File _service:tar_git:openssl.changes of Package openssl-upstream

* Fri Jun 29 2018 Nokius <mail@nokius.net> - 1.0.2o-git1
- [openssl] update to version 1.0.2o Fixes MER#1898

* Sun Jun 17 2018 Matti Kosola <matti.kosola@jolla.com> - 1.0.2h-git2
- [rpm] Remove undefined macro causing errors in new RPM. JB#28828
- [rpm] Remove unneeded Provides tag containing undefined macro that causes errors in new RPM. JB#28828

* Mon May 28 2018 Andrew Branson <andrew.branson@jollamobile.com> - 1.0.2h-2
- Remove undefined macro causing errors in new RPM. JB#28828

* Fri May 06 2016 lbt <david@dgreaves.com> - 1.0.2h-git1
- [openssl] Add no-asm for aarch64 build. Fixes MER#1560
- [security] Upgrade to 1.0.2h. Fixes MER#1580

* Wed May 04 2016 Niels Breet <niels.breet@jolla.com> - 1.0.2h
- Upgrade to 1.0.2h. Fixes MER#1580

* Wed Mar 02 2016 stskeeps <carsten.munk@gmail.com> - 1.0.2g-git1
- [openssl] Remove more unneeded patches.  Contributes MER#1503
- [openssl] Remove unneeded patches. Contributes MER#1503
- [security] Upgrade openssl to 1.0.2g. Fixes MER#1534
- [security] Upgrade to 1.0.2f. Fixes MER#1503

* Wed Mar 02 2016 Niels Breet <niels.breet@jolla.com> - 1.0.2g
- Upgrade to 1.0.2g. Fixes MER#1534

* Fri Feb 12 2016 Niels Breet <niels.breet@jolla.com> - 1.0.2f-git5
- [openssl] Remove more unneeded patches.  Contributes MER#1503

* Fri Feb 12 2016 Niels Breet <niels.breet@jolla.com> - 1.0.2f-git4
- [openssl] Remove unneeded patches. Contributes MER#1503
- [security] Upgrade to 1.0.2f. Fixes MER#1503

* Thu Feb 11 2016 Niels Breet <niels.breet@jolla.com> - 1.0.2f
- Upgrade to 1.0.2f. Fixes MER#1503

* Tue Aug 25 2015 Pasi Sjöholm <pasi.sjoholm@jollamobile.com> - 1.0.2d-5
- Disable SSLv3 per default. MER#1266

* Sun Aug 16 2015 Pasi Sjöholm <pasi.sjoholm@jollamobile.com> - 1.0.2d-4
- Increment version in spec and changelog due new requirements. MER#1243

* Thu Aug 13 2015 Pasi Sjöholm <pasi.sjoholm@jollamobile.com> - 1.0.2d-3
- Drop support for __secure_getenv. MER#1239

* Thu Aug 13 2015 Pasi Sjöholm <pasi.sjoholm@jollamobile.com> - 1.0.2d-2
- Fix \"undefined instructions\"-message storms. MER#1238

* Mon Jul 13 2015 Pasi Sjöholm <pasi.sjoholm@jollamobile.com> - 1.0.2d
- Upgrade/rebase to 1.0.2d. MER#1095
  Fixes several vulnerabilities including:
  [CVE-2015-4000, CVE-2015-1788, CVE-2015-1789, CVE-2015-1790,
  CVE-2015-1792, CVE-2015-1791, CVE-2014-8176, CVE-2015-1793]
  https://www.openssl.org/news/secadv_20150611.txt
  https://www.openssl.org/news/secadv_20150709.txt

* Sat Mar 21 2015 Pasi Sjöholm <pasi.sjoholm@jollamobile.com> - 1.0.1k
- Remove unused openssl-aarch64.patch
- Include fixpatch and openssl-fips.conf as source in spec-file

* Fri Mar 20 2015 Pasi Sjöholm <pasi.sjoholm@jollamobile.com> - 1.0.1k
- Fix CVE-2015-0209, CVE-2015-0286, CVE-2015-0287, CVE-2015-0288,
  CVE-2015-0289, CVE-2015-0293.
- Import fixes to openssl-1.0.1j-evp-wrap.patch from Fedora
- Check non-FIPS RSA keygen for minimal distance of p and q

* Thu Jan 22 2015 Pasi Sjöholm <pasi.sjoholm@siirappi.com> - 1.0.1k
- Revert openssl-1.0.1h-disable-sslv2v3.patch to support SSLv3

