SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for openssl096b-0.9.6b-22.46.el4_8.1.i386.rpm :

* Fri Mar 19 2010 Tomas Mraz 0.9.6b-22.46.1- CVE-2009-3245 - add missing checks for bn_wexpand failures (#570924)
* Wed Dec 17 2008 Tomas Mraz 0.9.6b-22.46.el4_7- CVE-2008-5077 - incorrect checks for malformed signatures (#476671)
* Fri Sep 29 2006 Tomas Mraz 0.9.6b-22.46- fix CVE-2006-2940 - parasitic public keys DoS (#207274)- fix CVE-2006-3738 - buffer overflow in SSL_get_shared_ciphers (#206940)- fix CVE-2006-4343 - sslv2 client DoS (#206940)
* Wed Sep 06 2006 Tomas Mraz 0.9.6b-22.43- fix CVE-2006-4339 - prevent attack on PKCS#1 v1.5 signatures (#205180)
* Mon Oct 31 2005 Tomas Mraz 0.9.6b-22.42- fix CVE-2004-0079 - prevent a null pointer assignment in do_change_cipher_spec()- add security fix for CVE-2003-0851 to sync with 2.1AS
* Fri Oct 07 2005 Tomas Mraz 0.9.6b-22.4- fix CAN-2005-2969 - remove SSL_OP_MSIE_SSLV2_RSA_PADDING which disables the countermeasure against man in the middle attack in SSLv2 (#169863)- more fixes for constant time/memory access for DSA signature algorithm
* Tue May 24 2005 Tomas Mraz 0.9.6b-22.3- replaced add-luna patch with new one with right license (#158061)
* Sat May 21 2005 Tomas Mraz 0.9.6b-22.2- fix CAN-2005-0109 - use constant time/memory access mod_exp so bits of private key aren\'t leaked by cache eviction (#157631)
* Fri Dec 03 2004 Jeremy Katz - 0.9.6b-22.1- rebuild for s390 gcc changes (#139678)
* Thu Oct 28 2004 Nalin Dahyabhai 0.9.6b-22- rebuild
* Thu Oct 28 2004 Nalin Dahyabhai 0.9.6b-21- rebuild
* Thu Oct 28 2004 Nalin Dahyabhai 0.9.6b-20- rebuild
* Tue Sep 21 2004 Mike McLean 0.9.6b-19- rebuilt
* Wed Jun 16 2004 Elliot Lee - rebuilt
* Tue Mar 16 2004 Joe Orton 0.9.6b-18- rebuild
* Mon Mar 08 2004 Joe Orton 0.9.6b-17- rebuild
* Mon Mar 08 2004 Joe Orton 0.9.6b-16- rebuild
* Mon Mar 08 2004 Joe Orton 0.9.6b-16- rebuild
* Mon Mar 08 2004 Joe Orton 0.9.6b-15- add security fix for CAN-2004-0081- conditionalize use of -Wa,--noexecstack
* Wed Oct 01 2003 Nalin Dahyabhai 0.9.6b-14- add -Wa,--noexecstack to RPM_OPT_FLAGS so that assembled modules get tagged as not needing executable stacks
* Tue Sep 30 2003 Nalin Dahyabhai 0.9.6b-13- rebuild
* Thu Sep 25 2003 Nalin Dahyabhai 0.9.6b-12- backport from Joe Orton for changes in OpenSSL 0.9.6e and later, removing die-on-error code and replacing with error reporting- only parse a client cert if one was requested
* Wed Sep 24 2003 Nalin Dahyabhai - add security fixes for protocol parsing bugs (CAN-2003-0543, CAN-2003-0544)- ease back on the number of threads used in the threading test
