Request 394817: Submit openssl - openSUSE Build Service

This request is superseded by request 394833 (Show diff)

Overview

Request 394817 superseded

- the certificates used by the CMS test expired. So disable the test
for now (openssl-nocmstest.diff)

- OpenSSL Security Advisory [3rd May 2016]
* Memory corruption in the ASN.1 encoder
- bsc#977617 (CVE-2016-2108)
* Padding oracle in AES-NI CBC MAC check
- bsc#977616 (CVE-2016-2107)
* EVP_EncodeUpdate overflow
- bsc#977614 (CVE-2016-2105)
* EVP_EncryptUpdate overflow
- bsc#977615 (CVE-2016-2106)
* ASN.1 BIO excessive memory allocation
- bsc#976942 (CVE-2016-2109)
* add patches
+ openssl-CVE-2016-2105.patch
+ openssl-CVE-2016-2106.patch
+ openssl-CVE-2016-2107.patch
+ openssl-CVE-2016-2108.patch
+ openssl-CVE-2016-2109.patch
- Fix buffer overrun in ASN1_parse (bsc#976943)
* add 0001-Fix-buffer-overrun-in-ASN1_parse.patch
- Preserve digests for SNI (bsc#977621)
* add 0001-Preserve-digests-for-SNI.patch
- Fix openssl enc -non-fips-allow option in FIPS mode (bsc#958501)
* modify openssl-fips-dont-fall-back-to-default-digest.patch

Created by lnussel almost 8 years ago
In state superseded
Supersedes 394810
Superseded by 394833
Open review for factory-staging

Submit openssl

Comments for request 394817 0

Login required, please login in order to comment

Request History

lnussel created request almost 8 years ago

- the certificates used by the CMS test expired. So disable the test
for now (openssl-nocmstest.diff)

- OpenSSL Security Advisory [3rd May 2016]
* Memory corruption in the ASN.1 encoder
- bsc#977617 (CVE-2016-2108)
* Padding oracle in AES-NI CBC MAC check
- bsc#977616 (CVE-2016-2107)
* EVP_EncodeUpdate overflow
- bsc#977614 (CVE-2016-2105)
* EVP_EncryptUpdate overflow
- bsc#977615 (CVE-2016-2106)
* ASN.1 BIO excessive memory allocation
- bsc#976942 (CVE-2016-2109)
* add patches
+ openssl-CVE-2016-2105.patch
+ openssl-CVE-2016-2106.patch
+ openssl-CVE-2016-2107.patch
+ openssl-CVE-2016-2108.patch
+ openssl-CVE-2016-2109.patch
- Fix buffer overrun in ASN1_parse (bsc#976943)
* add 0001-Fix-buffer-overrun-in-ASN1_parse.patch
- Preserve digests for SNI (bsc#977621)
* add 0001-Preserve-digests-for-SNI.patch
- Fix openssl enc -non-fips-allow option in FIPS mode (bsc#958501)
* modify openssl-fips-dont-fall-back-to-default-digest.patch

lnussel superseded request almost 8 years ago

superseded by 394833

openSUSE Build Service is sponsored by