From owner-cvs-all@FreeBSD.ORG  Thu Oct 18 20:19:34 2007
Return-Path: <owner-cvs-all@FreeBSD.ORG>
Delivered-To: cvs-all@FreeBSD.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id A19E716A420;
	Thu, 18 Oct 2007 20:19:34 +0000 (UTC)
	(envelope-from simon@FreeBSD.org)
Received: from repoman.freebsd.org (repoman.freebsd.org
	[IPv6:2001:4f8:fff6::29])
	by mx1.freebsd.org (Postfix) with ESMTP id 946A013C4A5;
	Thu, 18 Oct 2007 20:19:34 +0000 (UTC)
	(envelope-from simon@FreeBSD.org)
Received: from repoman.freebsd.org (localhost [127.0.0.1])
	by repoman.freebsd.org (8.14.1/8.14.1) with ESMTP id l9IKJYpJ000979;
	Thu, 18 Oct 2007 20:19:34 GMT
	(envelope-from simon@repoman.freebsd.org)
Received: (from simon@localhost)
	by repoman.freebsd.org (8.14.1/8.14.1/Submit) id l9IKJYMO000978;
	Thu, 18 Oct 2007 20:19:34 GMT (envelope-from simon)
Message-Id: <200710182019.l9IKJYMO000978@repoman.freebsd.org>
From: "Simon L. Nielsen" <simon@FreeBSD.org>
Date: Thu, 18 Oct 2007 20:19:34 +0000 (UTC)
To: src-committers@FreeBSD.org, cvs-src@FreeBSD.org, cvs-all@FreeBSD.org
X-FreeBSD-CVS-Branch: OPENSSL
Cc: 
Subject: cvs commit: src/crypto/openssl/ssl - Imported sources
X-BeenThere: cvs-all@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: CVS commit messages for the entire tree <cvs-all.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/cvs-all>,
	<mailto:cvs-all-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/cvs-all>
List-Post: <mailto:cvs-all@freebsd.org>
List-Help: <mailto:cvs-all-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/cvs-all>,
	<mailto:cvs-all-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 18 Oct 2007 20:19:34 -0000

simon       2007-10-18 20:19:34 UTC

  FreeBSD src repository

  src/crypto/openssl/ssl - Imported sources
  Update of /home/ncvs/src/crypto/openssl/ssl
  In directory repoman.freebsd.org:/tmp/cvs-serv960
  
  Log Message:
  Import DTLS security fix from upstream OpenSSL_0_9_8-stable branch.
  
  From the OpenSSL advisory:
  
  	Andy Polyakov discovered a flaw in OpenSSL's DTLS
  	implementation which could lead to the compromise of clients
  	and servers with DTLS enabled.
  
  	DTLS is a datagram variant of TLS specified in RFC 4347 first
  	supported in OpenSSL version 0.9.8. Note that the
  	vulnerabilities do not affect SSL and TLS so only clients and
  	servers explicitly using DTLS are affected.
  
  	We believe this flaw will permit remote code execution.
  
  Security:	CVE-2007-4995
  Security:	http://www.openssl.org/news/secadv_20071012.txt
  
  Status:
  
  Vendor Tag:	OPENSSL
  Release Tags:	b0_9_8-20071018
  		
  U src/crypto/openssl/ssl/d1_both.c
  U src/crypto/openssl/ssl/dtls1.h
  U src/crypto/openssl/ssl/ssl.h
  U src/crypto/openssl/ssl/ssl_err.c
  
  No conflicts created by this import