Overview
Request 1143594 accepted
- Update to 3.2.1:
* Fixed PKCS12 Decoding crashes (CVE-2024-0727)
* Fixed excessive time spent checking invalid RSA public keys
(CVE-2023-6237)
* Fixed POLY1305 MAC implementation corrupting vector registers
on PowerPC CPUs which support PowerISA 2.07 (CVE-2023-6129)
* Fixed excessive time spent in DH check / generation with large
Q parameter value [(CVE-2023-5678)]
* Remove patches:
- openssl-CVE-2023-6237.patch
- openssl-CVE-2023-6129.patch
- openssl-CVE-2023-6237.patch
- openssl-Remove-the-source-directory-.num-targets.patch
- openssl-Enable-BTI-feature-for-md5-on-aarch64.patch
- openssl-Fix_test_symbol_presence.patch
Request History
ohollmann created request
- Update to 3.2.1:
* Fixed PKCS12 Decoding crashes (CVE-2024-0727)
* Fixed excessive time spent checking invalid RSA public keys
(CVE-2023-6237)
* Fixed POLY1305 MAC implementation corrupting vector registers
on PowerPC CPUs which support PowerISA 2.07 (CVE-2023-6129)
* Fixed excessive time spent in DH check / generation with large
Q parameter value [(CVE-2023-5678)]
* Remove patches:
- openssl-CVE-2023-6237.patch
- openssl-CVE-2023-6129.patch
- openssl-CVE-2023-6237.patch
- openssl-Remove-the-source-directory-.num-targets.patch
- openssl-Enable-BTI-feature-for-md5-on-aarch64.patch
- openssl-Fix_test_symbol_presence.patch
ohollmann accepted request
Ok