]>
git.pld-linux.org Git - packages/openssl.git/log
Elan Ruusamäe [Thu, 15 Jan 2015 20:26:13 +0000 (22:26 +0200)]
up to 1.0.1l
Build fixes for the Windows and OpenVMS platforms
Elan Ruusamäe [Fri, 9 Jan 2015 09:35:56 +0000 (11:35 +0200)]
up to 1.0.1k, fixes for CVE-2014-3571 CVE-2015-0206 CVE-2014-3569 CVE-2014-3572 CVE-2015-0204 CVE-2015-0205 CVE-2014-8275 CVE-2014-3570
Elan Ruusamäe [Thu, 1 Jan 2015 21:02:56 +0000 (23:02 +0200)]
fix gcc -E not dumping output with .s ext, works with .S
Elan Ruusamäe [Wed, 31 Dec 2014 12:28:04 +0000 (14:28 +0200)]
3a24c9cc conflicts don't apply for ac
Jan Rękorajski [Mon, 22 Dec 2014 20:38:18 +0000 (20:38 +0000)]
- add x32 support
Arkadiusz Miśkiewicz [Tue, 21 Oct 2014 12:49:10 +0000 (14:49 +0200)]
- rel 3 then
Adam Osuchowski [Tue, 21 Oct 2014 12:46:56 +0000 (14:46 +0200)]
- zlib, sslv2 and sslv3 enabled by default
Arkadiusz Miśkiewicz [Tue, 21 Oct 2014 12:27:08 +0000 (14:27 +0200)]
- fix bconds
Arkadiusz Miśkiewicz [Tue, 21 Oct 2014 12:19:48 +0000 (14:19 +0200)]
sslv2/sslv3/zlib bconds; discussion about their default state in progress on devel lists
Arkadiusz Miśkiewicz [Mon, 20 Oct 2014 17:45:36 +0000 (19:45 +0200)]
- rel 2; disable unsecure protocols
(zlib: CRIME attack; SSLv2: uses md5; SSLv3: POODLE)
- enable enable-ec_nistp_64_gcc_128 on x86_64
Jakub Bogusz [Fri, 17 Oct 2014 16:11:22 +0000 (18:11 +0200)]
- handle unpackaged man files
Elan Ruusamäe [Wed, 15 Oct 2014 19:56:21 +0000 (22:56 +0300)]
report unpackaged files
Elan Ruusamäe [Wed, 15 Oct 2014 19:42:51 +0000 (22:42 +0300)]
up to OpenSSL 1.0.1j [15 Oct 2014]:
- Fix for CVE-2014-3513
- Fix for CVE-2014-3567
- Mitigation for CVE-2014-3566 (SSL protocol vulnerability)
- Fix for CVE-2014-3568
Arkadiusz Miśkiewicz [Wed, 15 Oct 2014 04:49:05 +0000 (06:49 +0200)]
- rel 2; add support for TLS_FALLBACK_SCSV which should help mitigate latest SSLv3 SECURITY issue (CVE-2014-3566)
Elan Ruusamäe [Thu, 7 Aug 2014 07:17:56 +0000 (10:17 +0300)]
- up to 1.0.1i
- fixes for CVE-2014-3512 CVE-2014-3511 CVE-2014-3510 CVE-2014-3507
CVE-2014-3506 CVE-2014-3505 CVE-2014-3509 CVE-2014-5139 CVE-2014-3508
Arkadiusz Miśkiewicz [Thu, 5 Jun 2014 16:20:47 +0000 (18:20 +0200)]
- up to 1.0.1h; fixes:
* SSL/TLS MITM vulnerability (CVE-2014-0224)
* DTLS recursion flaw (CVE-2014-0221)
* DTLS invalid fragment vulnerability (CVE-2014-0195)
* SSL_MODE_RELEASE_BUFFERS NULL pointer dereference (CVE-2014-0198)
* SSL_MODE_RELEASE_BUFFERS session injection or denial of service (CVE-2010-5298)
* Anonymous ECDH denial of service (CVE-2014-3470)
Andrzej Zawadzki [Mon, 28 Apr 2014 12:07:27 +0000 (14:07 +0200)]
- wrong patch...
