vendor/openssl/1.0.1h

author: Jung-uk Kim <jkim@FreeBSD.org> 2014-06-06 20:59:29 +0000
committer: Jung-uk Kim <jkim@FreeBSD.org> 2014-06-06 20:59:29 +0000
commit: 2e22f5e2e00c1f1f599b03634ca27bb5b9ac471e (patch)
tree: a707d3fdb02faa3d4423773ae7b606febaa5e786 /CHANGES
parent: 06369e3974fbc83d3778807c090fbe69f20a27d4 (diff)
download: src-test2-2e22f5e2e00c1f1f599b03634ca27bb5b9ac471e.tar.gz
src-test2-2e22f5e2e00c1f1f599b03634ca27bb5b9ac471e.zip
1 files changed, 44 insertions, 0 deletions
diff --git a/CHANGES b/CHANGES
index 4fcfd1d4be45..d161ecaf2953 100644
--- a/CHANGES
+++ b/CHANGES
@@ -2,6 +2,50 @@
  OpenSSL CHANGES
  _______________
 
+ Changes between 1.0.1g and 1.0.1h [5 Jun 2014]
+
+  *) Fix for SSL/TLS MITM flaw. An attacker using a carefully crafted
+     handshake can force the use of weak keying material in OpenSSL
+     SSL/TLS clients and servers.
+
+     Thanks to KIKUCHI Masashi (Lepidum Co. Ltd.) for discovering and
+     researching this issue. (CVE-2014-0224)
+     [KIKUCHI Masashi, Steve Henson]
+
+  *) Fix DTLS recursion flaw. By sending an invalid DTLS handshake to an
+     OpenSSL DTLS client the code can be made to recurse eventually crashing
+     in a DoS attack.
+
+     Thanks to Imre Rad (Search-Lab Ltd.) for discovering this issue.
+     (CVE-2014-0221)
+     [Imre Rad, Steve Henson]
+
+  *) Fix DTLS invalid fragment vulnerability. A buffer overrun attack can
+     be triggered by sending invalid DTLS fragments to an OpenSSL DTLS
+     client or server. This is potentially exploitable to run arbitrary
+     code on a vulnerable client or server.
+
+     Thanks to J�ri Aedla for reporting this issue. (CVE-2014-0195)
+     [J�ri Aedla, Steve Henson]
+
+  *) Fix bug in TLS code where clients enable anonymous ECDH ciphersuites
+     are subject to a denial of service attack.
+
+     Thanks to Felix Gr�bert and Ivan Fratric at Google for discovering
+     this issue. (CVE-2014-3470)
+     [Felix Gr�bert, Ivan Fratric, Steve Henson]
+
+  *) Harmonize version and its documentation. -f flag is used to display
+     compilation flags.
+     [mancha <mancha1@zoho.com>]
+
+  *) Fix eckey_priv_encode so it immediately returns an error upon a failure
+     in i2d_ECPrivateKey.
+     [mancha <mancha1@zoho.com>]
+
+  *) Fix some double frees. These are not thought to be exploitable.
+     [mancha <mancha1@zoho.com>]
+
  Changes between 1.0.1f and 1.0.1g [7 Apr 2014]
 
   *) A missing bounds check in the handling of the TLS heartbeat extension
author	Jung-uk Kim <jkim@FreeBSD.org>	2014-06-06 20:59:29 +0000
committer	Jung-uk Kim <jkim@FreeBSD.org>	2014-06-06 20:59:29 +0000
commit	2e22f5e2e00c1f1f599b03634ca27bb5b9ac471e (patch)
tree	a707d3fdb02faa3d4423773ae7b606febaa5e786 /CHANGES
parent	06369e3974fbc83d3778807c090fbe69f20a27d4 (diff)
download	src-test2-2e22f5e2e00c1f1f599b03634ca27bb5b9ac471e.tar.gz src-test2-2e22f5e2e00c1f1f599b03634ca27bb5b9ac471e.zip