Date: Thu, 28 Sep 2006 13:04:16 +0000 (UTC) From: Colin Percival <cperciva@FreeBSD.org> To: src-committers@FreeBSD.org, cvs-src@FreeBSD.org, cvs-all@FreeBSD.org Subject: cvs commit: src UPDATING src/crypto/openssl/crypto/asn1 tasn_dec.c src/crypto/openssl/crypto/dh dh.h dh_err.c dh_key.c src/crypto/openssl/crypto/dsa dsa.h dsa_err.c dsa_ossl.c src/crypto/openssl/crypto/rsa rsa.h rsa_eay.c rsa_err.c ... Message-ID: <200609281304.k8SD4GqQ094728@repoman.freebsd.org>
next in thread | raw e-mail | index | archive | help
cperciva 2006-09-28 13:04:16 UTC FreeBSD src repository Modified files: (Branch: RELENG_5_5) . UPDATING crypto/openssl/crypto/asn1 tasn_dec.c crypto/openssl/crypto/dh dh.h dh_err.c dh_key.c crypto/openssl/crypto/dsa dsa.h dsa_err.c dsa_ossl.c crypto/openssl/crypto/rsa rsa.h rsa_eay.c rsa_err.c crypto/openssl/ssl s2_clnt.c s3_srvr.c ssl_lib.c sys/conf newvers.sh Log: Correct multiple vulnerabilities in crypto(3). Limit the size of public keys used in order to protect applications from a denial of service via insane key sizes. Security: FreeBSD-SA-06:23.openssl Approved by: so (cperciva) Revision Changes Path 1.342.2.35.2.6 +5 -0 src/UPDATING 1.1.1.2.16.1 +3 -0 src/crypto/openssl/crypto/asn1/tasn_dec.c 1.1.1.6.18.1 +5 -0 src/crypto/openssl/crypto/dh/dh.h 1.1.1.4.6.1.4.1 +1 -0 src/crypto/openssl/crypto/dh/dh_err.c 1.1.1.8.4.1.4.1 +6 -0 src/crypto/openssl/crypto/dh/dh_key.c 1.1.1.6.6.1.4.1 +6 -0 src/crypto/openssl/crypto/dsa/dsa.h 1.1.1.4.18.1 +2 -0 src/crypto/openssl/crypto/dsa/dsa_err.c 1.1.1.7.4.1.4.1 +12 -0 src/crypto/openssl/crypto/dsa/dsa_ossl.c 1.10.4.1.4.1 +13 -1 src/crypto/openssl/crypto/rsa/rsa.h 1.12.4.1.4.1 +45 -1 src/crypto/openssl/crypto/rsa/rsa_eay.c 1.1.1.4.18.1 +1 -0 src/crypto/openssl/crypto/rsa/rsa_err.c 1.12.2.1.4.1 +2 -1 src/crypto/openssl/ssl/s2_clnt.c 1.1.1.13.2.1.4.1 +1 -1 src/crypto/openssl/ssl/s3_srvr.c 1.1.1.11.2.1.4.1 +1 -1 src/crypto/openssl/ssl/ssl_lib.c 1.62.2.21.2.8 +1 -1 src/sys/conf/newvers.sh
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200609281304.k8SD4GqQ094728>