[packages/openssl/OPENSSL_0_9_8] up to 0.9.8y (fixes CVE-2013-0169, CVE-2013-0166)

glen glen at pld-linux.org
Tue Sep 10 08:23:52 CEST 2013

commit 320915d8e3dbe83f041628102144dda1ee7fc725
Author: Elan Ruusamäe <glen at delfi.ee>
Date:   Tue Sep 10 09:22:58 2013 +0300

    up to 0.9.8y (fixes CVE-2013-0169, CVE-2013-0166)
    - Fix for SSL/TLS/DTLS CBC plaintext recovery attack CVE-2013-0169
    - Fix OCSP bad key DoS attack CVE-2013-0166

 openssl.spec | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)
diff --git a/openssl.spec b/openssl.spec
index 7f76faa..a99c757 100644
--- a/openssl.spec
+++ b/openssl.spec
@@ -14,12 +14,12 @@ Summary(pt_BR.UTF-8):	Uma biblioteca C que fornece vários algoritmos e protocol
 Summary(ru.UTF-8):	Библиотеки и утилиты для соединений через Secure Sockets Layer
 Summary(uk.UTF-8):	Бібліотеки та утиліти для з'єднань через Secure Sockets Layer
 Name:		openssl
-Version:	0.9.8x
+Version:	0.9.8y
 Release:	1
 License:	Apache-like
 Group:		Libraries
 Source0:	ftp://ftp.openssl.org/source/%{name}-%{version}.tar.gz
-# Source0-md5:	ee17e9bc805c8cc7d0afac3b0ef78eda
+# Source0-md5:	47c7fb37f78c970f1d30aa2f9e9e26d8
 Source2:	%{name}.1.pl
 Source3:	%{name}-ssl-certificate.sh
 Source4:	%{name}-c_rehash.sh

---- gitweb:


More information about the pld-cvs-commit mailing list