#
306230 |
|
23-Sep-2016 |
delphij |
Fix multiple OpenSSL vulnerabilitites.
Approved by: so Security: FreeBSD-SA-16:26.openssl
|
#
306230 |
|
23-Sep-2016 |
delphij |
Fix multiple OpenSSL vulnerabilitites.
Approved by: so Security: FreeBSD-SA-16:26.openssl |
#
296373 |
|
04-Mar-2016 |
marius |
- Copy stable/10@296371 to releng/10.3 in preparation for 10.3-RC1 builds. - Update newvers.sh to reflect RC1. - Update __FreeBSD_version to reflect 10.3. - Update default pkg(8) configuration to use the quarterly branch.
Approved by: re (implicit) |
#
295016 |
|
28-Jan-2016 |
jkim |
Merge OpenSSL 1.0.1r.
Relnotes: yes
|
#
291721 |
|
03-Dec-2015 |
jkim |
Merge OpenSSL 1.0.1q.
|
#
285330 |
|
09-Jul-2015 |
jkim |
MFC: r285329
Merge OpenSSL 1.0.1p.
Approved by: re (gjb) Relnotes: yes
|
#
284285 |
|
11-Jun-2015 |
jkim |
MFC: r284283
Merge OpenSSL 1.0.1n.
|
#
280304 |
|
20-Mar-2015 |
jkim |
MFC: r280297
Merge OpenSSL 1.0.1m.
Relnotes: yes
|
#
276864 |
|
09-Jan-2015 |
jkim |
MFC: r276861, r276863
Merge OpenSSL 1.0.1k.
|
#
273149 |
|
15-Oct-2014 |
jkim |
MFC: r273144, r273146
Merge OpenSSL 1.0.1j.
Relnotes: yes
|
#
269686 |
|
07-Aug-2014 |
jkim |
MFC: r269682
Merge OpenSSL 1.0.1i.
|
#
267258 |
|
09-Jun-2014 |
jkim |
MFC: r267256
Merge OpenSSL 1.0.1h.
Approved by: so (delphij)
|
#
267103 |
|
05-Jun-2014 |
delphij |
Fix OpenSSL multiple vulnerabilities.
Security: CVE-2014-0195, CVE-2014-0221, CVE-2014-0224, CVE-2014-3470 Security: SA-14:14.openssl
|
#
264331 |
|
10-Apr-2014 |
jkim |
MFC: r261037, r264278
Merge OpenSSL 1.0.1f and 1.0.1g.
|
#
256281 |
|
10-Oct-2013 |
gjb |
Copy head (r256279) to stable/10 as part of the 10.0-RELEASE cycle.
Approved by: re (implicit) Sponsored by: The FreeBSD Foundation
|
#
246772 |
|
13-Feb-2013 |
jkim |
Merge OpenSSL 1.0.1e.
Approved by: secteam (simon), benl (silence)
|
#
238405 |
|
12-Jul-2012 |
jkim |
Merge OpenSSL 1.0.1c.
Approved by: benl (maintainer)
|
#
237657 |
|
27-Jun-2012 |
jkim |
Merge OpenSSL 0.9.8x.
Reviewed by: stas Approved by: benl (maintainer) MFC after: 3 days
|
#
236304 |
|
30-May-2012 |
bz |
Update the previous openssl fix. [12:01]
Fix a bug in crypt(3) ignoring characters of a passphrase. [12:02]
Security: FreeBSD-SA-12:01.openssl (revised) Security: FreeBSD-SA-12:02.crypt Approved by: so (bz, simon)
|
#
234954 |
|
03-May-2012 |
bz |
Fix multiple OpenSSL vulnerabilities.
Security: CVE-2011-4576, CVE-2011-4619, CVE-2011-4109 Security: CVE-2012-0884, CVE-2012-2110 Security: FreeBSD-SA-12:01.openssl Approved by: so (bz,simon)
|
#
225446 |
|
08-Sep-2011 |
delphij |
Fix SSL memory handlig for (EC)DH cipher suites, in particular for multi-threaded use of ECDH.
Security: CVE-2011-3210 Reviewed by: stas Obtained from: OpenSSL CVS Approved by: re (kib)
|
#
216166 |
|
03-Dec-2010 |
simon |
Merge OpenSSL 0.9.8q into head.
