Four new zips for Win32 and Win64 versions of OpenSSL 1.1.0i and 1.0.2p can now be downloadable from the Wiki at:
http://wiki.overbyte.eu/wiki/index.php/ICS_Download I have not added these to SVN since OpenSSL 1.1.1 is due to be released within the next month and will replace 1.1.0. There are two low priority security fixes: Client DoS due to large DH parameter (CVE-2018-0732) Cache timing vulnerability in RSA Key Generation (CVE-2018-0737) And a number of bug fixes, including one relating to checking the dates in X509 SSL certificates to fix bugs with dates beyond 2050 and with fractional times. Cisco is concerned that this change may cause a problem with certificates embedded in appliances without accurate time, which is still being investigated. Essentially the time standard was clarified 10 years ago, and old kit may still be out whose certificates may now fail validation. Angus -- To unsubscribe or change your settings for TWSocket mailing list please goto http://lists.elists.org/cgi-bin/mailman/listinfo/twsocket Visit our website at http://www.overbyte.be
