aboutsummaryrefslogtreecommitdiff
path: root/CHANGES
diff options
context:
space:
mode:
authorSergey A. Osokin <osa@FreeBSD.org>2014-09-16 17:47:47 +0000
committerSergey A. Osokin <osa@FreeBSD.org>2014-09-16 17:47:47 +0000
commit1db6897e283a89576e974f66efd8eac5c37f6799 (patch)
tree210fc1a91450daffbf25d5b5ba4bafc0976b1588 /CHANGES
parentdc7dfebbe6645ffb16d7b5e6c39f0b51a955b39e (diff)
downloadports-1db6897e283a89576e974f66efd8eac5c37f6799.tar.gz
ports-1db6897e283a89576e974f66efd8eac5c37f6799.zip
Security update from 1.6.1 to 1.6.2.
<ChangeLog> *) Security: it was possible to reuse SSL sessions in unrelated contexts if a shared SSL session cache or the same TLS session ticket key was used for multiple "server" blocks (CVE-2014-3616). Thanks to Antoine Delignat-Lavaud. *) Bugfix: requests might hang if resolver was used and a DNS server returned a malformed response; the bug had appeared in 1.5.8. *) Bugfix: requests might hang if resolver was used and a timeout occurred during a DNS request. </ChangeLog>
Notes
Notes: svn path=/head/; revision=368340
Diffstat (limited to 'CHANGES')
0 files changed, 0 insertions, 0 deletions
generated by cgit v1.2.3 (git 2.25.1) at 2024-05-28 23:42:54 +0000