Search
SailfishOS Open Build Service
>
Projects
>
home:Nokius
:
mer-playgound
>
openssl-upstream
> _service:tar_git:openssl.changes
Log In
Username
Password
Cancel
Overview
Repositories
Revisions
Requests
Users
Advanced
Attributes
Meta
File _service:tar_git:openssl.changes of Package openssl-upstream
* Fri Jun 29 2018 Nokius <mail@nokius.net> - 1.0.2o-git1 - [openssl] update to version 1.0.2o Fixes MER#1898 * Sun Jun 17 2018 Matti Kosola <matti.kosola@jolla.com> - 1.0.2h-git2 - [rpm] Remove undefined macro causing errors in new RPM. JB#28828 - [rpm] Remove unneeded Provides tag containing undefined macro that causes errors in new RPM. JB#28828 * Mon May 28 2018 Andrew Branson <andrew.branson@jollamobile.com> - 1.0.2h-2 - Remove undefined macro causing errors in new RPM. JB#28828 * Fri May 06 2016 lbt <david@dgreaves.com> - 1.0.2h-git1 - [openssl] Add no-asm for aarch64 build. Fixes MER#1560 - [security] Upgrade to 1.0.2h. Fixes MER#1580 * Wed May 04 2016 Niels Breet <niels.breet@jolla.com> - 1.0.2h - Upgrade to 1.0.2h. Fixes MER#1580 * Wed Mar 02 2016 stskeeps <carsten.munk@gmail.com> - 1.0.2g-git1 - [openssl] Remove more unneeded patches. Contributes MER#1503 - [openssl] Remove unneeded patches. Contributes MER#1503 - [security] Upgrade openssl to 1.0.2g. Fixes MER#1534 - [security] Upgrade to 1.0.2f. Fixes MER#1503 * Wed Mar 02 2016 Niels Breet <niels.breet@jolla.com> - 1.0.2g - Upgrade to 1.0.2g. Fixes MER#1534 * Fri Feb 12 2016 Niels Breet <niels.breet@jolla.com> - 1.0.2f-git5 - [openssl] Remove more unneeded patches. Contributes MER#1503 * Fri Feb 12 2016 Niels Breet <niels.breet@jolla.com> - 1.0.2f-git4 - [openssl] Remove unneeded patches. Contributes MER#1503 - [security] Upgrade to 1.0.2f. Fixes MER#1503 * Thu Feb 11 2016 Niels Breet <niels.breet@jolla.com> - 1.0.2f - Upgrade to 1.0.2f. Fixes MER#1503 * Tue Aug 25 2015 Pasi Sjöholm <pasi.sjoholm@jollamobile.com> - 1.0.2d-5 - Disable SSLv3 per default. MER#1266 * Sun Aug 16 2015 Pasi Sjöholm <pasi.sjoholm@jollamobile.com> - 1.0.2d-4 - Increment version in spec and changelog due new requirements. MER#1243 * Thu Aug 13 2015 Pasi Sjöholm <pasi.sjoholm@jollamobile.com> - 1.0.2d-3 - Drop support for __secure_getenv. MER#1239 * Thu Aug 13 2015 Pasi Sjöholm <pasi.sjoholm@jollamobile.com> - 1.0.2d-2 - Fix \"undefined instructions\"-message storms. MER#1238 * Mon Jul 13 2015 Pasi Sjöholm <pasi.sjoholm@jollamobile.com> - 1.0.2d - Upgrade/rebase to 1.0.2d. MER#1095 Fixes several vulnerabilities including: [CVE-2015-4000, CVE-2015-1788, CVE-2015-1789, CVE-2015-1790, CVE-2015-1792, CVE-2015-1791, CVE-2014-8176, CVE-2015-1793] https://www.openssl.org/news/secadv_20150611.txt https://www.openssl.org/news/secadv_20150709.txt * Sat Mar 21 2015 Pasi Sjöholm <pasi.sjoholm@jollamobile.com> - 1.0.1k - Remove unused openssl-aarch64.patch - Include fixpatch and openssl-fips.conf as source in spec-file * Fri Mar 20 2015 Pasi Sjöholm <pasi.sjoholm@jollamobile.com> - 1.0.1k - Fix CVE-2015-0209, CVE-2015-0286, CVE-2015-0287, CVE-2015-0288, CVE-2015-0289, CVE-2015-0293. - Import fixes to openssl-1.0.1j-evp-wrap.patch from Fedora - Check non-FIPS RSA keygen for minimal distance of p and q * Thu Jan 22 2015 Pasi Sjöholm <pasi.sjoholm@siirappi.com> - 