Revisions of openssl-1_1
Ruediger Oertel (oertel)
committed
(revision 4)
- Security fix: [bsc#1222548, CVE-2024-2511] * Fix unconstrained session cache growth in TLSv1.3 * Add openssl-CVE-2024-2511.patch
Marcus Rueckert (darix)
committed
(revision 3)
- openssl-riscv64-config.patch: backport of riscv64 config support - Enable running the regression tests in FIPS mode.
Ruediger Oertel (oertel)
committed
(revision 2)
- Security fix: [bsc#1219243, CVE-2024-0727] * Add NULL checks where ContentInfo data can be NULL * Add openssl-CVE-2024-0727.patch - Remove "Provides: openssl(cli)" because the executable has been renamed to openssl-1_1. - Because OpenSSL 1.1.1 is no longer default, let's rename engine directories to contain version of OpenSSL and let unversioned for the default OpenSSL. [bsc#1194187, bsc#1207472, bsc#1218933] * /etc/ssl/engines.d -> /etc/ssl/engines1.1.d * /etc/ssl/engdef.d -> /etc/ssl/engdef1.1.d * Update patches: - openssl-1_1-ossl-sli-002-ran-make-update.patch - openssl-1_1-use-include-directive.patch - Set OpenSSL 3.0 as the default openssl [jsc#PED-6570] * For compatibility with OpenSSL 3.0, the OpenSSL master configuration file openssl.cnf has been renamed to openssl-1_1.cnf. The executables openssl, c_rehash, CA.pl and tsget.pl have been also renamed to openssl-1_1, c_rehash-1_1, CA-1_1.pl and tsget-1_1.pl, respectively. * Add openssl-1_1-devel as conflicting with libopenssl-3-devel * Add openssl-1_1-openssl-config.patch - Skip SHA1 test in 20-test_dgst.t when in FIPS mode * Add openssl-Skip_SHA1-test-in-FIPS-mode.patch - Performance enhancements for cryptography from OpenSSL 3.x [jsc#PED-5086, jsc#PED-3514]
Ruediger Oertel (oertel)
committed
(revision 1)
initialize package
Displaying all 4 revisions