| Commit message (Collapse) | Author | Age | Files | Lines |
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Sanity-check string lengths in order to stop OpenSSL crashing
when printing corrupt BMPString or UniversalString objects. [09:08]
Security: FreeBSD-SA-09:07.libc
Security: FreeBSD-SA-09:08.openssl
Security: CVE-2009-0590
Approved by: re (kensmith)
Approved by: so (cperciva)
Notes:
svn path=/releng/7.0/; revision=191381
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
long commands into multiple requests. [09:01]
Fix incorrect OpenSSL checks for malformed signatures due to invalid
check of return value from EVP_VerifyFinal(), DSA_verify, and
DSA_do_verify. [09:02]
Security: FreeBSD-SA-09:01.lukemftpd
Security: FreeBSD-SA-09:02.openssl
Obtained from: NetBSD [SA-09:01]
Obtained from: OpenSSL Project [SA-09:02]
Approved by: so (simon)
Notes:
svn path=/releng/7.0/; revision=186872
|
|
|
|
|
|
|
|
|
|
| |
attempts to bind ports for X11 forwarding.
Security: FreeBSD-SA-08:05.openssh
Approved by: so (cperciva)
Notes:
svn path=/releng/7.0/; revision=178263
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Unbreak detection of cryptodev support for FreeBSD which was broken
with OpenSSL 0.9.8 import.
Note that this does not enable cryptodev by default, as it was the
case with OpenSSL 0.9.7 in FreeBSD base, but this change makes it
possible to enable cryptodev at all.
Approved by: re (kensmith)
Notes:
svn path=/releng/7.0/; revision=176007
|
|
|
|
|
|
|
|
|
| |
freebsd.org cluster any more.
Approved by: re (kensmith)
Notes:
svn path=/stable/7/; revision=173158
|
|
|
|
|
|
|
|
|
| |
Security: CVE-2007-4995
Security: http://www.openssl.org/news/secadv_20071012.txt
Approved by: re (kensmith)
Notes:
svn path=/stable/7/; revision=172778
|
|
|
|
|
|
|
|
| |
Security: FreeBSD-SA-07:08.openssl
Approved by: re (security blanket)
Notes:
svn path=/head/; revision=172429
|
|
|
|
| |
Notes:
svn path=/head/; revision=169966
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
casts a bit less evil.
This was e.g. seen when using portsnap as:
Fetching snapshot tag from portsnap3.FreeBSD.org... Illegal instruction
Note the patch is slightly different from kan's original patch to
match style in the OpenSSL source files a bit better.
Submitted by: kan
Tested by: many
Notes:
svn path=/head/; revision=169883
|
|
|
|
|
|
|
| |
- Add reminder to bump version numer in Makefile.inc.
Notes:
svn path=/head/; revision=167620
|
|\
| |
| |
| |
| |
| |
| | |
which included commits to RCS files with non-trunk default branches.
Notes:
svn path=/head/; revision=167618
|
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
EVP_CIPHER_CTX_key_length() should return the set key length
in the EVP_CIPHER_CTX structure which may not be the same as
the underlying cipher key length for variable length ciphers.
This fixes problems in OpenSSH using some ciphers, and possibly other
applications.
See also: http://bugzilla.mindrot.org/show_bug.cgi?id=1291
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=167617
|
| |
| |
| |
| | |
Notes:
svn path=/head/; revision=167615
|
|\|
| |
| |
| |
| |
| |
| | |
which included commits to RCS files with non-trunk default branches.
Notes:
svn path=/head/; revision=167613
|
| |
| |
| |
| | |
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=167612
|
| |
| |
| |
| | |
Notes:
svn path=/head/; revision=164149
|
|\ \
| | |
| | |
| | |
| | |
| | |
| | | |
which included commits to RCS files with non-trunk default branches.
