Package LibreSSL: Information
Default inline alert: Version in the repository: 2.5.5-alt2.M80P.1
Source package: LibreSSL
Version: 2.4.3-alt0.M80P.1
Build time: Sep 30, 2016, 12:44 AM in the task #170139
Category: Security/Networking
Report package bugHome page: http://www.libressl.org/
License: ISC
Summary: OpenBSD fork of OpenSSL library
Description:
LibreSSL is a version of the TLS/crypto stack forked from OpenSSL in 2014, with goals of modernizing the codebase, improving security, and applying best practice development processes.
List of rpms provided by this srpm:
LibreSSL-devel (x86_64, i586)
LibreSSL-doc (noarch)
libcrypto-LibreSSL (x86_64, i586)
libcrypto-LibreSSL-debuginfo (x86_64, i586)
libssl-LibreSSL (x86_64, i586)
libssl-LibreSSL-debuginfo (x86_64, i586)
libtls (x86_64, i586)
libtls-debuginfo (x86_64, i586)
libtls-devel (x86_64, i586)
libtls-doc (noarch)
netcat-tls (x86_64, i586)
netcat-tls-debuginfo (x86_64, i586)
openssl-LibreSSL (x86_64, i586)
openssl-LibreSSL-debuginfo (x86_64, i586)
LibreSSL-devel (x86_64, i586)
LibreSSL-doc (noarch)
libcrypto-LibreSSL (x86_64, i586)
libcrypto-LibreSSL-debuginfo (x86_64, i586)
libssl-LibreSSL (x86_64, i586)
libssl-LibreSSL-debuginfo (x86_64, i586)
libtls (x86_64, i586)
libtls-debuginfo (x86_64, i586)
libtls-devel (x86_64, i586)
libtls-doc (noarch)
netcat-tls (x86_64, i586)
netcat-tls-debuginfo (x86_64, i586)
openssl-LibreSSL (x86_64, i586)
openssl-LibreSSL-debuginfo (x86_64, i586)
Maintainer: Vladimir D. Seleznev
Last changed
Sept. 30, 2016 Vladimir D. Seleznev 2.4.3-alt0.M80P.1
- Backport to Alt Linux P8.
Sept. 29, 2016 Vladimir D. Seleznev 2.4.3-alt1
- 2.4.3 - Bug fixes and reliability improvements: + Reverted change that cleans up the EVP cipher context in EVP_EncryptFinal() and EVP_DecryptFinal(). Some software relies on the previous behaviour. + Avoid unbounded memory growth in libssl, which can be triggered by a TLS client repeatedly renegotiating and sending OCSP Status Request TLS extensions. + Avoid falling back to a weak digest for (EC)DH when using SNI with libssl. - add `nc' providing - remove `netcat' providing
Aug. 3, 2016 Vladimir D. Seleznev 2.4.2-alt1
- 2.4.2 - LibreSSL + Bug fixes and improvements: - Fixed loading default certificate locations with openssl s_client. - Ensured OSCP only uses and compares GENERALIZEDTIME values as per RFC6960. Also added fixes for OCSP to work with intermediate certificates provided in responses. - Improved behavior of arc4random on Windows to not appear to leak memory in debug tools, reduced privileges of allocated memory. - Fixed incorrect results from BN_mod_word() when the modulus is too large, thanks to Brian Smith from BoringSSL. - Correctly handle an EOF prior to completing the TLS handshake in libtls. - Improved libtls ceritificate loading and cipher string validation. - Updated libtls cipher group suites into four categories: - "secure" (TLSv1.2+AEAD+PFS) - "compat" (HIGH:!aNULL) - "legacy" (HIGH:MEDIUM:!aNULL) - "insecure" (ALL:!aNULL:!eNULL) This allows for flexibility and finer grained control, rather than having two extremes. - Limited support for 'backward com - openssl-LibreSSL: + rename package from LibreSSL-openssl + remove conflict with openssl + rename binary and manpages fro openssl to openssl-LibreSSL + move some man pages to LibreSSL-doc package - netcat-tls: + rename package from netcat-openbsd + adopt many of original netcat alt and owl patches