56 +0000 (12:03 +0100)
commit3bc177eec53248b296e13654003f278c65ddc413
tree38d069c3ccd6f31f1d2d3d63ddb8f2ea02e9b584tree | snapshot
parent8bbed7a5b6a878dae03d605042b48304f3900304commit | diff
openssl: Update to 1.0.2i

https://www.openssl.org/news/openssl-1.0.2-notes.html

This release fixes various security flaws:

* OCSP Status Request extension unbounded memory growth (CVE-2016-6304)
* SWEET32 Mitigation (CVE-2016-2183)
* OOB write in MDC2_Update() (CVE-2016-6303)
* Malformed SHA512 ticket DoS (CVE-2016-6302)
* OOB write in BN_bn2dec() (CVE-2016-2182)
* OOB read in TS_OBJ_print_bio() (CVE-2016-2180)
* Pointer arithmetic undefined behaviour (CVE-2016-2177)
* Constant time flag not preserved in DSA signing (CVE-2016-2178)
* DTLS buffered message DoS (CVE-2016-2179)
* DTLS replay protection DoS (CVE-2016-2181)
* Certificate message OOB reads (CVE-2016-6306)

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
config/rootfiles/core/105/filelists/openssl [new symlink] blob
lfs/openssl diff | blob | blame | history
IPFire 2.x development tree