* Fri Jul 18 2003 Nalin Dahyabhai 0.9.6b-11- rebuild
* Tue Jul 15 2003 Nalin Dahyabhai 0.9.6b-10.9- rebuild with updated thread test
* Sat Jun 14 2003 Nalin Dahyabhai 0.9.6b-10- rebuild
* Sat Jun 14 2003 Nalin Dahyabhai 0.9.6b-9- rebuild
* Thu Jun 12 2003 Nalin Dahyabhai 0.9.6b-8- ubsec: don\'t stomp on the output in case it\'s also the input- thread-safety fix for RSA blinding- backport fix for prng not being seeded causing problems from 0.9.7b- add a check at build-time to ensure that RSA is thread-safe
* Thu May 01 2003 Elliot Lee 0.9.6b-7- Change ExcludeArch to ExclusiveArch to better handle the future of computing
* Wed Mar 19 2003 Nalin Dahyabhai 0.9.6b-6- add backported patch to harden against Klima-Pokorny-Rosa extension of Bleichenbacher\'s attack (CAN-2003-0131)
* Mon Mar 17 2003 Nalin Dahyabhai 0.9.6b-5- add patch to enable RSA blinding by default, closing a timing attack (CAN-2003-0147)- excludearch: s390x which never had 0.9.6b as its primary version
* Wed Feb 19 2003 Nalin Dahyabhai 0.9.6b-4- add fix to guard against attempts to allocate negative amounts of memory- add patch for CAN-2003-0078, fixing a timing attack
* Wed Feb 12 2003 Nalin Dahyabhai - conflict on older or lesser versions of the regular openssl package
* Tue Feb 11 2003 Nalin Dahyabhai 0.9.6b-3- add fix for client cert verification with 4096-bit keys (#77225)
* Mon Jan 27 2003 Nalin Dahyabhai 0.9.6b-2- rebuild
* Wed Dec 11 2002 Nalin Dahyabhai 0.9.6b-1- relegate to a compatibility package by renaming and ifzeroing the files lists
* Wed Oct 23 2002 Nalin Dahyabhai 0.9.6b-30- add configuration stanza for x86_64 and use it on x86_64- build for linux-ppc on ppc- start running the self-tests again
* Thu Oct 03 2002 Elliot Lee 0.9.6b-29hammer.3- Merge fixes from previous hammer packages, including general x86-64 and multilib
* Wed Aug 07 2002 Nalin Dahyabhai 0.9.6b-29- rebuild
* Fri Aug 02 2002 Nalin Dahyabhai 0.9.6b-28- update asn patch to fix accidental reversal of a logic check
* Thu Aug 01 2002 Nalin Dahyabhai 0.9.6b-27- update asn patch to reduce chance that compiler optimization will remove one of the added tests
* Thu Aug 01 2002 Nalin Dahyabhai 0.9.6b-26- rebuild
* Tue Jul 30 2002 Nalin Dahyabhai 0.9.6b-25- add patch to fix ASN.1 vulnerabilities
* Fri Jul 26 2002 Nalin Dahyabhai 0.9.6b-24- add backport of Ben Laurie\'s patches for OpenSSL 0.9.6d
* Thu Jul 18 2002 Nalin Dahyabhai 0.9.6b-23- own /usr/share/ssl/misc
* Sat Jun 22 2002 Tim Powers - automated rebuild
* Mon May 27 2002 Tim Powers - automated rebuild
* Sat May 18 2002 Nalin Dahyabhai 0.9.6b-20- free ride through the build system (whee!)