Andrzej Zawadzki [Mon, 28 Apr 2014 11:24:52 +0000 (13:24 +0200)]
- wrrr rel up...
Andrzej Zawadzki [Mon, 28 Apr 2014 11:19:42 +0000 (13:19 +0200)]
- add patch from upstream
https://rt.openssl.org/Ticket/Display.html?id=3265
and fix:
http://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=
94d1f4b0f3d262edf1cf7023a01d5404945035d5
Arkadiusz Miśkiewicz [Mon, 7 Apr 2014 20:33:47 +0000 (22:33 +0200)]
- up to 1.0.1g; fixes CVE-2014-0160, CVE-2014-0076
Arkadiusz Miśkiewicz [Sun, 19 Jan 2014 00:20:56 +0000 (01:20 +0100)]
- up to 1.0.1f; fixes CVE-2013-4353, CVE-2013-6449, CVE-2013-6450
Elan Ruusamäe [Thu, 30 May 2013 09:06:06 +0000 (12:06 +0300)]
conflict on packages not having strict openssl dependency
Arkadiusz Miśkiewicz [Fri, 17 May 2013 07:10:45 +0000 (09:10 +0200)]
- rel 2; add debian fixes
Marcin Krol [Tue, 23 Apr 2013 11:01:18 +0000 (11:01 +0000)]
- cleanup (drop Titanium stuff)
Jakub Bogusz [Tue, 12 Feb 2013 16:55:10 +0000 (17:55 +0100)]
- -j1 also for make install
Jakub Bogusz [Tue, 12 Feb 2013 16:30:18 +0000 (17:30 +0100)]
- updated to 1.0.0e (fixes CVE-2012-2686 CVE-2013-0166 CVE-2013-0169)
Jakub Bogusz [Mon, 14 Jan 2013 19:53:10 +0000 (20:53 +0100)]
- fixed and updated optflags patch
- running perlpath.pl and passing PERL to Configure is enough, no need to replace /usr/local/bin/perl manually
Arkadiusz Miśkiewicz [Sun, 13 Jan 2013 14:49:27 +0000 (15:49 +0100)]
- up to 1.0.1c
Elan Ruusamäe [Sun, 2 Sep 2012 10:05:03 +0000 (13:05 +0300)]
/var/lib/openssl -> /etc/openssl trigger improvements from AC-branch
Jan Rękorajski [Fri, 11 May 2012 09:18:53 +0000 (09:18 +0000)]
- up to 1.0.0j, fixes CVE-2012-2333
Changed files:
openssl.spec -> 1.241
Kacper Kornet [Thu, 19 Apr 2012 15:35:47 +0000 (15:35 +0000)]
- up to 1.0.0i; fixes CVE-2012-2110
Changed files:
openssl.spec -> 1.240
Jakub Bogusz [Thu, 15 Mar 2012 17:10:26 +0000 (17:10 +0000)]
- updated to 1.0.0h (fixes CVE-2012-0884 CVE-2011-4619)
Changed files:
openssl.spec -> 1.239
Jakub Bogusz [Fri, 20 Jan 2012 21:06:08 +0000 (21:06 +0000)]
- updated to 1.0.0g
Changed files:
openssl.spec -> 1.238
Arkadiusz Miśkiewicz [Tue, 10 Jan 2012 07:59:33 +0000 (07:59 +0000)]
- release 2
Changed files:
openssl.spec -> 1.237
Adam Gołębiowski [Fri, 6 Jan 2012 14:49:58 +0000 (14:49 +0000)]
- updated to 1.0.0f
- solves CVE-2011-4108, CVE-2011-4109, CVE-2011-4576, CVE-2011-4577,
CVE-2011-4619, CVE-2012-0027)
Changed files:
openssl.spec -> 1.236
Arkadiusz Miśkiewicz [Tue, 6 Sep 2011 17:00:02 +0000 (17:00 +0000)]
- up to 1.0.0e (fixes CVE-2011-3207, CVE-2011-3210, EC timming attacs)
Changed files:
openssl.spec -> 1.235
Elan Ruusamäe [Sat, 27 Aug 2011 12:22:49 +0000 (12:22 +0000)]
- tsget is perl script
Changed files:
openssl.spec -> 1.234
Arkadiusz Miśkiewicz [Wed, 6 Jul 2011 15:52:54 +0000 (15:52 +0000)]
- rel 2; enable zlib/camelia
Changed files:
openssl.spec -> 1.233
pawelz [Wed, 9 Feb 2011 00:56:50 +0000 (00:56 +0000)]
- up to 1.0.0d