* Thu Jan 15 2015 Pasi Sjöholm <pasi.sjoholm@siirappi.com> - 1.0.1k
- Update to version 1.0.1k [CVE-2014-3571, CVE-2015-0206, CVE-2014-3569, 
  CVE-2014-3572, CVE-2015-0204, CVE-2015-0205, CVE-2014-8275, CVE-2014-3570]
  https://www.openssl.org/news/secadv_20150108.txt

* Thu Oct 16 2014 Pasi Sjöholm <pasi.sjoholm@siirappi.com> - 1.0.1j
- Update to version 1.0.1j [CVE-2014-3513, CVE-2014-3567, CVE-2014-3568]
  https://www.openssl.org/news/secadv_20141015.txt

* Mon Aug 18 2014 Pasi Sjöholm <pasi.sjoholm@jolla.com> - 1.0.1i
- Unbreak openvpn build tests by disabling no-md5-verify-patch

* Tue Aug 12 2014 Carsten Munk <carsten.munk@jolla.com> - 1.0.1i
- Make it able to detect __secure_getenv vs not and update patch, for older glibc

* Mon Aug 11 2014 Davide Bettio <davide.bettio@ispirata.com> - 1.0.1i
- Update to openssl 1.0.1i with Fedora patches
- Fixes: CVE-2014-3505, CVE-2014-3506, CVE-2014-3507, CVE-2014-3508, CVE-2014-3509,
  CVE-2014-3510, CVE-2014-3511, CVE-2014-3512, CVE-2014-5139.

* Thu Jun 05 2014 Pasi Sjöholm <pasi.sjoholm@siirappi.com> - 1.0.1h
- Update to version 1.0.1h [CVE-2014-0224,CVE-2014-0221,CVE-2014-0195,
  CVE-2014-0198,CVE-2010-5298,CVE-2014-3470]
  https://www.openssl.org/news/secadv_20140605.txt

* Thu Apr 08 2014 Islam Amer <islam.amer@jollamobile.com> - 1.0.1g
- Update to version 1.0.1g [CVE-2014-0160]

* Sun Mar 09 2014 Islam Amer <islam.amer@jollamobile.com> - 1.0.1f
- Update to 1.0.1f which fixes multiple CVEs
- Refresh patches and packaging from fedora

* Sun Mar 03 2013 Carsten Munk <carsten.munk@jollamobile.com> - 1.0.1c
- Change to utilize new dependency routines in RPM

* Thu Nov 08 2012 Carsten Munk <carsten.munk@jollamobile.com> - 1.0.1c
- Remove multilib support.

* Tue Aug 07 2012 Vasily Gurevich <vas.gurevich@gmail.com> - 1.0.1c
- Fixes MER#520: Openssl uses obsolete find.pl

* Mon Jul 02 2012 Marko Saukko <sage@merproject.org> - 1.0.1c
- Fixes MER#336: update openssl to 1.0.0j (or 1.0.1c) [CVE-2012-2333]
- Fixes MER#412: openssl is not installable on all architectures

* Mon Apr 30 2012 Marko Saukko <sage@merproject.org> - 1.0.1b
- Fixes MER#284: upgrade openssl to current version (bug fixes, minor security issue)
- Sync with fedora packaging and patches.

* Mon Feb 27 2012 Marko Saukko <marko.saukko@gmail.com> - 1.0.0g
- Fixes MER#157: Update to 1.0.0g
- Dropped part of openssl-1.0.0-beta3-defaults.patch that was in upstream.
- Dropped upstreamed patch openssl-1.0.0c-CVE-2011-0014.patch

* Sun Jan 15 2012 Carsten Munk <carsten.munk@gmail.com> - 1.0.0c
- Add openssl-linux-mips.patch for MIPS support

* Mon Jan 02 2012 Martin Brook <martin.brook100@googlemail.com> - 1.0.0c
- Add openssl-1.0.0c-remove-date-string.patch to fix https://bugs.merproject.org/show_bug.cgi?id=23

* Fri Apr 15 2011 Passion Zhao <passion.zhao@intel.com> - 1.0.0c
- Address CVE-2011-0014 (BMC#13867):OCSP stapling vulnerability in OpenSSL 
  http://www.openssl.org/news/secadv_20110208.txt

* Mon Jan 10 2011 Passion Zhao <passion.zhao@intel.com> - 1.0.0c
- Remove useless patches

* Sat Jan 01 2011 Fathi Boudra <fathi.boudra@nokia.com> - 1.0.0c
- Install libssl in /usr/lib but keep libcrypto in /lib for mount.crypt
  (BMC#7813)
- Remove patches cherry-picked upstream

