openssl096b-0.9.6b-22.46.el4_8.1.i386
[615 KiB] |
Changelog
by Tomas Mraz (2010-03-19):
- CVE-2009-3245 - add missing checks for bn_wexpand failures (#570924)
|
openssl096b-0.9.6b-22.46.el4_8.1.x86_64
[673 KiB] |
Changelog
by Tomas Mraz (2010-03-19):
- CVE-2009-3245 - add missing checks for bn_wexpand failures (#570924)
|
openssl096b-0.9.6b-22.46.el4_7.x86_64
[673 KiB] |
Changelog
by Tomas Mraz (2008-12-17):
- CVE-2008-5077 - incorrect checks for malformed signatures (#476671)
|
openssl096b-0.9.6b-22.46.el4_7.i386
[615 KiB] |
Changelog
by Tomas Mraz (2008-12-17):
- CVE-2008-5077 - incorrect checks for malformed signatures (#476671)
|
openssl096b-0.9.6b-22.46.x86_64
[672 KiB] |
Changelog
by Tomas Mraz (2006-09-28):
- fix CVE-2006-2940 - parasitic public keys DoS (#207274)
- fix CVE-2006-3738 - buffer overflow in SSL_get_shared_ciphers (#206940)
- fix CVE-2006-4343 - sslv2 client DoS (#206940)
|
openssl096b-0.9.6b-22.46.i386
[614 KiB] |
Changelog
by Tomas Mraz (2006-09-28):
- fix CVE-2006-2940 - parasitic public keys DoS (#207274)
- fix CVE-2006-3738 - buffer overflow in SSL_get_shared_ciphers (#206940)
- fix CVE-2006-4343 - sslv2 client DoS (#206940)
|
openssl096b-0.9.6b-22.43.i386
[614 KiB] |
Changelog
by Tomas Mraz (2006-09-09):
- fix CVE-2006-4339 - prevent attack on PKCS#1 v1.5 signatures (#205180)
|
openssl096b-0.9.6b-22.43.x86_64
[672 KiB] |
Changelog
by Tomas Mraz (2006-09-09):
- fix CVE-2006-4339 - prevent attack on PKCS#1 v1.5 signatures (#205180)
|
openssl096b-0.9.6b-22.42.x86_64
[672 KiB] |
Changelog
by Tomas Mraz (2005-10-31):
- fix CVE-2004-0079 - prevent a null pointer assignment in
do_change_cipher_spec()
- add security fix for CVE-2003-0851 to sync with 2.1AS
|
openssl096b-0.9.6b-22.42.i386
[614 KiB] |
Changelog
by Tomas Mraz (2005-10-31):
- fix CVE-2004-0079 - prevent a null pointer assignment in
do_change_cipher_spec()
- add security fix for CVE-2003-0851 to sync with 2.1AS
|
openssl096b-0.9.6b-22.4.i386
[613 KiB] |
Changelog
by Tomas Mraz (2005-10-06):
- fix CAN-2005-2969 - remove SSL_OP_MSIE_SSLV2_RSA_PADDING which
disables the countermeasure against man in the middle attack in SSLv2
(#169863)
- more fixes for constant time/memory access for DSA signature algorithm
|
openssl096b-0.9.6b-22.4.x86_64
[671 KiB] |
Changelog
by Tomas Mraz (2005-10-06):
- fix CAN-2005-2969 - remove SSL_OP_MSIE_SSLV2_RSA_PADDING which
disables the countermeasure against man in the middle attack in SSLv2
(#169863)
- more fixes for constant time/memory access for DSA signature algorithm
|
openssl096b-0.9.6b-22.3.i386
[612 KiB] |
Changelog
by Tomas Mraz (2005-05-23):
- replaced add-luna patch with new one with right license (#158061)
|
openssl096b-0.9.6b-22.3.x86_64
[671 KiB] |
Changelog
by Tomas Mraz (2005-05-23):
- replaced add-luna patch with new one with right license (#158061)
|