- fixes CVE-2011-0014
Changed files:
openssl.spec -> 1.232
Arkadiusz Miśkiewicz [Fri, 3 Dec 2010 18:45:25 +0000 (18:45 +0000)]
- up to 1.0.0c (fixes CVE-2010-4180, CVE-2010-4252, corrects fix for CVE-2010-3864)
Changed files:
openssl-tls.patch -> 1.2
openssl.spec -> 1.231
hawk [Fri, 19 Nov 2010 10:55:26 +0000 (10:55 +0000)]
- added CVE reference in last changelog entry
Changed files:
openssl.spec -> 1.230
Arkadiusz Miśkiewicz [Wed, 17 Nov 2010 18:14:54 +0000 (18:14 +0000)]
- up to 1.0.0b + fix that makes test suite pass
Changed files:
openssl-tls.patch -> 1.1
openssl.spec -> 1.229
Elan Ruusamäe [Thu, 8 Jul 2010 14:06:42 +0000 (14:06 +0000)]
- hardcode openssl path (make which dependency optional)
Changed files:
openssl-c_rehash.sh -> 1.7
Elan Ruusamäe [Thu, 8 Jul 2010 14:05:59 +0000 (14:05 +0000)]
- export variable not value
Changed files:
openssl-c_rehash.sh -> 1.6
tommat [Wed, 23 Jun 2010 13:26:08 +0000 (13:26 +0000)]
- initial arm support
Changed files:
openssl.spec -> 1.228
Arkadiusz Miśkiewicz [Wed, 2 Jun 2010 04:33:13 +0000 (04:33 +0000)]
- up to 1.0.0a
Changed files:
openssl.spec -> 1.227
Tomasz Pala [Wed, 26 May 2010 13:19:29 +0000 (13:19 +0000)]
- already at 1.0.0
Changed files:
TODO -> 1.2
Jakub Bogusz [Wed, 26 May 2010 07:21:09 +0000 (07:21 +0000)]
- pl for -engines
Changed files:
openssl.spec -> 1.226
Tomasz Pala [Tue, 25 May 2010 23:37:11 +0000 (23:37 +0000)]
- separated engines subpackage; makes it possible to install openssl 1.0.0
next to 0.9.8n for transition as engines are not versioned and not so
commonly used anyway (most of the apps requires libs only) - %desc from ALTLinux
Changed files:
openssl.spec -> 1.225
Jan Rękorajski [Wed, 5 May 2010 13:45:30 +0000 (13:45 +0000)]
- rel 7
- fixed my breakage in c_rehash.sh
Changed files:
openssl.spec -> 1.224
Jan Rękorajski [Wed, 5 May 2010 13:45:09 +0000 (13:45 +0000)]
- fix wrong commit (my mistake)
Changed files:
openssl-c_rehash.sh -> 1.5
Jan Rękorajski [Wed, 5 May 2010 11:51:08 +0000 (11:51 +0000)]
- rel 6
- fix c_rehash.sh handling of file names with spaces
Changed files:
openssl.spec -> 1.223
Jan Rękorajski [Wed, 5 May 2010 11:49:47 +0000 (11:49 +0000)]
- use 'ls -1 *' in place of 'for f in *' to avoid problems with spaces in file names
Changed files:
openssl-c_rehash.sh -> 1.4
Elan Ruusamäe [Wed, 5 May 2010 11:32:11 +0000 (11:32 +0000)]
- force ca-certificates refresh for 1.0.0 openssl
- http://lists.pld-linux.org/mailman/pipermail/pld-devel-pl/2010-May/151486.html
- rel 5
Changed files:
openssl.spec -> 1.222
Jan Rękorajski [Wed, 5 May 2010 11:09:24 +0000 (11:09 +0000)]
- rel 4
- fix for c_rehash.sh script
Changed files:
openssl.spec -> 1.221
Jan Rękorajski [Wed, 5 May 2010 11:08:54 +0000 (11:08 +0000)]
- use echo in place of printf where possible to avoid weird format problems,
like %20 in filenames
(Updating certificates in /etc/openssl/certs... printf: %202007.p: invalid
conversion specification)
Changed files:
