Репозиторий Sisyphus
Последнее обновление: 21 января 2021 | Пакетов: 17776 | Посещений: 20098059
en ru br
Репозитории ALT

Группа :: Безопасность/Сети
Пакет: LibreSSL

 Главная   Изменения   Спек   Патчи   Sources   Загрузить   Gear   Bugs and FR  Repocop 

10 декабря 2020 Vladimir D. Seleznev <vseleznv at altlinux.org> 3.2.3-alt1

  • Updated to 3.2.3.

1 ноября 2020 Vladimir D. Seleznev <vseleznv at altlinux.org> 3.2.2-alt1

  • Updated to 3.2.2.

28 августа 2020 Vladimir D. Seleznev <vseleznv at altlinux.org> 3.1.4-alt1

  • Updated to 3.1.4.

27 мая 2020 Vladimir D. Seleznev <vseleznv at altlinux.org> 3.1.2-alt1

  • Updated to 3.1.2.

9 мая 2020 Vladimir D. Seleznev <vseleznv at altlinux.org> 3.1.1-alt1

  • Updated to 3.1.1.

9 апреля 2020 Vladimir D. Seleznev <vseleznv at altlinux.org> 3.1.0-alt1

  • Updated to 3.1.0.

1 декабря 2019 Vladimir D. Seleznev <vseleznv at altlinux.org> 3.0.2-alt2

  • Packed manpages:
     + ocspcheck.8 to ocspcheck subpackage;
     + openssl-LibreSSL.cnf.5 to libcrypto-LibreSSL subpackage;
     + x509v3-LibreSSL.cnf.5 to openssl-LibreSSL subpackage.

19 октября 2019 Vladimir D. Seleznev <vseleznv at altlinux.org> 3.0.2-alt1

  • Updated to 3.0.2.
  • Packed upstream-signing-key.asc.
  • Updated watch file.

21 мая 2019 Vladimir D. Seleznev <vseleznv at altlinux.org> 2.9.2-alt1

  • 2.9.2.

27 апреля 2019 Vladimir D. Seleznev <vseleznv at altlinux.org> 2.9.1-alt2

  • Applied extra-symver.diff patch from openSUSE project that added symbol
     versions into the library.

22 апреля 2019 Vladimir D. Seleznev <vseleznv at altlinux.org> 2.9.1-alt1

  • 2.9.1.

6 февраля 2019 Vladimir D. Seleznev <vseleznv at altlinux.org> 2.8.3-alt1

  • 2.8.3

20 октября 2018 Vladimir D. Seleznev <vseleznv at altlinux.org> 2.8.2-alt1

  • 2.8.2

9 августа 2018 Vladimir D. Seleznev <vseleznv at altlinux.org> 2.7.4-alt1

  • 2.7.4

6 июня 2018 Vladimir D. Seleznev <vseleznv at altlinux.org> 2.7.3-alt1

  • 2.7.3
  • netcat-tls: provides netcat

21 декабря 2017 Vladimir D. Seleznev <vseleznv at altlinux.org> 2.6.4-alt1

  • 2.6.4

6 ноября 2017 Vladimir D. Seleznev <vseleznv at altlinux.org> 2.6.3-alt1

  • 2.6.3

14 августа 2017 Vladimir D. Seleznev <vseleznv at altlinux.org> 2.5.5-alt3

  • fixed cert.pem lookup location for netcat and ocspcheck
  • fixed manpages
  • removed RELNOTES
  • disabled tests

20 июля 2017 Vladimir D. Seleznev <vseleznv at altlinux.org> 2.5.5-alt2

  • fixed LibreSSL-devel provides and requires to avoid collision with openssl
  • make watchfile to watch for the stable releases

14 июля 2017 Vladimir D. Seleznev <vseleznv at altlinux.org> 2.5.5-alt1

  • 2.5.5

3 мая 2017 Vladimir D. Seleznev <vseleznv at altlinux.org> 2.5.4-alt1

  • 2.5.4
  • Fixes:
     + CVE-2017-8301

21 апреля 2017 Vladimir D. Seleznev <vseleznv at altlinux.org> 2.5.3-alt1

  • 2.5.3
  • added ocspcheck package.
  • renamed -doc packages to -devel-doc.
  • added RELNOTES.
  • placed `%make check' to proper location in spec.

4 февраля 2017 Vladimir D. Seleznev <vseleznv at altlinux.org> 2.4.5-alt1

  • 2.4.5
  • packaged %_sysconfdir/%oname/openssl.cnf as noreplace config file.
  • packaged ChangeLog and COPYING files.
  • fixed license: added notice about original OpenSSL code license.
  • removed conflict to openssl in openssl-LibreSSL package.