1.0.1k - Revert openssl-1.0.1h-disable-sslv2v3.patch to support SSLv3 * Thu Jan 15 2015 Pasi Sjöholm <pasi.sjoholm@siirappi.com> - 1.0.1k - Update to version 1.0.1k [CVE-2014-3571, CVE-2015-0206, CVE-2014-3569, CVE-2014-3572, CVE-2015-0204, CVE-2015-0205, CVE-2014-8275, CVE-2014-3570] https://www.openssl.org/news/secadv_20150108.txt * Thu Oct 16 2014 Pasi Sjöholm <pasi.sjoholm@siirappi.com> - 1.0.1j - Update to version 1.0.1j [CVE-2014-3513, CVE-2014-3567, CVE-2014-3568] https://www.openssl.org/news/secadv_20141015.txt * Mon Aug 18 2014 Pasi Sjöholm <pasi.sjoholm@jolla.com> - 1.0.1i - Unbreak openvpn build tests by disabling no-md5-verify-patch * Tue Aug 12 2014 Carsten Munk <carsten.munk@jolla.com> - 1.0.1i - Make it able to detect __secure_getenv vs not and update patch, for older glibc * Mon Aug 11 2014 Davide Bettio <davide.bettio@ispirata.com> - 1.0.1i - Update to openssl 1.0.1i with Fedora patches - Fixes: CVE-2014-3505, CVE-2014-3506, CVE-2014-3507, CVE-2014-3508, CVE-2014-3509, CVE-2014-3510, CVE-2014-3511, CVE-2014-3512, CVE-2014-5139. * Thu Jun 05 2014 Pasi Sjöholm <pasi.sjoholm@siirappi.com> - 1.0.1h - Update to version 1.0.1h [CVE-2014-0224,CVE-2014-0221,CVE-2014-0195, CVE-2014-0198,CVE-2010-5298,CVE-2014-3470] https://www.openssl.org/news/secadv_20140605.txt * Thu Apr 08 2014 Islam Amer <islam.amer@jollamobile.com> - 1.0.1g - Update to version 1.0.1g [CVE-2014-0160] * Sun Mar 09 2014 Islam Amer <islam.amer@jollamobile.com> - 1.0.1f - Update to 1.0.1f which fixes multiple CVEs - Refresh patches and packaging from fedora * Sun Mar 03 2013 Carsten Munk <carsten.munk@jollamobile.com> - 1.0.1c - Change to utilize new dependency routines in RPM * Thu Nov 08 2012 Carsten Munk <carsten.munk@jollamobile.com> - 1.0.1c - Remove multilib support. * Tue Aug 07 2012 Vasily Gurevich <vas.gurevich@gmail.com> - 1.0.1c - Fixes MER#520: Openssl uses obsolete find.pl * Mon Jul 02 2012 Marko Saukko <sage@merproject.org> - 1.0.1c - Fixes MER#336: update openssl to 1.0.0j (or 1.0.1c) [CVE-2012-2333] - Fixes MER#412: openssl is not installable on all architectures * Mon Apr 30 2012 Marko Saukko <sage@merproject.org> - 1.0.1b - Fixes MER#284: upgrade openssl to current version (bug fixes, minor security issue) - Sync with fedora packaging and patches. * Mon Feb 27 2012 Marko Saukko <marko.saukko@gmail.com> - 1.0.0g - Fixes MER#157: Update to 1.0.0g - Dropped part of openssl-1.0.0-beta3-defaults.patch that was in upstream. - Dropped upstreamed patch openssl-1.0.0c-CVE-2011-0014.patch * Sun Jan 15 2012 Carsten Munk <carsten.munk@gmail.com> - 1.0.0c - Add openssl-linux-mips.patch for MIPS support * Mon Jan 02 2012 Martin Brook <martin.brook100@googlemail.com> - 1.0.0c - Add openssl-1.0.0c-remove-date-string.patch to fix https://bugs.merproject.org/show_bug.cgi?id=23 * Fri Apr 15 2011 Passion Zhao <passion.zhao@intel.com> - 1.0.0c - Address CVE-2011-0014 (BMC#13867):OCSP stapling vulnerability in OpenSSL http://www.openssl.org/news/secadv_20110208.txt * Mon Jan 10 2011 Passion Zhao <passion.zhao@intel.com> - 1.0.0c - Remove useless patches * Sat Jan 01 2011 Fathi Boudra <fathi.boudra@nokia.com> - 1.0.0c - Install libssl in /usr/lib but keep libcrypto in /lib for mount.crypt (BMC#7813) - Remove patches cherry-picked upstream * Tue Dec 21 2010 Passion Zhao <passion.zhao@intel.com> - 1.0.0c - Upgrade to 1.0.0c (FEA#11623) * Mon Sep 20 2010 Passion Zhao <passion.zhao@intel.com> - 0.9.8m-3 - Add openssl-0.9.8m-CVE-2010-2939.patch to fix BMC#5667 Double free issue to cause openssl client to DoS via a crafted private key * Wed Mar 10 2010 Passion Zhao <passion.zhao@intel.com> - 0.9.8m-2 - Add openssl_patchset_19374.diff to address CVE-2010-0433: where some kerberos enabled versions of OpenSSL could be crashed if the relevant tables were not present * Tue Mar 09 2010 Passion Zhao <passion.zhao@intel.com> - 0.9.8m-1 - Update to 0.9.8m, which always check bn_wexpend() return values for failure. (CVE-2009-3245) - Cleanup upstreamed or useless patches * Mon Jan 18 2010 Passion Zhao <passion.zhao@intel.com> - 0.9.8l-2 - Add fix for CVE-2009-4355: openssl significant memory leak in certain SSLv3 requests * Wed Nov 18 2009 Passion Zhao <passion.zhao@intel.com> - 0.9.8l-1 - Update to 0.9.8l, which disable renegotiation completely - this fixes CVE-2009-3555 * Fri Oct 16 2009 Passion Zhao <passion.zhao@intel.com> - 0.9.8k-5 - Add fix for CVE-2009-2409 to deprecate MD2 in SSL cert validation * Fri Oct 02 2009 Anas Nashif <anas.nashif@intel.com> - 0.9.8k - Disable krb5 support * Fri Jun 05 2009 Passion Zhao <passion.zhao@intel.com> - 0.9.8k-3 - Fix CVE-2009-1387: DTLS fragment bug.(r17958) * Wed Feb 20 2008 Fedora Release Engineering <rel-eng@fedoraproject.org> - 0.9.8g-5 - Autorebuild for GCC 4.3 * Wed Aug 2 2006 Tomas Mraz <tmraz@redhat.com> - 0.9.8b-5 - set buffering to none on stdio/stdout FILE when bufsize is set (#200580) patch by IBM * Fri Jul 28 2006 Alexandre Oliva <aoliva@redhat.com> - 0.9.8b-4.1 - rebuild with new binutils (#200330) * Fri Jul 21 2006 Tomas Mraz <tmraz@redhat.com> - 0.9.8b-4 - add a temporary workaround for sha512 test failure on s390 (#199604) * Thu Jul 20 2006 Tomas Mraz <tmraz@redhat.com> - add ipv6 support to s_client and s_server (by Jan Pazdziora) (#198737) - add patches for BN threadsafety, AES cache collision attack hazard fix and pkcs7 code memleak fix from upstream CVS * Wed Jul 12 2006 Jesse Keating <jkeating@redhat.com> - 0.9.8b-3.1 - rebuild * Wed Jun 21 2006 Tomas Mraz <tmraz@redhat.com> - 0.9.8b-3 - dropped libica and ica engine from build * Wed Jun 21 2006 Joe Orton <jorton@redhat.com> - update to new CA bundle from mozilla.org; adds CA certificates from netlock.hu and startcom.org * Mon Jun 5 2006 Tomas Mraz <tmraz@redhat.com> - 0.9.8b-2 - fixed a few rpmlint warnings - better fix for #173399 from upstream - upstream fix for pkcs12 * Thu May 11 2006 Tomas Mraz <tmraz@redhat.com> - 0.9.8b-1 - upgrade to new version, stays ABI compatible - there is no more linux/config.h (it was empty anyway) * Tue Apr 4 2006 Tomas Mraz <tmraz@redhat.com> - 0.9.8a-6 - fix stale open handles in libica (#177155) - fix build if 'rand' or 'passwd' in buildroot path (#178782) - initialize VIA Padlock engine (#186857) * Fri Feb 10 2006 Jesse Keating <jkeating@redhat.com> - 0.9.8a-5.2 - bump again for double-long bug on ppc(64) * Tue Feb 07 2006 Jesse Keating <jkeating@redhat.com> - 0.9.8a-5.1 - rebuilt for new gcc4.1 snapshot and glibc changes