system environment/libraries

openssl - The OpenSSL toolkit

Website: http://www.openssl.org/
License: BSDish
Vendor: Red Hat, Inc.
Description:
The OpenSSL toolkit provides support for secure communications between
machines. OpenSSL includes a certificate management tool and shared
libraries which provide various cryptographic algorithms and
protocols.

Packages

openssl-0.9.8e-27.el5_10.3.src [3.2 MiB] Changelog by Tomas Mraz (2014-06-04):
- fix for CVE-2014-0224 - SSL/TLS MITM vulnerability
openssl-0.9.8e-27.el5_10.1.src [3.2 MiB] Changelog by Tomas Mraz (2014-01-29):
- replace expired GlobalSign Root CA certificate in ca-bundle.crt
openssl-0.9.8e-26.el5_9.1.src [3.2 MiB] Changelog by Tomas Mraz (2013-02-26):
- fix for CVE-2013-0169 - SSL/TLS CBC timing attack (#907589)
- fix for CVE-2013-0166 - DoS in OCSP signatures checking (#908052)
- enable compression only if explicitly asked for or OPENSSL_DEFAULT_ZLIB
  environment variable is set (fixes CVE-2012-4929 #857051)
- use __secure_getenv() everywhere instead of getenv() (#839735)
openssl-0.9.8e-22.el5_8.4.src [3.1 MiB] Changelog by Tomas Mraz (2012-05-16):
- fix for CVE-2012-2333 - improper checking for record length in DTLS (#820686)
openssl-0.9.8e-22.el5_8.3.src [3.1 MiB] Changelog by Tomas Mraz (2012-04-24):
- fix for CVE-2012-2110 - memory corruption in asn1_d2i_read_bio() (#814185)
openssl-0.9.8e-22.el5_8.1.src [3.1 MiB] Changelog by Tomas Mraz (2012-03-20):
- fix problem with the SGC restart patch that might terminate handshake
  incorrectly
- fix for CVE-2012-0884 - MMA weakness in CMS and PKCS#7 code (#802725)
- fix for CVE-2012-1165 - NULL read dereference on bad MIME headers (#802489)
openssl-0.9.8e-22.el5.src [3.1 MiB] Changelog by Tomas Mraz (2012-01-19):
- fix for CVE-2011-4108 & CVE-2012-0050 - DTLS plaintext recovery
  vulnerability and additional DTLS fixes (#771770)
- fix for CVE-2011-4109 - double free in policy checks (#771771)
- fix for CVE-2011-4576 - uninitialized SSL 3.0 padding (#771775)
- fix for CVE-2011-4619 - SGC restart DoS attack (#771780)
openssl-0.9.8e-20.el5_7.1.src [3.1 MiB] Changelog by Tomas Mraz (2012-01-19):
- fix for CVE-2011-4108 & CVE-2012-0050 - DTLS plaintext recovery
  vulnerability and additional DTLS fixes (#771770)
- fix for CVE-2011-4109 - double free in policy checks (#771771)
- fix for CVE-2011-4576 - uninitialized SSL 3.0 padding (#771775)
- fix for CVE-2011-4619 - SGC restart DoS attack (#771780)
openssl-0.9.8e-20.el5.src [3.1 MiB] Changelog by Tomas Mraz (2011-05-05):
- add missing DH_check_pub_key() call when DH key is computed (#698175)
openssl-0.9.8e-12.el5_5.7.src [3.1 MiB] Changelog by Tomas Mraz (2010-12-08):
- fix CVE-2010-4180 - completely disable code for
  SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG (#659462)
openssl-0.9.8e-12.el5_4.6.src [3.1 MiB] Changelog by Tomas Mraz (2010-03-13):
- fix CVE-2009-3245 - add missing bn_wexpand return checks (#570924)
openssl-0.9.8e-12.el5_4.1.src [3.1 MiB] Changelog by Tomas Mraz (2010-01-15):
- fix CVE-2009-2409 - drop MD2 algorithm from EVP tables (#510197)
- fix CVE-2009-4355 - do not leak memory when CRYPTO_cleanup_all_ex_data()
  is called prematurely by application (#546707)
openssl-0.9.8e-12.el5.src [3.1 MiB] Changelog by Tomas Mraz (2009-06-30):
- abort if selftests failed and random number generator is polled
- mention EVP_aes and EVP_sha2xx routines in the manpages
- add README.FIPS
openssl-0.9.8e-7.el5.src [3.1 MiB] Changelog by Tomas Mraz (2008-12-17):
- fix CVE-2008-5077 - incorrect checks for malformed signatures (#476671)
openssl-0.9.8b-10.el5_2.1.src [2.7 MiB] Changelog by Tomas Mraz (2008-12-17):
- fix CVE-2008-5077 - incorrect checks for malformed signatures (#476671)
openssl-0.9.8b-10.el5.src [2.7 MiB] Changelog by Tomas Mraz (2008-01-16):
- compile with -march=z900 on s390 for performance improvements (#250818)
- make ssl session ID matching strict (#233599)
openssl-0.9.8b-8.3.el5.2.src [2.7 MiB] Changelog by Tomas Mraz (2007-10-11):
- more DTLS fixes (#321211)
openssl-0.9.8b-8.3.el5_0.2.src [2.7 MiB] Changelog by Tomas Mraz (2007-10-11):
- more DTLS fixes (#321211)
openssl-0.9.8b-8.3.el5.src [2.7 MiB] Changelog by Tomas Mraz (2006-12-01):
- the previous change still didn't make X509_NAME_cmp transitive

Listing created by Repoview-0.6.6-1.el6