Package LibreSSL: Information

Source package: LibreSSL
Version: 2.3.6-alt1
Build time:  Jun 19, 2016, 02:34 AM in the task #166116
Copied in the task: #166117
Category: Security/Networking
Report package bug
Gear: https://git.altlinux.org/gears/L/LibreSSL.git?a=tree;hb=0bd1ea6b…
Home page: http://www.libressl.org/
License: ISC
Summary: OpenBSD fork of OpenSSL library
Description: 
LibreSSL is a version of the TLS/crypto stack forked from OpenSSL in
2014, with goals of modernizing the codebase, improving security, and
applying best practice development processes.
List of rpms provided by this srpm:
LibreSSL-devel (x86_64, i586)
LibreSSL-doc (noarch)
LibreSSL-openssl (x86_64, i586)
LibreSSL-openssl-debuginfo (x86_64, i586)
libcrypto-LibreSSL (x86_64, i586)
libcrypto-LibreSSL-debuginfo (x86_64, i586)
libssl-LibreSSL (x86_64, i586)
libssl-LibreSSL-debuginfo (x86_64, i586)
libtls (x86_64, i586)
libtls-debuginfo (x86_64, i586)
libtls-devel (x86_64, i586)
libtls-doc (noarch)
netcat-openbsd (x86_64, i586)
netcat-openbsd-debuginfo (x86_64, i586)
Maintainer: Vladimir D. Seleznev
List of contributors:
Vladimir D. Seleznev

Last changed

June 19, 2016 Vladimir D. Seleznev 2.3.6-alt1
- 2.3.6
- Correct a problem that prevents the DSA signing algorithm from running
  in constant time even if the flag BN_FLG_CONSTTIME is set.
June 1, 2016 Vladimir D. Seleznev 2.3.5-alt1
- 2.3.5
May 3, 2016 Vladimir D. Seleznev 2.3.4-alt1
- 2.3.4
- Fix multiple vulnerabilities in libcrypto relating to ASN.1 and encoding
  (From OpenSSL):
  + Memory corruption in the ASN.1 encoder (CVE-2016-2108)
  + Padding oracle in AES-NI CBC MAC check (CVE-2016-2107)
  + EVP_EncodeUpdate overflow (CVE-2016-2105)
  + EVP_EncryptUpdate overflow (CVE-2016-2106)
  + ASN.1 BIO excessive memory allocation (CVE-2016-2109)
- Minor build fixes.
- LibreSSL-openssl
  + Added conflict to openssl-doc
VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
Version: v24.4.2
Back to top