openssl-c_rehash.sh -> 1.3
Arkadiusz Miśkiewicz [Sun, 11 Apr 2010 06:46:00 +0000 (06:46 +0000)]
- rel 3
Changed files:
openssl.spec -> 1.220
Jakub Bogusz [Sun, 11 Apr 2010 06:20:07 +0000 (06:20 +0000)]
- resolved conflicts with arekm
Changed files:
openssl.spec -> 1.219
Jakub Bogusz [Sat, 10 Apr 2010 21:07:22 +0000 (21:07 +0000)]
- updated patches and files
Changed files:
openssl-fips_install.patch -> 1.4
openssl.spec -> 1.218
Arkadiusz Miśkiewicz [Sat, 10 Apr 2010 17:24:32 +0000 (17:24 +0000)]
- rel 2; enable md2 for compatibility with old openssl 0.x
Changed files:
openssl.spec -> 1.217
Arkadiusz Miśkiewicz [Sat, 10 Apr 2010 15:15:01 +0000 (15:15 +0000)]
- include more man pages
Changed files:
openssl.spec -> 1.216
Arkadiusz Miśkiewicz [Sat, 10 Apr 2010 14:55:55 +0000 (14:55 +0000)]
- delete non openssl_ prefixed man pages in form of groff symlinks
Changed files:
openssl.spec -> 1.215
Arkadiusz Miśkiewicz [Sat, 10 Apr 2010 11:37:03 +0000 (11:37 +0000)]
- builds, tons of unpackaged files
Changed files:
openssl.spec -> 1.214
Jakub Bogusz [Sat, 10 Apr 2010 11:17:20 +0000 (11:17 +0000)]
- updated for 1.0.0
Changed files:
openssl-alpha-ccc.patch -> 1.6
openssl-asflag.patch -> 1.2
openssl-ldflags.patch -> 1.3
openssl-man-namespace.patch -> 1.2
openssl-optflags.patch -> 1.21
Arkadiusz Miśkiewicz [Tue, 30 Mar 2010 07:19:27 +0000 (07:19 +0000)]
- fetch tarball for 1.0.0 (OPENSSL_0_9_8 constains current versions)
Changed files:
openssl.spec -> 1.213
Elan Ruusamäe [Fri, 26 Mar 2010 07:37:31 +0000 (07:37 +0000)]
- up to 0.9.8n
CVE-2010-0740 security fix release
Changed files:
openssl.spec -> 1.212
Jan Rękorajski [Wed, 24 Mar 2010 10:02:56 +0000 (10:02 +0000)]
- rel 2
- tools require which for c_rehash.sh
Changed files:
openssl.spec -> 1.211
Jakub Bogusz [Sat, 20 Mar 2010 10:04:31 +0000 (10:04 +0000)]
- updated to 0.9.8m
- updated optflags,include,fips_install patches
- fixed ldflags patch (patch Makefile.org, not generated Makefile)
- removed obsolete libvar,CVE-2009-1377-1378-1379,parallel-build,x86_64-asm patches
Changed files:
openssl-CVE-2009-1377-1378-1379.patch -> 1.2
openssl-fips_install.patch -> 1.3
openssl-include.patch -> 1.3
openssl-ldflags.patch -> 1.2
openssl-libvar.patch -> 1.2
openssl-optflags.patch -> 1.20
openssl-parallel-build.patch -> 1.2
openssl-x86_64-asm.patch -> 1.2
openssl.spec -> 1.210
Jan Rękorajski [Tue, 24 Nov 2009 11:48:02 +0000 (11:48 +0000)]
- rel 2
- moved libs and engines to /lib, openssl is needed by heimdal, which is needed
by rpcbind which must have all its libs on / in case of /usr over NFS
Changed files:
openssl.spec -> 1.209
Arkadiusz Miśkiewicz [Thu, 12 Nov 2009 12:57:01 +0000 (12:57 +0000)]
- x86_64 asm fixes
Changed files:
openssl-x86_64-asm.patch -> 1.1
openssl.spec -> 1.208
Arkadiusz Miśkiewicz [Fri, 6 Nov 2009 07:27:48 +0000 (07:27 +0000)]
- up to 0.9.8l (workarounds CVE-2009-3555 by disabling renegotiation). Doesn't build due to asm problems.