* Fri May 17 2002 Nalin Dahyabhai 0.9.6b-19- rebuild in new environment
* Fri Apr 05 2002 Nalin Dahyabhai 0.9.6b-17, 0.9.6b-18- merge RHL-specific bits into stronghold package, rename
* Wed Apr 03 2002 Gary Benson stronghold-0.9.6c-2- add support for Chrysalis Luna token
* Tue Mar 26 2002 Gary Benson - disable AEP random number generation, other AEP fixes
* Fri Mar 15 2002 Nalin Dahyabhai 0.9.6b-15- only build subpackages on primary arches
* Thu Mar 14 2002 Nalin Dahyabhai 0.9.6b-13- on ia32, only disable use of assembler on i386- enable assembly on ia64
* Mon Jan 07 2002 Florian La Roche 0.9.6b-11- fix sparcv9 entry
* Mon Jan 07 2002 Gary Benson stronghold-0.9.6c-1- upgrade to 0.9.6c- bump BuildArch to i686 and enable assembler on all platforms- synchronise with shrimpy and rawhide- bump soversion to 3
* Thu Oct 11 2001 Florian La Roche - delete BN_LLONG for s390x, patch from Oliver Paukstadt
* Tue Sep 18 2001 Nalin Dahyabhai 0.9.6b-9- update AEP driver patch
* Tue Sep 11 2001 Nalin Dahyabhai - adjust RNG disabling patch to match version of patch from Broadcom
* Sat Sep 08 2001 Nalin Dahyabhai 0.9.6b-8- disable the RNG in the ubsec engine driver
* Wed Aug 29 2001 Nalin Dahyabhai 0.9.6b-7- tweaks to the ubsec engine driver
* Sat Aug 25 2001 Nalin Dahyabhai 0.9.6b-6- tweaks to the ubsec engine driver
* Fri Aug 24 2001 Nalin Dahyabhai 0.9.6b-5- update ubsec engine driver from Broadcom
* Sat Aug 11 2001 Nalin Dahyabhai 0.9.6b-4- move man pages back to %{_mandir}/man?/foo.?ssl from %{_mandir}/man?ssl/foo.?- add an [ engine ] section to the default configuration file
* Fri Aug 10 2001 Nalin Dahyabhai - add a patch for selecting a default engine in SSL_library_init()
* Tue Jul 24 2001 Nalin Dahyabhai 0.9.6b-3- add patches for AEP hardware support- add patch to keep trying when we fail to load a cert from a file and there are more in the file- add missing prototype for ENGINE_ubsec() in engine_int.h
* Thu Jul 19 2001 Nalin Dahyabhai 0.9.6b-2- actually add hw_ubsec to the engine list
* Wed Jul 18 2001 Nalin Dahyabhai - add in the hw_ubsec driver from CVS
* Thu Jul 12 2001 Nalin Dahyabhai 0.9.6b-1- update to 0.9.6b
* Fri Jul 06 2001 Nalin Dahyabhai - move .so symlinks back to %{_libdir}
* Wed Jul 04 2001 Nalin Dahyabhai - move shared libraries to /lib (#38410)
* Tue Jun 26 2001 Nalin Dahyabhai - switch to engine code base
* Tue Jun 19 2001 Nalin Dahyabhai - add a script for creating dummy certificates- move man pages from %{_mandir}/man?/foo.?ssl to %{_mandir}/man?ssl/foo.?
* Fri Jun 08 2001 Florian La Roche - add s390x support
* Sat Jun 02 2001 Nalin Dahyabhai - change two memcpy() calls to memmove()- don\'t define L_ENDIAN on alpha
* Thu May 24 2001 Joe Orton stronghold-0.9.6a-1- Add \'stronghold-\' prefix to package names.- Obsolete standard openssl packages.
* Thu May 17 2001 Joe Orton - Add BuildArch: i586 as per Nalin\'s advice.
* Wed May 16 2001 Joe Orton - Enable assembler on ix86 (using new .tar.bz2 which does include the asm directories).
* Wed May 16 2001 Nalin Dahyabhai - make subpackages depend on the main package
* Wed May 02 2001 Nalin Dahyabhai - adjust the hobble script to not disturb symlinks in include/ (fix from Joe Orton)
* Fri Apr 27 2001 Nalin Dahyabhai - drop the m2crypo patch we weren\'t using
* Wed Apr 25 2001 Nalin Dahyabhai - configure using \"shared\" as well
* Mon Apr 09 2001 Nalin Dahyabhai - update to 0.9.6a- use the build-shared target to build shared libraries- bump the soversion to 2 because we\'re no longer compatible with our 0.9.5a packages or our 0.9.6 packages- drop the patch for making rsatest a no-op when rsa null support is used- put all man pages into
ssl instead of
- break the m2crypto modules into a separate package
* Tue Mar 13 2001 Nalin Dahyabhai - use BN_LLONG on s390
