openssl-devel-0.9.8e-40.el5_11.x86_64
[1.9 MiB] |
Changelog
by Tomas Mraz (2016-05-17):
- fix CVE-2016-2108 - memory corruption in ASN.1 encoder
|
openssl-devel-0.9.8e-40.el5_11.i386
[1.9 MiB] |
Changelog
by Tomas Mraz (2016-05-17):
- fix CVE-2016-2108 - memory corruption in ASN.1 encoder
|
openssl-devel-0.9.8e-39.el5_11.x86_64
[1.9 MiB] |
Changelog
by Tomas Mraz (2016-02-25):
- fix CVE-2016-0797 - heap corruption in BN_hex2bn and BN_dec2bn
|
openssl-devel-0.9.8e-39.el5_11.i386
[1.9 MiB] |
Changelog
by Tomas Mraz (2016-02-25):
- fix CVE-2016-0797 - heap corruption in BN_hex2bn and BN_dec2bn
|
openssl-devel-0.9.8e-37.el5_11.x86_64
[1.9 MiB] |
Changelog
by Tomas Mraz (2015-12-04):
- fix CVE-2015-3195 - X509_ATTRIBUTE memory leak
|
openssl-devel-0.9.8e-37.el5_11.i386
[1.9 MiB] |
Changelog
by Tomas Mraz (2015-12-04):
- fix CVE-2015-3195 - X509_ATTRIBUTE memory leak
|
openssl-devel-0.9.8e-36.el5_11.i386
[1.9 MiB] |
Changelog
by Tomas Mraz (2015-06-25):
- also change the default DH parameters in s_server to 1024 bits
|
openssl-devel-0.9.8e-36.el5_11.x86_64
[1.9 MiB] |
Changelog
by Tomas Mraz (2015-06-25):
- also change the default DH parameters in s_server to 1024 bits
|
openssl-devel-0.9.8e-33.el5_11.i386
[1.9 MiB] |
Changelog
by Tomas Mraz (2015-04-02):
- fix CVE-2014-8275 (without introduction of CVE-2015-0286) - various
certificate fingerprint issues
- fix CVE-2015-0204 - remove support for RSA ephemeral keys for non-export
ciphersuites and on server
- fix CVE-2015-0287 - ASN.1 structure reuse decoding memory corruption
- fix CVE-2015-0288 - X509_to_X509_REQ NULL pointer dereference
- fix CVE-2015-0289 - NULL dereference decoding invalid PKCS#7 data
- fix CVE-2015-0292 - integer underflow in base64 decoder
- fix CVE-2015-0293 - triggerable assert in SSLv2 server
|
openssl-devel-0.9.8e-33.el5_11.x86_64
[1.9 MiB] |
Changelog
by Tomas Mraz (2015-04-02):
- fix CVE-2014-8275 (without introduction of CVE-2015-0286) - various
certificate fingerprint issues
- fix CVE-2015-0204 - remove support for RSA ephemeral keys for non-export
ciphersuites and on server
- fix CVE-2015-0287 - ASN.1 structure reuse decoding memory corruption
- fix CVE-2015-0288 - X509_to_X509_REQ NULL pointer dereference
- fix CVE-2015-0289 - NULL dereference decoding invalid PKCS#7 data
- fix CVE-2015-0292 - integer underflow in base64 decoder
- fix CVE-2015-0293 - triggerable assert in SSLv2 server
|
openssl-devel-0.9.8e-31.el5_11.x86_64
[1.9 MiB] |
Changelog
by Tomas Mraz (2014-10-15):
- add support for fallback SCSV to partially mitigate CVE-2014-3566
(padding attack on SSL3)
|
openssl-devel-0.9.8e-31.el5_11.i386
[1.9 MiB] |
Changelog
by Tomas Mraz (2014-10-15):
- add support for fallback SCSV to partially mitigate CVE-2014-3566
(padding attack on SSL3)
|
openssl-devel-0.9.8e-27.el5_10.4.i386
[1.9 MiB] |
Changelog
by Tomas Mraz (2014-08-08):
- fix CVE-2014-0221 - recursion in DTLS code leading to DoS
- fix CVE-2014-3505 - doublefree in DTLS packet processing
- fix CVE-2014-3506 - avoid memory exhaustion in DTLS
- fix CVE-2014-3508 - fix OID handling to avoid information leak
- fix CVE-2014-3510 - fix DoS in anonymous (EC)DH handling in DTLS
|
openssl-devel-0.9.8e-27.el5_10.4.x86_64
[1.9 MiB] |
Changelog
by Tomas Mraz (2014-08-08):
- fix CVE-2014-0221 - recursion in DTLS code leading to DoS
- fix CVE-2014-3505 - doublefree in DTLS packet processing
- fix CVE-2014-3506 - avoid memory exhaustion in DTLS
- fix CVE-2014-3508 - fix OID handling to avoid information leak
- fix CVE-2014-3510 - fix DoS in anonymous (EC)DH handling in DTLS
|
openssl-devel-0.9.8e-27.el5_10.3.i386
[1.9 MiB] |
Changelog
by Tomas Mraz (2014-06-03):
- fix for CVE-2014-0224 - SSL/TLS MITM vulnerability
|
openssl-devel-0.9.8e-27.el5_10.3.x86_64
[1.9 MiB] |
Changelog
by Tomas Mraz (2014-06-03):
- fix for CVE-2014-0224 - SSL/TLS MITM vulnerability
|
openssl-devel-0.9.8e-26.el5_9.1.i386
[1.9 MiB] |
Changelog
by Tomas Mraz (2013-02-25):
- fix for CVE-2013-0169 - SSL/TLS CBC timing attack (#907589)
- fix for CVE-2013-0166 - DoS in OCSP signatures checking (#908052)
- enable compression only if explicitly asked for or OPENSSL_DEFAULT_ZLIB
environment variable is set (fixes CVE-2012-4929 #857051)
- use __secure_getenv() everywhere instead of getenv() (#839735)
|
openssl-devel-0.9.8e-26.el5_9.1.x86_64
[1.9 MiB] |
Changelog
by Tomas Mraz (2013-02-25):
- fix for CVE-2013-0169 - SSL/TLS CBC timing attack (#907589)
- fix for CVE-2013-0166 - DoS in OCSP signatures checking (#908052)
- enable compression only if explicitly asked for or OPENSSL_DEFAULT_ZLIB
environment variable is set (fixes CVE-2012-4929 #857051)
- use __secure_getenv() everywhere instead of getenv() (#839735)
|