Secure Sockets and Transport Layer Security
The OpenSSL Project is a collaborative effort to develop a robust,
commercial-grade, full-featured, and open source toolkit implementing
the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS
v1) protocols with full-strength cryptography. The project is managed
by a worldwide community of volunteers that use the Internet to
communicate, plan, and develop the OpenSSL toolkit and its related
documentation.
Derivation and License
OpenSSL is based on the excellent SSLeay library developed by Eric A.
Young and Tim J. Hudson. The OpenSSL toolkit is licensed under an
Apache-style license, which basically means that you are free to get it
and to use it for commercial and noncommercial purposes.
- Download package
-
Checkout Package
osc -A https://api.opensuse.org checkout home:draht:parking/openssl && cd $_
- Create Badge
Source Files
Latest Revision
- update to 1.0.1p: * HMAC ABI incompatibility introduced into 1.0.1n was reverted (this was done with 1.0.1o). - CVE-2015-1793: fix for CA flag certificate chain validatin logic error - update to 1.0.1n: security update reference: https://openssl.org/news/secadv_20150611.txt (2015-06-11) Vulns are rated medium severity unless otherwise indicated here: * CVE-2015-4000 aka Logjam: TLS MITM DH keylength downgrade * CVE-2015-1788 Malformed ECParameters causes infinite loop * CVE-2015-1789 OOB read in X509_cmp_time via ASN1_TIME string * CVE-2015-1790 PKCS7 crash with missing EnvelopedContent * CVE-2015-1792 CMS verify infinite loop with unknown hash function * CVE-2015-1791 Race condition handling NewSessionTicket (low profile vuln.) - re-diff'd: openssl-ocloexec.patch VIA_padlock_support_on_64systems.patch compression_methods_switch.patch 0005-libssl-Hide-library-private-symbols.patch - openssl-1.0.1c-default-paths.patch replaced by re-diff'd openssl-1.0.1n-default-paths.patch - obsoleted: openssl-CVE-2015-0209.patch (NULL pointer checks were upstreamed differently in upstream versions after Feb 2015) - obsoleted by identical upstream fixes: openssl-CVE-2015-0286.patch openssl-CVE-2015-0287.patch openssl-CVE-2015-0288.patch openssl-CVE-2015-0289.patch openssl-CVE-2015-0293.patch
Comments 0