* Mon Mar 12 2001 Nalin Dahyabhai - fix the s390 changes for 0.9.6 (isn\'t supposed to be marked as 64-bit)
* Sat Mar 03 2001 Nalin Dahyabhai - move c_rehash to the perl subpackage, because it\'s a perl script now
* Fri Mar 02 2001 Nalin Dahyabhai - update to 0.9.6- enable MD2- use the libcrypto.so and libssl.so targets to build shared libs with- bump the soversion to 1 because we\'re no longer compatible with any of the various 0.9.5a packages circulating around, which provide lib
*.so.0
* Wed Feb 28 2001 Florian La Roche - change hobble-openssl for disabling MD2 again
* Tue Feb 27 2001 Nalin Dahyabhai - re-disable MD2 -- the EVP_MD_CTX structure would grow from 100 to 152 bytes or so, causing EVP_DigestInit() to zero out stack variables in apps built against a version of the library without it
* Mon Feb 26 2001 Nalin Dahyabhai - disable some inline assembly, which on x86 is Pentium-specific- re-enable MD2 (see http://www.ietf.org/ietf/IPR/RSA-MD-all)
* Thu Feb 08 2001 Florian La Roche - fix s390 patch
* Fri Dec 08 2000 Than Ngo - added support s390
* Mon Nov 20 2000 Nalin Dahyabhai - remove -Wa,
* and -m
* compiler flags from the default Configure file (#20656)- add the CA.pl man page to the perl subpackage
* Thu Nov 02 2000 Nalin Dahyabhai - always build with -mcpu=ev5 on alpha
* Tue Oct 31 2000 Nalin Dahyabhai - add a symlink from cert.pem to ca-bundle.crt
* Thu Oct 26 2000 Nalin Dahyabhai - add a ca-bundle file for packages like Samba to reference for CA certificates
* Wed Oct 25 2000 Nalin Dahyabhai - remove libcrypto\'s crypt(), which doesn\'t handle md5crypt (#19295)
* Tue Oct 03 2000 Nalin Dahyabhai - add unzip as a buildprereq (#17662)- update m2crypto to 0.05-snap4
* Wed Sep 27 2000 Bill Nottingham - fix some issues in building when it\'s not installed
* Thu Sep 07 2000 Nalin Dahyabhai - make sure the headers we include are the ones we built with (aaaaarrgh!)
* Sat Sep 02 2000 Nalin Dahyabhai - add Richard Henderson\'s patch for BN on ia64- clean up the changelog
* Wed Aug 30 2000 Nalin Dahyabhai - fix the building of python modules without openssl-devel already installed
* Thu Aug 24 2000 Nalin Dahyabhai - byte-compile python extensions without the build-root- adjust the makefile to not remove temporary files (like .key files when building .csr files) by marking them as .PRECIOUS
* Sun Aug 20 2000 Nalin Dahyabhai - break out python extensions into a subpackage
* Tue Jul 18 2000 Nalin Dahyabhai - tweak the makefile some more
* Wed Jul 12 2000 Nalin Dahyabhai - disable MD2 support
* Fri Jul 07 2000 Nalin Dahyabhai - disable MDC2 support
* Mon Jul 03 2000 Nalin Dahyabhai - tweak the disabling of RC5, IDEA support- tweak the makefile
* Fri Jun 30 2000 Nalin Dahyabhai - strip binaries and libraries- rework certificate makefile to have the right parts for Apache
* Thu Jun 29 2000 Nalin Dahyabhai - use %{_perl} instead of /usr/bin/perl- disable alpha until it passes its own test suite
* Sat Jun 10 2000 Nalin Dahyabhai - move the passwd.1 man page out of the passwd package\'s way
* Sat Jun 03 2000 Nalin Dahyabhai - update to 0.9.5a, modified for U.S.- add perl as a build-time requirement- move certificate makefile to another package- disable RC5, IDEA, RSA support- remove optimizations for now
* Wed Mar 01 2000 Florian La Roche - Bero told me to move the Makefile into this package
* Wed Mar 01 2000 Florian La Roche - add lib
*.so symlinks to link dynamically against shared libs
* Tue Feb 29 2000 Florian La Roche - update to 0.9.5- run ldconfig directly in post/postun- add FAQ
* Sat Dec 18 1999 Bernhard Rosenkrdnzer - Fix build on non-x86 platforms
* Fri Nov 12 1999 Bernhard Rosenkrdnzer - move /usr/share/ssl/
* from -devel to main package
* Wed Oct 27 1999 Bernhard Rosenkrdnzer - inital packaging- changes from base: - Move /usr/local/ssl to /usr/share/ssl for FHS compliance - handle RPM_OPT_FLAGS
  
ICM