[packages/openssl/dev-1.1] OpenSSL 1.1.0a [22 Sep 2016]
glen
glen at pld-linux.org
Thu Sep 22 20:05:59 CEST 2016
commit 11de7a963063781ba05d5b2c976a19bf6fec4d37
Author: Elan Ruusamäe <glen at delfi.ee>
Date: Thu Sep 22 20:55:42 2016 +0300
OpenSSL 1.1.0a [22 Sep 2016]
- OCSP Status Request extension unbounded memory growth (CVE-2016-6304)
- SSL_peek() hang on empty record (CVE-2016-6305)
- Excessive allocation of memory in tls_get_message_header() (CVE-2016-6307)
- Excessive allocation of memory in dtls1_preprocess_fragment() (CVE-2016-6308)
https://www.openssl.org/news/openssl-1.1.0-notes.html
openssl.spec | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
---
diff --git a/openssl.spec b/openssl.spec
index 76b81b3..fa0db72 100644
--- a/openssl.spec
+++ b/openssl.spec
@@ -26,12 +26,12 @@ Name: openssl
# Version 1.1.0 will be supported until 2018-08-31.
# https://www.openssl.org/about/releasestrat.html
Version: 1.1.0a
-Release: 0.1
+Release: 1
License: Apache-like
Group: Libraries
%if %{without snap}
Source0: ftp://ftp.openssl.org/source/%{name}-%{version}.tar.gz
-# Source0-md5: dbef70de4a1a4bdd78ab7c6547e5211d
+# Source0-md5: 38a0bf2883ab4951acb15b1886b7f5aa
%else
Source1: https://github.com/openssl/openssl/archive/OpenSSL_1_1_0-stable/%{name}-%{version}-dev.tar.gz
%endif
================================================================
---- gitweb:
http://git.pld-linux.org/gitweb.cgi/packages/openssl.git/commitdiff/11de7a963063781ba05d5b2c976a19bf6fec4d37
More information about the pld-cvs-commit
mailing list