dev-1.1] OpenSSL 1.1.0a [22 Sep 2016]

glen Thu, 22 Sep 2016 11:07:26 -0700

commit 11de7a963063781ba05d5b2c976a19bf6fec4d37
Author: Elan Ruusamäe <g...@delfi.ee>
Date:   Thu Sep 22 20:55:42 2016 +0300


    OpenSSL 1.1.0a [22 Sep 2016]
    
    - OCSP Status Request extension unbounded memory growth (CVE-2016-6304)
    - SSL_peek() hang on empty record (CVE-2016-6305)
    - Excessive allocation of memory in tls_get_message_header() (CVE-2016-6307)
    - Excessive allocation of memory in dtls1_preprocess_fragment() 
(CVE-2016-6308)
    
    https://www.openssl.org/news/openssl-1.1.0-notes.html

 openssl.spec | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)
---
diff --git a/openssl.spec b/openssl.spec
index 76b81b3..fa0db72 100644
--- a/openssl.spec
+++ b/openssl.spec
@@ -26,12 +26,12 @@ Name:               openssl
 # Version 1.1.0 will be supported until 2018-08-31.
 # https://www.openssl.org/about/releasestrat.html
 Version:       1.1.0a
-Release:       0.1
+Release:       1
 License:       Apache-like
 Group:         Libraries
 %if %{without snap}
 Source0:       ftp://ftp.openssl.org/source/%{name}-%{version}.tar.gz
-# Source0-md5: dbef70de4a1a4bdd78ab7c6547e5211d
+# Source0-md5: 38a0bf2883ab4951acb15b1886b7f5aa
 %else
 Source1:       
https://github.com/openssl/openssl/archive/OpenSSL_1_1_0-stable/%{name}-%{version}-dev.tar.gz
 %endif
================================================================

---- gitweb:

http://git.pld-linux.org/gitweb.cgi/packages/openssl.git/commitdiff/11de7a963063781ba05d5b2c976a19bf6fec4d37

_______________________________________________
pld-cvs-commit mailing list
pld-cvs-commit@lists.pld-linux.org
http://lists.pld-linux.org/mailman/listinfo/pld-cvs-commit

[packages/openssl/dev-1.1] OpenSSL 1.1.0a [22 Sep 2016]

Reply via email to