diff options
author | Timo Teräs <timo.teras@iki.fi> | 2014-01-07 08:03:37 +0200 |
---|---|---|
committer | Timo Teräs <timo.teras@iki.fi> | 2014-01-07 08:04:34 +0200 |
commit | be0d0a4451a7e1bca824949ec8fd32e20a33c9f6 (patch) | |
tree | 123c5ba35b604c66311d9bf73199280317dd4fda /main/openssl/openssl-disable-rdrand-default.patch | |
parent | b863af9870ec9b963a1d7f903ee51aae24086062 (diff) | |
download | aports-be0d0a4451a7e1bca824949ec8fd32e20a33c9f6.tar.bz2 aports-be0d0a4451a7e1bca824949ec8fd32e20a33c9f6.tar.xz |
main/openssl: security upgrade to 1.0.1f
* Don't include gmt_unix_time in TLS server and client random values
* Fix for TLS record tampering bug CVE-2013-4353
* Fix for TLS version checking bug CVE-2013-6449
* Fix for DTLS retransmission bug CVE-2013-6450
Diffstat (limited to 'main/openssl/openssl-disable-rdrand-default.patch')
-rw-r--r-- | main/openssl/openssl-disable-rdrand-default.patch | 23 |
1 files changed, 0 insertions, 23 deletions
diff --git a/main/openssl/openssl-disable-rdrand-default.patch b/main/openssl/openssl-disable-rdrand-default.patch deleted file mode 100644 index d9a40d294..000000000 --- a/main/openssl/openssl-disable-rdrand-default.patch +++ /dev/null @@ -1,23 +0,0 @@ -http://seclists.org/fulldisclosure/2013/Dec/99 - -From: Dr. Stephen Henson <steve@openssl.org> -Date: Wed, 11 Dec 2013 14:45:12 +0000 (+0000) -Subject: Don't use rdrand engine as default unless explicitly requested. -X-Git-Url: http://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff_plain;h=8a1956f3eac8b164f8c741ff1a259008bab3bac1 - -Don't use rdrand engine as default unless explicitly requested. -(cherry picked from commit 16898401bd47a153fbf799127ff57fdcfcbd324f) ---- - -diff --git a/crypto/engine/eng_rdrand.c b/crypto/engine/eng_rdrand.c -index a9ba5ae..4e9e91d 100644 ---- a/crypto/engine/eng_rdrand.c -+++ b/crypto/engine/eng_rdrand.c -@@ -104,6 +104,7 @@ static int bind_helper(ENGINE *e) - { - if (!ENGINE_set_id(e, engine_e_rdrand_id) || - !ENGINE_set_name(e, engine_e_rdrand_name) || -+ !ENGINE_set_flags(e, ENGINE_FLAGS_NO_REGISTER_ALL) || - !ENGINE_set_init_function(e, rdrand_init) || - !ENGINE_set_RAND(e, &rdrand_meth) ) - return 0; |