* Tue Dec 21 2010 Passion Zhao <passion.zhao@intel.com> - 1.0.0c
- Upgrade to 1.0.0c (FEA#11623)

* Mon Sep 20 2010 Passion Zhao <passion.zhao@intel.com> - 0.9.8m-3
- Add openssl-0.9.8m-CVE-2010-2939.patch to fix BMC#5667
  Double free issue to cause openssl client to DoS via a crafted private key

* Wed Mar 10 2010 Passion Zhao <passion.zhao@intel.com> - 0.9.8m-2
- Add openssl_patchset_19374.diff to address CVE-2010-0433:
  where some kerberos enabled versions of OpenSSL could be crashed 
  if the relevant tables were not present

* Tue Mar 09 2010 Passion Zhao <passion.zhao@intel.com> - 0.9.8m-1
- Update to 0.9.8m, which always check bn_wexpend() return values for failure.  (CVE-2009-3245)
- Cleanup upstreamed or useless patches

* Mon Jan 18 2010 Passion Zhao <passion.zhao@intel.com> - 0.9.8l-2
- Add fix for CVE-2009-4355: openssl significant memory leak in certain SSLv3 requests

* Wed Nov 18 2009 Passion Zhao <passion.zhao@intel.com> - 0.9.8l-1
- Update to 0.9.8l, which disable renegotiation completely - this fixes CVE-2009-3555

* Fri Oct 16 2009 Passion Zhao <passion.zhao@intel.com> - 0.9.8k-5
- Add fix for CVE-2009-2409 to deprecate MD2 in SSL cert validation

* Fri Oct 02 2009 Anas Nashif <anas.nashif@intel.com> - 0.9.8k
- Disable krb5 support

* Fri Jun 05 2009 Passion Zhao <passion.zhao@intel.com> - 0.9.8k-3
- Fix CVE-2009-1387: DTLS fragment bug.(r17958)

* Wed Feb 20 2008 Fedora Release Engineering <rel-eng@fedoraproject.org> - 0.9.8g-5
- Autorebuild for GCC 4.3

* Wed Aug  2 2006 Tomas Mraz <tmraz@redhat.com> - 0.9.8b-5
- set buffering to none on stdio/stdout FILE when bufsize is set (#200580)
  patch by IBM

* Fri Jul 28 2006 Alexandre Oliva <aoliva@redhat.com> - 0.9.8b-4.1
- rebuild with new binutils (#200330)

* Fri Jul 21 2006 Tomas Mraz <tmraz@redhat.com> - 0.9.8b-4
- add a temporary workaround for sha512 test failure on s390 (#199604)
* Thu Jul 20 2006 Tomas Mraz <tmraz@redhat.com>
- add ipv6 support to s_client and s_server (by Jan Pazdziora) (#198737)
- add patches for BN threadsafety, AES cache collision attack hazard fix and
  pkcs7 code memleak fix from upstream CVS

* Wed Jul 12 2006 Jesse Keating <jkeating@redhat.com> - 0.9.8b-3.1
- rebuild

* Wed Jun 21 2006 Tomas Mraz <tmraz@redhat.com> - 0.9.8b-3
- dropped libica and ica engine from build
* Wed Jun 21 2006 Joe Orton <jorton@redhat.com>
- update to new CA bundle from mozilla.org; adds CA certificates
  from netlock.hu and startcom.org

* Mon Jun  5 2006 Tomas Mraz <tmraz@redhat.com> - 0.9.8b-2
- fixed a few rpmlint warnings
- better fix for #173399 from upstream
- upstream fix for pkcs12

* Thu May 11 2006 Tomas Mraz <tmraz@redhat.com> - 0.9.8b-1
- upgrade to new version, stays ABI compatible
- there is no more linux/config.h (it was empty anyway)

* Tue Apr  4 2006 Tomas Mraz <tmraz@redhat.com> - 0.9.8a-6
- fix stale open handles in libica (#177155)
- fix build if 'rand' or 'passwd' in buildroot path (#178782)
- initialize VIA Padlock engine (#186857)

* Fri Feb 10 2006 Jesse Keating <jkeating@redhat.com> - 0.9.8a-5.2
- bump again for double-long bug on ppc(64)

* Tue Feb 07 2006 Jesse Keating <jkeating@redhat.com> - 0.9.8a-5.1
- rebuilt for new gcc4.1 snapshot and glibc changes