Notes:
svn path=/head/; revision=164147
|
| | |
| | |
| | |
| | | |
Notes:
svn path=/vendor-crypto/openssh/dist/; revision=164146
|
| | |
| | |
| | |
| | | |
Notes:
svn path=/vendor-crypto/openssh/dist/; revision=163002
|
| | |
| | |
| | |
| | | |
Notes:
svn path=/vendor-crypto/openssh/dist/; revision=162955
|
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
line or rely on the built-in default.
Notes:
svn path=/head/; revision=163054
|
| | |
| | |
| | |
| | | |
Notes:
svn path=/head/; revision=163004
|
| | |
| | |
| | |
| | | |
Notes:
svn path=/head/; revision=163003
|
| | |
| | |
| | |
| | | |
Notes:
svn path=/head/; revision=162984
|
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
conditionals that changed in this revision.
Notes:
svn path=/head/; revision=162953
|
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
The section about our local changes needs reviewing, and some of those
changes should probably be reconsidered (such as preferring DSA over RSA,
which made sense when RSA was encumbered but probably doesn't any more)
Notes:
svn path=/head/; revision=162952
|
|\ \ \
| | |/
| |/|
| | |
| | |
| | |
| | | |
which included commits to RCS files with non-trunk default branches.
Notes:
svn path=/head/; revision=162917
|
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
Fix uninitialized free of ctx in compute_key() when the
OPENSSL_DH_MAX_MODULUS_BITS check is triggered.
This fixes the same issue as FreeBSD-SA-06:23.openssl v1.1.
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=162916
|
| | |
| | |
| | |
| | | |
Notes:
svn path=/head/; revision=162914
|
|\| |
| | |
| | |
| | |
| | |
| | |
| | | |
which included commits to RCS files with non-trunk default branches.
Notes:
svn path=/head/; revision=162912
|
| | |
| | |
| | |
| | | |
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=162911
|
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
MFC after: 1 week
Notes:
svn path=/head/; revision=162860
|
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
off the vendor branch.
MFC after: 1 week
Notes:
svn path=/head/; revision=162859
|
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
MFC after: 1 week
Notes:
svn path=/head/; revision=162858
|
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
MFC after: 1 week
Notes:
svn path=/head/; revision=162857
|
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
MFC after: 1 week
Notes:
svn path=/head/; revision=162856
|
|\ \ \
| | |/
| |/|
| | |
| | |
| | |
| | | |
which included commits to RCS files with non-trunk default branches.
Notes:
svn path=/head/; revision=162853
|
| | |
| | |
| | |
| | | |
Notes:
svn path=/vendor-crypto/openssh/dist/; revision=162852
|
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
BSM was enabled.
Notes:
svn path=/vendor-crypto/openssh/dist/; revision=162359
|
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
MFC after: 1 week
Notes:
svn path=/head/; revision=162360
|
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
Obtained from: OpenSSL project
Security: FreeBSD-SA-06:19.openssl
Notes:
svn path=/head/; revision=162207
|
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
This was missed the first time around since eng_padlock.c was not part
of OpenSSL 0.9.7e and therefor did not have the v0_9_7e CVS tag used
during original resolve of conflicts.
Noticed by: Antoine Brodin <antoine.brodin@laposte.net>
Notes:
svn path=/head/; revision=160837
|
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
import.
Notes:
svn path=/head/; revision=160827
|
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
FreeBSD base system. Parts are inspired by the OpenSSH upgrade notes.
Notes:
svn path=/head/; revision=160826
|
| | |
| | |
| | |
| | | |
Notes:
svn path=/head/; revision=160817
|
|\ \ \
| | |/
| |/|
| | |
| | |
| | |
| | | |
which included commits to RCS files with non-trunk default branches.
Notes:
svn path=/head/; revision=160815
|
| | |
| | |
| | |
| | | |
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=160814
|
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
branch. This time, these are mostly the `Makefile.ssl' files.
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=142430
|
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
Submitted by: ache
Notes:
svn path=/head/; revision=159458
|
| | |
| | |
| | |
| | | |
Notes:
svn path=/head/; revision=159457
|