From owner-cvs-all@FreeBSD.ORG Thu Sep 28 13:03:15 2006 Return-Path: X-Original-To: cvs-all@FreeBSD.org Delivered-To: cvs-all@FreeBSD.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 8544B16A523; Thu, 28 Sep 2006 13:03:15 +0000 (UTC) (envelope-from cperciva@FreeBSD.org) Received: from repoman.freebsd.org (repoman.freebsd.org [216.136.204.115]) by mx1.FreeBSD.org (Postfix) with ESMTP id 0F68C43D55; Thu, 28 Sep 2006 13:03:15 +0000 (GMT) (envelope-from cperciva@FreeBSD.org) Received: from repoman.freebsd.org (localhost [127.0.0.1]) by repoman.freebsd.org (8.13.6/8.13.6) with ESMTP id k8SD3Ef4094255; Thu, 28 Sep 2006 13:03:14 GMT (envelope-from cperciva@repoman.freebsd.org) Received: (from cperciva@localhost) by repoman.freebsd.org (8.13.6/8.13.4/Submit) id k8SD3Euc094254; Thu, 28 Sep 2006 13:03:14 GMT (envelope-from cperciva) Message-Id: <200609281303.k8SD3Euc094254@repoman.freebsd.org> From: Colin Percival Date: Thu, 28 Sep 2006 13:03:14 +0000 (UTC) To: src-committers@FreeBSD.org, cvs-src@FreeBSD.org, cvs-all@FreeBSD.org X-FreeBSD-CVS-Branch: RELENG_6_1 Cc: Subject: cvs commit: src UPDATING src/crypto/openssl/crypto/asn1 tasn_dec.c src/crypto/openssl/crypto/dh dh.h dh_err.c dh_key.c src/crypto/openssl/crypto/dsa dsa.h dsa_err.c dsa_ossl.c src/crypto/openssl/crypto/rsa rsa.h rsa_eay.c rsa_err.c ... X-BeenThere: cvs-all@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: CVS commit messages for the entire tree List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 28 Sep 2006 13:03:15 -0000 cperciva 2006-09-28 13:03:14 UTC FreeBSD src repository Modified files: (Branch: RELENG_6_1) . UPDATING crypto/openssl/crypto/asn1 tasn_dec.c crypto/openssl/crypto/dh dh.h dh_err.c dh_key.c crypto/openssl/crypto/dsa dsa.h dsa_err.c dsa_ossl.c crypto/openssl/crypto/rsa rsa.h rsa_eay.c rsa_err.c crypto/openssl/ssl s2_clnt.c s3_srvr.c ssl_lib.c sys/conf newvers.sh Log: Correct multiple vulnerabilities in crypto(3). Limit the size of public keys used in order to protect applications from a denial of service via insane key sizes. Security: FreeBSD-SA-06:23.openssl Approved by: so (cperciva) Revision Changes Path 1.416.2.22.2.10 +5 -0 src/UPDATING 1.1.1.2.14.1 +3 -0 src/crypto/openssl/crypto/asn1/tasn_dec.c 1.1.1.6.16.1 +5 -0 src/crypto/openssl/crypto/dh/dh.h 1.1.1.5.6.1 +1 -0 src/crypto/openssl/crypto/dh/dh_err.c 1.1.1.9.6.1 +6 -0 src/crypto/openssl/crypto/dh/dh_key.c 1.1.1.7.6.1 +6 -0 src/crypto/openssl/crypto/dsa/dsa.h 1.1.1.4.16.1 +2 -0 src/crypto/openssl/crypto/dsa/dsa_err.c 1.1.1.8.6.1 +12 -0 src/crypto/openssl/crypto/dsa/dsa_ossl.c 1.11.6.1 +13 -1 src/crypto/openssl/crypto/rsa/rsa.h 1.13.6.1 +45 -1 src/crypto/openssl/crypto/rsa/rsa_eay.c 1.1.1.4.16.1 +1 -0 src/crypto/openssl/crypto/rsa/rsa_err.c 1.13.6.1 +2 -1 src/crypto/openssl/ssl/s2_clnt.c 1.1.1.14.6.1 +1 -1 src/crypto/openssl/ssl/s3_srvr.c 1.1.1.12.6.1 +1 -1 src/crypto/openssl/ssl/ssl_lib.c 1.69.2.11.2.10 +1 -1 src/sys/conf/newvers.sh