Security: CVE-2010-4180 Security: http://www.openssl.org/news/secadv_20101202.txt MFC after: 3 days
|
#
205128 |
|
13-Mar-2010 |
simon |
Merge OpenSSL 0.9.8m into head.
This also "reverts" some FreeBSD local changes so we should now be back to using entirely stock OpenSSL. The local changes were simple $FreeBSD$ lines additions, which were required in the CVS days, and the patch for FreeBSD-SA-09:15.ssl which has been superseded with OpenSSL 0.9.8m's RFC5746 'TLS renegotiation extension' support.
MFC after: 3 weeks
|
#
200054 |
|
03-Dec-2009 |
cperciva |
Disable SSL renegotiation in order to protect against a serious protocol flaw. [09:15]
Correctly handle failures from unsetenv resulting from a corrupt environment in rtld-elf. [09:16]
Fix permissions in freebsd-update in order to prevent leakage of sensitive files. [09:17]
Approved by: so (cperciva) Security: FreeBSD-SA-09:15.ssl Security: FreeBSD-SA-09:16.rtld Security: FreeBSD-SA-09:17.freebsd-udpate
|
#
194206 |
|
14-Jun-2009 |
simon |
Merge OpenSSL 0.9.8k into head.
Approved by: re
|
#
186872 |
|
07-Jan-2009 |
simon |
Prevent cross-site forgery attacks on lukemftpd(8) due to splitting long commands into multiple requests. [09:01]
Fix incorrect OpenSSL checks for malformed signatures due to invalid check of return value from EVP_VerifyFinal(), DSA_verify, and DSA_do_verify. [09:02]
Security: FreeBSD-SA-09:01.lukemftpd Security: FreeBSD-SA-09:02.openssl Obtained from: NetBSD [SA-09:01] Obtained from: OpenSSL Project [SA-09:02] Approved by: so (simon)
|
#
167613 |
|
15-Mar-2007 |
simon |
This commit was generated by cvs2svn to compensate for changes in r167612, which included commits to RCS files with non-trunk default branches.
|
#
167612 |
|
15-Mar-2007 |
simon |
Vendor import of OpenSSL 0.9.8e.
|
#
162911 |
|
01-Oct-2006 |
simon |
Vendor import of OpenSSL 0.9.8d.
|
#
160814 |
|
29-Jul-2006 |
simon |
Vendor import of OpenSSL 0.9.8b
|
#
142425 |
|
25-Feb-2005 |
nectar |
Vendor import of OpenSSL 0.9.7e.
|
#
127128 |
|
17-Mar-2004 |
nectar |
Vendor import of OpenSSL 0.9.7d.
|
#
120631 |
|
01-Oct-2003 |
nectar |
Vendor import of OpenSSL 0.9.7c
|
#
112439 |
|
20-Mar-2003 |
jedgar |
Import of PKCS #1 security fix. http://www.openssl.org/news/secadv_20030319.txt
|
#
109998 |
|
28-Jan-2003 |
markm |
Vendor import of OpenSSL release 0.9.7. This release includes support for AES and OpenBSD's hardware crypto.
|
#
101615 |
|
10-Aug-2002 |
nectar |
Import of OpenSSL 0.9.6f.
|
#
100936 |
|
30-Jul-2002 |
nectar |
Import of OpenSSL 0.9.6e.
|
#
100928 |
|
30-Jul-2002 |
nectar |
Import of OpenSSL 0.9.6d.
|
#
89837 |
|
27-Jan-2002 |
kris |
Initial import of OpenSSL 0.9.6c
|
#
79998 |
|
19-Jul-2001 |
kris |
Initial import of OpenSSL 0.9.6b
|
#
72613 |
|
18-Feb-2001 |
kris |
Import of OpenSSL 0.9.6-STABLE snapshot dated 2001-02-10
|
#
68651 |
|
13-Nov-2000 |
kris |
Initial import of OpenSSL 0.9.6
|
#
59191 |
|
13-Apr-2000 |
kris |
Initial import of OpenSSL 0.9.5a
|
#
55714 |
|
10-Jan-2000 |
kris |
Initial import of OpenSSL 0.9.4, sans IDEA and RSA code for patent infringement reasons.
|