Пакет LibreSSL: Информация
Default inline alert: Версия в репозитории: 2.5.5-alt2.M80P.1
Исходный пакет: LibreSSL
Версия: 2.4.4-alt0.M80P.1
Собран: 7 ноября 2016 г. 20:59 в задании #172001
Категория: Security/Networking
Сообщить об ошибке в пакетеДомашняя страница: http://www.libressl.org/
Лицензия: ISC
О пакете: OpenBSD fork of OpenSSL library
Описание:
LibreSSL is a version of the TLS/crypto stack forked from OpenSSL in 2014, with goals of modernizing the codebase, improving security, and applying best practice development processes.
Список rpm-пакетов, предоставляемых данным srpm-пакетом:
LibreSSL-devel (x86_64, i586)
LibreSSL-doc (noarch)
libcrypto-LibreSSL (x86_64, i586)
libcrypto-LibreSSL-debuginfo (x86_64, i586)
libssl-LibreSSL (x86_64, i586)
libssl-LibreSSL-debuginfo (x86_64, i586)
libtls (x86_64, i586)
libtls-debuginfo (x86_64, i586)
libtls-devel (x86_64, i586)
libtls-doc (noarch)
netcat-tls (x86_64, i586)
netcat-tls-debuginfo (x86_64, i586)
openssl-LibreSSL (x86_64, i586)
openssl-LibreSSL-debuginfo (x86_64, i586)
LibreSSL-devel (x86_64, i586)
LibreSSL-doc (noarch)
libcrypto-LibreSSL (x86_64, i586)
libcrypto-LibreSSL-debuginfo (x86_64, i586)
libssl-LibreSSL (x86_64, i586)
libssl-LibreSSL-debuginfo (x86_64, i586)
libtls (x86_64, i586)
libtls-debuginfo (x86_64, i586)
libtls-devel (x86_64, i586)
libtls-doc (noarch)
netcat-tls (x86_64, i586)
netcat-tls-debuginfo (x86_64, i586)
openssl-LibreSSL (x86_64, i586)
openssl-LibreSSL-debuginfo (x86_64, i586)
Сопровождающий: Vladimir D. Seleznev
Последнее изменение
7 ноября 2016 г. Vladimir D. Seleznev 2.4.4-alt0.M80P.1
- Backported to P8.
7 ноября 2016 г. Vladimir D. Seleznev 2.4.4-alt1
- 2.4.4
- packaged ungziped source tarball
- changed watchfile to watch stable releases
- packaged watchfile
- Changes and fixes:
+ Avoid continual processing of an unlimited number of TLS records,
which can cause a denial-of-service condition.
+ In X509_cmp_time(), pass asn1_time_parse() the tag of the field
being parsed so that a malformed GeneralizedTime field is recognized
as an error instead of potentially being interpreted as if it was a
valid UTCTime.
+ Improve ticket validity checking when tlsext_ticket_key_cb()
callback chooses a different HMAC algorithm.
+ Check for packets with a truncated DTLS cookie.
+ Detect zero-length encrypted session data early, instead of when
malloc(0) fails or the HMAC check fails.
+ Check for and handle failure of HMAC_{Update,Final} or
EVP_DecryptUpdate()30 сентября 2016 г. Vladimir D. Seleznev 2.4.3-alt0.M80P.1
- Backport to Alt Linux P8.