Commits · 34b5ba3b6010f792e66cf347fbd350cd2674bd29 · CYBER - Cyber Security / TS 103 523 MSP / TLMSP / TLMSP OpenSSL

18 Nov, 2012 1 commit

PR: 2880 · 34b5ba3b

Dr. Stephen Henson authored Nov 18, 2012

Submitted by: "Florian RÃ¼chel" <florian.ruechel@ruhr-uni-bochum.de>

Correctly handle local machine keys in the capi ENGINE.

34b5ba3b

16 Oct, 2012 1 commit
- aix[64]-cc: get MT support right [from HEAD]. · 629ac4b4
  Andy Polyakov authored Oct 16, 2012
```
PR: 2896
```
  629ac4b4
05 Oct, 2012 4 commits
- Fix EC_KEY initialization race. · 75f0bc4f
  Bodo Möller authored Oct 05, 2012
```
Submitted by: Adam Langley
```
  75f0bc4f
- backport OCSP fix enhancement · 71a2440e
  Dr. Stephen Henson authored Oct 05, 2012
  
  71a2440e
- Update CHANGES for OCSP fix. · 04e40739
  Ben Laurie authored Oct 05, 2012
  
  04e40739
- Backport OCSP fix. · 48bcdad0
  Ben Laurie authored Oct 05, 2012
  
  48bcdad0
24 Sep, 2012 2 commits
- Fix Valgrind warning. · f7d2402c
  Bodo Möller authored Sep 24, 2012
```
Submitted by: Adam Langley
```
  f7d2402c
- * Configure: make the debug-levitte-linux{elf,noasm} less extreme. · 808f5535
  Richard Levitte authored Sep 24, 2012
  
  808f5535
21 Sep, 2012 1 commit
- * ssl/t1_enc.c (tls1_change_cipher_state): Stupid bug. Fortunately in · c06271bc
  Richard Levitte authored Sep 21, 2012
```
  debugging code that's seldom used.
```
  c06271bc
11 Sep, 2012 1 commit
- fix memory leak · 92e5882a
  Dr. Stephen Henson authored Sep 11, 2012
  
  92e5882a
05 Jul, 2012 1 commit

Remove duplicate symbol in crypto/symhacks.h · afa0580c

Richard Levitte authored Jul 05, 2012

Have the new names start in column 48, that makes it easy to see when
the 31 character limit is reached (on a 80 column display, do the math)

afa0580c

11 May, 2012 1 commit

PR: 2813 · 4baee303

Dr. Stephen Henson authored May 11, 2012

Reported by: Constantine Sapuntzakis <csapuntz@gmail.com>

Fix possible deadlock when decoding public keys.

4baee303

10 May, 2012 6 commits
- prepare for next version · db7a72b2
  Dr. Stephen Henson authored May 10, 2012
  
  db7a72b2
- update FAQ · b71e69ad
  Dr. Stephen Henson authored May 10, 2012
  
  OpenSSL_0_9_8x
  
  b71e69ad
- prepare for 0.9.8x release · f856173c
  Dr. Stephen Henson authored May 10, 2012
  
  f856173c
- update NEWS · d742f9eb
  Dr. Stephen Henson authored May 10, 2012
  
  d742f9eb
- Sanity check record length before skipping explicit IV in DTLS · 36dd4cba
  Dr. Stephen Henson authored May 10, 2012
```
to fix DoS attack.

Thanks to Codenomicon for discovering this issue using Fuzz-o-Matic
fuzzing as a service testing platform.
(CVE-2012-2333)
```
  36dd4cba
- Reported by: Solar Designer of Openwall · 3978429a
  Dr. Stephen Henson authored May 10, 2012
```
Make sure tkeylen is initialised properly when encrypting CMS messages.
```
  3978429a
04 May, 2012 1 commit
- Correct environment variable is OPENSSL_ALLOW_PROXY_CERTS. · 885945d6
  Richard Levitte authored May 04, 2012
  
