From owner-freebsd-ports@FreeBSD.ORG  Wed Jan  8 07:14:50 2014
Return-Path: <owner-freebsd-ports@FreeBSD.ORG>
Delivered-To: freebsd-ports@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits))
 (No client certificate requested)
 by hub.freebsd.org (Postfix) with ESMTPS id 05785D23;
 Wed,  8 Jan 2014 07:14:50 +0000 (UTC)
Received: from mail-ea0-x231.google.com (mail-ea0-x231.google.com
 [IPv6:2a00:1450:4013:c01::231])
 (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits))
 (No client certificate requested)
 by mx1.freebsd.org (Postfix) with ESMTPS id 6638F1739;
 Wed,  8 Jan 2014 07:14:49 +0000 (UTC)
Received: by mail-ea0-f177.google.com with SMTP id n15so604196ead.36
 for <multiple recipients>; Tue, 07 Jan 2014 23:14:47 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113;
 h=from:content-type:message-id:mime-version:date:subject:cc:to;
 bh=pf2QJF3Pxc3QYcNyOB73kwYHMdL7bOpICq2zY9U9V8I=;
 b=hINYgdXUVTVcHBY6BsFmDwfRVtGeQ/SCHPMx094osmfhBZqKItp2Y2pignpFXwgvcg
 MRiI2xUGAZzq8MxA8yiyyounWfYMryz4B3uAFSsbK9115hwAlIIZHwozFE6WvAQyAHAk
 nMtrtV52KH+vDU4qsgcxJTrkFoHh8CEzav9OWQ3YbEHjkhH5OQgM3SrPFginD8oaSj8W
 p6QTjbGXN1nEzvrevYfsRan2ylMnoyNF4eBrLCulr66JUGMhSuuTFLhBDDGwDasyEUqZ
 9xi5teJS1trg+bs7Jv8U4rlaVr+xgmqNUM33CqQsObLrtawh9HFRHG57XLR+OXZPnjq4
 I/3g==
X-Received: by 10.14.194.131 with SMTP id m3mr98168533een.2.1389165287875;
 Tue, 07 Jan 2014 23:14:47 -0800 (PST)
Received: from [192.168.6.220] (ip-64-134-227-30.public.wayport.net.
 [64.134.227.30])
 by mx.google.com with ESMTPSA id 4sm186691189eed.14.2014.01.07.23.14.44
 for <multiple recipients>
 (version=TLSv1 cipher=ECDHE-RSA-RC4-SHA bits=128/128);
 Tue, 07 Jan 2014 23:14:46 -0800 (PST)
From: Barry Allard <barry.allard@gmail.com>
Content-Type: multipart/signed;
 boundary="Apple-Mail=_24D86F88-E2CE-43E0-9F15-5CCA73C132E3";
 protocol="application/pgp-signature"; micalg=pgp-sha1
Message-Id: <8061F3C8-7B7D-4837-B656-0D8804501CB9@gmail.com>
Mime-Version: 1.0 (Mac OS X Mail 7.1 \(1827\))
Date: Tue, 7 Jan 2014 23:14:42 -0800
Subject: security/openssl: 1.0.1f - fixes 3 CVEs and a bug
To: freebsd-ports@freebsd.org
X-Mailer: Apple Mail (2.1827)
Cc: dinoex@FreeBSD.org
X-BeenThere: freebsd-ports@freebsd.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Porting software to FreeBSD <freebsd-ports.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/options/freebsd-ports>,
 <mailto:freebsd-ports-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-ports/>
List-Post: <mailto:freebsd-ports@freebsd.org>
List-Help: <mailto:freebsd-ports-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ports>,
 <mailto:freebsd-ports-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 08 Jan 2014 07:14:50 -0000


--Apple-Mail=_24D86F88-E2CE-43E0-9F15-5CCA73C132E3
Content-Transfer-Encoding: 7bit
Content-Type: text/plain;
	charset=us-ascii

> Major changes between OpenSSL 1.0.1e and OpenSSL 1.0.1f [6 Jan 2014]
> 
>     - Don't include gmt_unix_time in TLS server and client random values
>     - Fix for TLS record tampering bug CVE-2013-4353
>     - Fix for TLS version checking bug CVE-2013-6449
>     - Fix for DTLS retransmission bug CVE-2013-6450 

https://www.openssl.org/news/openssl-1.0.1-notes.html

BR,
Barry Allard

---

Maintainer details:

http://www.openssl.org/source/openssl-1.0.1f.tar.gz

  sha256: 6cc2a80b17d64de6b7bac985745fdaba971d54ffd7d38d3556f998d7c0c9cb5a
  sha1: 9ef09e97dfc9f14ac2c042f3b7e301098794fc0f

  gpg:
  http://www.openssl.org/source/openssl-1.0.1f.tar.gz.asc
  https://www.openssl.org/docs/misc/fingerprints.txt

--Apple-Mail=_24D86F88-E2CE-43E0-9F15-5CCA73C132E3
Content-Transfer-Encoding: 7bit
Content-Disposition: attachment;
	filename=signature.asc
Content-Type: application/pgp-signature;
	name=signature.asc
Content-Description: Message signed with OpenPGP using GPGMail

-----BEGIN PGP SIGNATURE-----
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=poTf
-----END PGP SIGNATURE-----

--Apple-Mail=_24D86F88-E2CE-43E0-9F15-5CCA73C132E3--