Changed files:
openssl.spec -> 1.207
Elan Ruusamäe [Mon, 26 Oct 2009 09:12:22 +0000 (09:12 +0000)]
- -ldflags.patch, -parallel-build.patch from gentoo; rel 3
Changed files:
openssl-ldflags.patch -> 1.1
openssl-parallel-build.patch -> 1.1
openssl.spec -> 1.206
Arkadiusz Miśkiewicz [Tue, 28 Jul 2009 15:44:54 +0000 (15:44 +0000)]
- rel 2; fixes CVE-2009-1377 CVE-2009-1378 CVE-2009-1379; enable tlsext and rfc3779
Changed files:
openssl-CVE-2009-1377-1378-1379.patch -> 1.1
openssl.spec -> 1.205
Arkadiusz Miśkiewicz [Tue, 28 Jul 2009 14:08:06 +0000 (14:08 +0000)]
- enable tlsext
Changed files:
openssl.spec -> 1.204
Arkadiusz Miśkiewicz [Sun, 5 Jul 2009 16:12:57 +0000 (16:12 +0000)]
- drop obsolete files
Changed files:
openssl-ca-bundle.crt -> 1.3
Paweł Gołaszewski [Mon, 25 May 2009 10:45:47 +0000 (10:45 +0000)]
- security blockers added
Changed files:
TODO -> 1.1
openssl.spec -> 1.203
Arkadiusz Miśkiewicz [Thu, 26 Mar 2009 09:20:29 +0000 (09:20 +0000)]
- up to 0.9.8k (fixes CVE-2009-0590, CVE-2009-0591, CVE-2009-0789)
Changed files:
openssl.spec -> 1.202
Arkadiusz Miśkiewicz [Thu, 26 Mar 2009 09:14:15 +0000 (09:14 +0000)]
- updated
Changed files:
openssl-fips_install.patch -> 1.2
Arkadiusz Miśkiewicz [Fri, 13 Mar 2009 13:21:28 +0000 (13:21 +0000)]
- rel 2; fix engines dir
Changed files:
openssl.spec -> 1.201
Adam Gołębiowski [Sun, 11 Jan 2009 00:23:08 +0000 (00:23 +0000)]
- CVE reference for 0.9.8j
Changed files:
openssl.spec -> 1.200
shadzik [Thu, 8 Jan 2009 12:37:02 +0000 (12:37 +0000)]
- add patch8
- builds
Changed files:
openssl.spec -> 1.199
shadzik [Thu, 8 Jan 2009 12:33:08 +0000 (12:33 +0000)]
- make fips install properly
Changed files:
openssl-fips_install.patch -> 1.1
shadzik [Thu, 8 Jan 2009 11:53:57 +0000 (11:53 +0000)]
- 0.9.8j, not tested
Changed files:
openssl.spec -> 1.198
hawk [Thu, 11 Dec 2008 22:51:47 +0000 (22:51 +0000)]
- oops! don't add symlinks as dirs for Titanium
Changed files:
openssl.spec -> 1.197
hawk [Thu, 11 Dec 2008 22:34:33 +0000 (22:34 +0000)]
- keep /var/lib/openssl as default dir in Titanium, moving to /etc/openssl
breaks too many apps and messess up stuff created manually in
/var/lib/openssl, however add symlinks in /etc/openssl to keep
compatibility with official PLD
- release 5
Changed files:
openssl.spec -> 1.196
Elan Ruusamäe [Thu, 13 Nov 2008 09:30:01 +0000 (09:30 +0000)]
- ca-certificates moved to /etc/certs; rel 4
