openssl
NOTE: Automatically created during Factory devel project migration by admin.
- Developed at security:tls
- Sources inherited from project openSUSE:Factory
-
2
derived packages
- Download package
-
Checkout Package
osc -A https://api.opensuse.org checkout openSUSE:Factory:zSystems/openssl-1_0_0 && cd $_
- Create Badge
Refresh
Refresh
Source Files
Revision 15 (latest revision is 43)
Dominique Leuenberger (dimstar_suse)
accepted
request 662509
from
Vítězslav Čížek (vitezslav_cizek)
(revision 15)
- Start versioning the exported symbols: At least one steam game (Company of Heroes 2) needs this symbol versioned properly - modify openssl-1.0.0-version.patch - Update to 1.0.2q * Microarchitecture timing vulnerability in ECC scalar multiplication (CVE-2018-5407, bsc#1113534, "PortSmash") * Timing vulnerability in DSA signature generation (CVE-2018-0734, bsc#1113652) * Use a secure getenv wrapper inside libcrypto - refreshed patches: * openssl-fipslocking.patch * openssl-1.0.2i-fips.patch - correct the error detection in openssl-CVE-2018-0737-fips.patch (bsc#1106197) - Fix One&Done side-channel attack on RSA (bsc#1104789) * add openssl-One_and_Done.patch - Update to 1.0.2p OpenSSL Security Advisory [12 June 2018] * Reject excessively large primes in DH key generation (bsc#1097158, CVE-2018-0732) OpenSSL Security Advisory [16 Apr 2018] * Cache timing vulnerability in RSA Key Generation (CVE-2018-0737, bsc#1089039) * Make EVP_PKEY_asn1_new() a bit stricter about its input * Revert blinding in ECDSA sign and instead make problematic addition
Comments 0