Revisions of openssl-3
buildservice-autocommit
accepted
request 1178897
from
Otto Hollmann (ohollmann)
(revision 103)
baserev update by copy to link target
- Fix HDKF key derivation (bsc#1225291, gh#openssl/openssl#23448, gh#openssl/openssl#23456) * Add openssl-Fix-EVP_PKEY_CTX_add1_hkdf_info-behavior.patch * Add openssl-Handle-empty-param-in-EVP_PKEY_CTX_add1_hkdf_info.patch
buildservice-autocommit
accepted
request 1175444
from
Otto Hollmann (ohollmann)
(revision 101)
baserev update by copy to link target
- Security fix: [bsc#1224388, CVE-2024-4603] * Check DSA parameters for excessive sizes before validating * Add openssl-CVE-2024-4603.patch
buildservice-autocommit
accepted
request 1172941
from
Otto Hollmann (ohollmann)
(revision 99)
baserev update by copy to link target
- Enable livepatching support (bsc#1223428)
buildservice-autocommit
accepted
request 1172431
from
Otto Hollmann (ohollmann)
(revision 97)
baserev update by copy to link target
- Add ktls capability [bsc#1216950] Already added in January, but not mentioned in this changelog. - Security fix: [bsc#1222548, CVE-2024-2511] * Fix unconstrained session cache growth in TLSv1.3 * Add openssl-CVE-2024-2511.patch
buildservice-autocommit
accepted
request 1153155
from
Otto Hollmann (ohollmann)
(revision 95)
baserev update by copy to link target
- Build the 32bit flavor of libopenssl-3-fips-provider [bsc#1220232] * Update baselibs.conf
buildservice-autocommit
accepted
request 1144625
from
Otto Hollmann (ohollmann)
(revision 93)
baserev update by copy to link target
/etc/ssl/engines.d/* -> /etc/ssl/engines1.1.d.rpmsave /etc/ssl/engdef.d/* -> /etc/ssl/engdef1.1.d.rpmsave They will be later restored by openssl-1_1 package to engines1.1.d and engdef1.1.d
- Add migration script to move old files (bsc#1219562) /etc/ssl/engines.d/* -> /etc/ssl/engines1.1.d /etc/ssl/engdef.d/* -> /etc/ssl/engdef1.1.d - Security fix: [bsc#1219243, CVE-2024-0727] * Add NULL checks where ContentInfo data can be NULL * Add openssl-CVE-2024-0727.patch
buildservice-autocommit
accepted
request 1142584
from
Pedro Monreal Gonzalez (pmonrealgonzalez)
(revision 90)
baserev update by copy to link target
- Added openssl-3-use-include-directive.patch so that the default /etc/ssl/openssl.cnf file will include any configuration files that other packages might place into /etc/ssl/engines3.d/ and /etc/ssl/engdef3.d/. Also create symbolic links /etc/ssl/engines.d/ and /etc/ssl/engdef.d/ to above versioned directories. - Updated spec file to create the two new necessary directores for the above patch and two symbolic links to above directories. [bsc#1194187, bsc#1207472, bsc#1218933] - Replace our reverted commit with an upstream version * rename openssl-Revert-Makefile-Call-mknum.pl-on-make-ordinals-only-if.patch to openssl-Remove-the-source-directory-.num-targets.patch
- Security fix: [bsc#1218810, CVE-2023-6237] * Limit the execution time of RSA public key check * Add openssl-CVE-2023-6237.patch
Displaying revisions 1 - 20 of 103