7 ноября 2016 Vladimir D. Seleznev <vseleznv at altlinux.org> 2.4.4-alt1

  • 2.4.4
  • packaged ungziped source tarball
  • changed watchfile to watch stable releases
  • packaged watchfile
  • Changes and fixes:
     + Avoid continual processing of an unlimited number of TLS records,
       which can cause a denial-of-service condition.
     + In X509_cmp_time(), pass asn1_time_parse() the tag of the field
       being parsed so that a malformed GeneralizedTime field is recognized
       as an error instead of potentially being interpreted as if it was a
       valid UTCTime.
     + Improve ticket validity checking when tlsext_ticket_key_cb()
       callback chooses a different HMAC algorithm.
     + Check for packets with a truncated DTLS cookie.
     + Detect zero-length encrypted session data early, instead of when
       malloc(0) fails or the HMAC check fails.
     + Check for and handle failure of HMAC_{Update,Final} or
       EVP_DecryptUpdate()

29 сентября 2016 Vladimir D. Seleznev <vseleznv at altlinux.org> 2.4.3-alt1

  • 2.4.3
  • Bug fixes and reliability improvements:
     + Reverted change that cleans up the EVP cipher context in
       EVP_EncryptFinal() and EVP_DecryptFinal(). Some software relies on the
       previous behaviour.
     + Avoid unbounded memory growth in libssl, which can be triggered by a
       TLS client repeatedly renegotiating and sending OCSP Status Request
       TLS extensions.
     + Avoid falling back to a weak digest for (EC)DH when using SNI with
       libssl.
  • add `nc' providing
  • remove `netcat' providing

3 августа 2016 Vladimir D. Seleznev <vseleznv at altlinux.org> 2.4.2-alt1

  • 2.4.2
  • LibreSSL
     + Bug fixes and improvements:
  • Fixed loading default certificate locations with openssl s_client.
  • Ensured OSCP only uses and compares GENERALIZEDTIME values as per
         RFC6960. Also added fixes for OCSP to work with intermediate
         certificates provided in responses.
  • Improved behavior of arc4random on Windows to not appear to leak
         memory in debug tools, reduced privileges of allocated memory.
  • Fixed incorrect results from BN_mod_word() when the modulus is too
         large, thanks to Brian Smith from BoringSSL.
  • Correctly handle an EOF prior to completing the TLS handshake in
         libtls.
  • Improved libtls ceritificate loading and cipher string validation.
  • Updated libtls cipher group suites into four categories:
  • "secure"   (TLSv1.2+AEAD+PFS)
  • "compat"   (HIGH:!aNULL)
  • "legacy"   (HIGH:MEDIUM:!aNULL)
  • "insecure" (ALL:!aNULL:!eNULL)
         This allows for flexibility and finer grained control, rather than
         having two extremes.
  • Limited support for 'backward com
  • openssl-LibreSSL:
     + rename package from LibreSSL-openssl
     + remove conflict with openssl
     + rename binary and manpages fro openssl to openssl-LibreSSL
     + move some man pages to LibreSSL-doc package
  • netcat-tls:
     + rename package from netcat-openbsd
     + adopt many of original netcat alt and owl patches

19 июня 2016 Vladimir D. Seleznev <vseleznv at altlinux.org> 2.3.6-alt1

  • 2.3.6
  • Correct a problem that prevents the DSA signing algorithm from running
     in constant time even if the flag BN_FLG_CONSTTIME is set.

1 июня 2016 Vladimir D. Seleznev <vseleznv at altlinux.org> 2.3.5-alt1

  • 2.3.5

3 мая 2016 Vladimir D. Seleznev <vseleznv at altlinux.org> 2.3.4-alt1

  • 2.3.4
  • Fix multiple vulnerabilities in libcrypto relating to ASN.1 and encoding
     (From OpenSSL):
     + Memory corruption in the ASN.1 encoder (CVE-2016-2108)
     + Padding oracle in AES-NI CBC MAC check (CVE-2016-2107)
     + EVP_EncodeUpdate overflow (CVE-2016-2105)
     + EVP_EncryptUpdate overflow (CVE-2016-2106)
     + ASN.1 BIO excessive memory allocation (CVE-2016-2109)
  • Minor build fixes.
  • LibreSSL-openssl
     + Added conflict to openssl-doc

3 мая 2016 Vladimir D. Seleznev <vseleznv at altlinux.org> 2.3.3-alt2

  • LibreSSL-doc
     + Add conflict: openssl-doc.
  • libtls-doc
     + Build as noarch
  • libcrypto-LibreSSL
     + "/etc/libressl" directory is owned by package now.

21 апреля 2016 Vladimir D. Seleznev <vseleznv at altlinux.org> 2.3.3-alt1

  • Initial build.
 
дизайн и разработка: Vladimir Lettiev aka crux © 2004-2005, Andrew Avramenko aka liks © 2007-2008
текущий майнтейнер: Michael Shigorin