History log of /freebsd/crypto/openssl/test/recipes/25-test_eai_data.t (Results 1 – 3 of 3)
Revision (<<< Hide revision tags) (Show revision tags >>>) Date Author Comments
# a7148ab3 08-Sep-2024 Enji Cooper <ngie@FreeBSD.org>

openssl: Import OpenSSL 3.0.15.

This release incorporates the following bug fixes and mitigations:
- Fixed possible denial of service in X.509 name checks ([CVE-2024-6119])
- Fixed possible buffer o

openssl: Import OpenSSL 3.0.15.

This release incorporates the following bug fixes and mitigations:
- Fixed possible denial of service in X.509 name checks ([CVE-2024-6119])
- Fixed possible buffer overread in SSL_select_next_proto() ([CVE-2024-5535])

Release notes can be found at:
https://openssl-library.org/news/openssl-3.0-notes/index.html

Co-authored-by: gordon
MFC after: 1 week
Differential Revision: https://reviews.freebsd.org/D46602

Merge commit '108164cf95d9594884c2dcccba2691335e6f221b'

show more ...


# fbd465f2 03-Sep-2024 Gordon Tetlow <gordon@FreeBSD.org>

openssl: Bring over fix for CVE-2024-6119 from vendor/openssl-3.0.

Merge commit 'e60dbfd00b009d424dfc5446d132872c93dd0aed'
Revision tags: release/14.1.0, release/13.3.0
# e0c4386e 02-Feb-2024 Cy Schubert <cy@FreeBSD.org>

OpenSSL: Vendor import of OpenSSL 3.0.13

* Fixed PKCS12 Decoding crashes ([CVE-2024-0727])
* Fixed Excessive time spent checking invalid RSA public keys
([CVE-2023-6237])
* Fixed POLY1305 MAC

OpenSSL: Vendor import of OpenSSL 3.0.13

* Fixed PKCS12 Decoding crashes ([CVE-2024-0727])
* Fixed Excessive time spent checking invalid RSA public keys
([CVE-2023-6237])
* Fixed POLY1305 MAC implementation corrupting vector registers on
PowerPC CPUs which support PowerISA 2.07 ([CVE-2023-6129])
* Fix excessive time spent in DH check / generation with large Q
parameter value ([CVE-2023-5678])

Release notes can be found at
https://www.openssl.org/news/openssl-3.0-notes.html.

Approved by: emaste
MFC after: 3 days

Merge commit '9dd13e84fa8eca8f3462bd55485aa3da8c37f54a'

show more ...