CVSROOT: /cvs Module name: ports Changes by: st...@cvs.openbsd.org 2016/09/26 05:11:42
Modified files:
security/openssl: Makefile distinfo
Log message:
update to OpenSSL 1.0.2j, "A bug fix which included a CRL sanity check
was added to OpenSSL 1.1.0 but was omitted from OpenSSL 1.0.2i. As a
result any attempt to use CRLs in OpenSSL 1.0.2i will crash with a null
pointer exception."
(not moved to 1.1.0 yet, so today's critical fix for CVE-2016-6309
doesn't apply).