  885945d6
23 Apr, 2012 7 commits
- prepare for next version · e22e7701
  Dr. Stephen Henson authored Apr 23, 2012
  
  e22e7701
- update STATUS · e0c02033
  Dr. Stephen Henson authored Apr 23, 2012
  
  OpenSSL_0_9_8w
  
  e0c02033
- correct STATUS · e1eec61e
  Dr. Stephen Henson authored Apr 23, 2012
  
  e1eec61e
- correct NEWS · 296fa128
  Dr. Stephen Henson authored Apr 23, 2012
  
  296fa128
- prepare form 0.9.8w release · 6dde222a
  Dr. Stephen Henson authored Apr 23, 2012
  
  6dde222a
- update NEWS · 391ac370
  Dr. Stephen Henson authored Apr 23, 2012
  
  391ac370
- The fix for CVE-2012-2110 did not take into account that the · 8d038a08
  Dr. Stephen Henson authored Apr 23, 2012
```
'len' argument to BUF_MEM_grow and BUF_MEM_grow_clean is an
int in OpenSSL 0.9.8, making it still vulnerable. Fix by
rejecting negative len parameter.

Thanks to the many people who reported this bug and to Tomas Hoger
<thoger@redhat.com> for supplying the fix.
```
  8d038a08
22 Apr, 2012 2 commits
- correct error code · 747c6ffd
  Dr. Stephen Henson authored Apr 22, 2012
  
  747c6ffd
- correct old FAQ answers, sync with HEAD · d4cddc54
  Dr. Stephen Henson authored Apr 22, 2012
  
  d4cddc54
19 Apr, 2012 5 commits
- prepare for next version · eb7112c1
  Dr. Stephen Henson authored Apr 19, 2012
  
  eb7112c1
- update FAQ · fef9e079
  Dr. Stephen Henson authored Apr 19, 2012
  
  OpenSSL_0_9_8v
  
  fef9e079
- prepare for 0.9.8v release · 8ab27e6e
  Dr. Stephen Henson authored Apr 19, 2012
  
  8ab27e6e
- update NEWS · 64150555
  Dr. Stephen Henson authored Apr 19, 2012
  
  64150555
- Check for potentially exploitable overflows in asn1_d2i_read_bio · 556e27b1
  Dr. Stephen Henson authored Apr 19, 2012
```
BUF_mem_grow and BUF_mem_grow_clean. Refuse attempts to shrink buffer
in CRYPTO_realloc_clean.

Thanks to Tavis Ormandy, Google Security Team, for discovering this
issue and to Adam Langley <agl@chromium.org> for fixing it. (CVE-2012-2110)
```
  556e27b1
15 Apr, 2012 1 commit
- use /fixed argument when linking FIPS targets to disable address space layout randomization · af0c009d
  Dr. Stephen Henson authored Apr 15, 2012
  
  af0c009d
31 Mar, 2012 1 commit

PR: 2778(part) · 0b1cf4a1

Dr. Stephen Henson authored Mar 31, 2012

Submitted by: John Fitzgibbon <john_fitzgibbon@yahoo.com>

Time is always encoded as 4 bytes, not sizeof(Time).

0b1cf4a1

18 Mar, 2012 1 commit
- Always use SSLv23_{client,server}_method in s_client.c and s_server.c, · a9101cdc
  Dr. Stephen Henson authored Mar 18, 2012
```
the old code came from SSLeay days before TLS was even supported.
```
  a9101cdc
12 Mar, 2012 4 commits
- prepare for next version · e351e2a7
  Dr. Stephen Henson authored Mar 12, 2012
  
  e351e2a7
- corrected fix to PR#2711 and also cover mime_param_cmp · 21527624
  Dr. Stephen Henson authored Mar 12, 2012
  
  OpenSSL_0_9_8u
  
  21527624
- correct FAQ · ddb78328
  Dr. Stephen Henson authored Mar 12, 2012
  
  ddb78328
- prepare for release · 2fad41d1
  Dr. Stephen Henson authored Mar 12, 2012
  
  2fad41d1