git.ipfire.org Git - people/ms/ipfire-3.x.git/commit

]> git.ipfire.org Git - people/ms/ipfire-3.x.git/commit

projects / people / ms / ipfire-3.x.git / commit

author	Michael Tremer <michael.tremer@ipfire.org>
	Fri, 13 Jun 2014 13:34:20 +0000 (15:34 +0200)
committer	Michael Tremer <michael.tremer@ipfire.org>
	Fri, 13 Jun 2014 13:34:20 +0000 (15:34 +0200)
commit	3c4cf2d0aad078a0d2dc764b2014b4e01239b177
tree	11e1bdfada0e746d4a4b652e1aba0d320f3b53a4	tree \| snapshot
parent	df0e62db7f0c471e0d60a71adc1749996e9fbf9e	commit \| diff

openssl: Update to 1.0.1h.

Fixes several vulnerabilities:
* SSL/TLS MITM vulnerability (CVE-2014-0224)
* DTLS recursion flaw (CVE-2014-0221)
* DTLS invalid fragment vulnerability (CVE-2014-0195)
* SSL_MODE_RELEASE_BUFFERS NULL pointer dereference (CVE-2014-0198)
* SSL_MODE_RELEASE_BUFFERS session injection or denial of service (CVE-2010-5298)
* Anonymous ECDH denial of service (CVE-2014-3470)

12 files changed:

openssl/openssl.nm		diff \| blob \| blame \| history
openssl/patches/openssl-1.0.0c-rsa-x931.patch	[deleted file]	blob \| blame \| history
openssl/patches/openssl-1.0.1-beta2-ssl-op-all.patch	[deleted file]	blob \| blame \| history
openssl/patches/openssl-1.0.1-version.patch	[deleted file]	blob \| blame \| history
openssl/patches/openssl-1.0.1e-backports.patch	[deleted file]	blob \| blame \| history
openssl/patches/openssl-1.0.1e-fips.patch	[deleted file]	blob \| blame \| history
openssl/patches/openssl-1.0.1e-ssl2-no-ec.patch	[new file with mode: 0644]	blob
openssl/patches/openssl-1.0.1e-version.patch	[new file with mode: 0644]	blob
openssl/patches/openssl-1.0.1g-3des-strength.patch	[new file with mode: 0644]	blob
openssl/patches/openssl-1.0.1h-ipv6-apps.patch	[moved from openssl/patches/openssl-1.0.1-beta2-ipv6-apps.patch with 84% similarity]	diff \| blob \| blame \| history
openssl/patches/openssl-1.0.1h-manfix.patch	[new file with mode: 0644]	blob
openssl/patches/openssl.git-96db902.patch	[deleted file]	blob \| blame \| history

Michael's tree of IPFire 3.x.

RSS Atom