Changed files:
openssl.spec -> 1.195
Elan Ruusamäe [Thu, 13 Nov 2008 09:28:07 +0000 (09:28 +0000)]
- ca-certificates moved to /etc/certs
Changed files:
openssl-ca-certificates.patch -> 1.1
Jan Rękorajski [Mon, 3 Nov 2008 13:25:56 +0000 (13:25 +0000)]
- rel 3
- added shell version of c_rehash script to -tools
Changed files:
openssl.spec -> 1.194
Jan Rękorajski [Mon, 3 Nov 2008 13:04:03 +0000 (13:04 +0000)]
- handle directories with spaces
Changed files:
openssl-c_rehash.sh -> 1.2
Jan Rękorajski [Mon, 3 Nov 2008 12:49:51 +0000 (12:49 +0000)]
- shell version of c_rehash perl script (Author: Ben Secrest <blsecres@gmail.com>)
Changed files:
openssl-c_rehash.sh -> 1.1
Jan Rękorajski [Sat, 1 Nov 2008 18:33:49 +0000 (18:33 +0000)]
- R: rpm-whiteout >= 1.7
Changed files:
openssl.spec -> 1.193
Jan Rękorajski [Sat, 1 Nov 2008 18:28:20 +0000 (18:28 +0000)]
- strict R on ca-certificates
Changed files:
openssl.spec -> 1.192
Jan Rękorajski [Sat, 1 Nov 2008 18:25:02 +0000 (18:25 +0000)]
- rel 2
- move /var/lib/openssl to /etc/openssl (trigger provided)
- switch ca-bundle to ca-certificates one
Changed files:
openssl.spec -> 1.191
Jan Rękorajski [Sat, 1 Nov 2008 17:07:13 +0000 (17:07 +0000)]
- use /etc/openssl/ca-certificates.crt from ca-certificates packege
Changed files:
openssl-globalCA.diff -> 1.2
Jan Rękorajski [Sat, 1 Nov 2008 13:29:15 +0000 (13:29 +0000)]
- /var/lib -> /etc
Changed files:
openssl-ssl-certificate.sh -> 1.3
Jakub Bogusz [Wed, 1 Oct 2008 18:33:48 +0000 (18:33 +0000)]
- note on ca-bundle
Changed files:
openssl.spec -> 1.190
Jakub Bogusz [Wed, 1 Oct 2008 18:27:03 +0000 (18:27 +0000)]
- added man-namespace patch, use openssl_ namespace for man links too
- added asflag patch, pass --noexecstack in ASFLAG without tampering CFLAGS;
it's sufficient to get non-exec stack with proper gcc/binutils
Changed files:
openssl.spec -> 1.189
Jakub Bogusz [Wed, 1 Oct 2008 18:24:36 +0000 (18:24 +0000)]
- use openssl_ namespace for man pages links too
Changed files:
openssl-man-namespace.patch -> 1.1
Jakub Bogusz [Wed, 1 Oct 2008 18:23:44 +0000 (18:23 +0000)]
- allow overriding ASFLAG
Changed files:
openssl-asflag.patch -> 1.1
pawelz [Mon, 29 Sep 2008 22:06:03 +0000 (22:06 +0000)]
- decrease rel (I forgot to do it in last commit)
Changed files:
openssl.spec -> 1.188
This page took 0.204142 seconds and 4 git commands to generate.