src/secure, branch releng/8.4

src/secure, branch releng/8.4 FreeBSD source tree https://cgit-dev.freebsd.org/src/atom?h=releng%2F8.4 2015-03-19T17:42:38Z Fix multiple OpenSSL vulnerabilities. 2015-03-19T17:42:38Z Xin LI delphij@FreeBSD.org 2015-03-19T17:42:38Z urn:sha1:1aad402120001a2ec3f1c329065b5415b4e44526 Security: FreeBSD-SA-15:06.openssl Security: CVE-2015-0209 Security: CVE-2015-0286 Security: CVE-2015-0287 Security: CVE-2015-0288 Security: CVE-2015-0289 Security: CVE-2015-0293 Approved by: so Fix integer overflow in IGMP protocol. [SA-15:04] 2015-02-25T05:56:54Z Xin LI delphij@FreeBSD.org 2015-02-25T05:56:54Z urn:sha1:99fd9fc5a1e6c148f0fb1ab97d695afaab18b6e8 Fix BIND remote denial of service vulnerability. [SA-15:05] Fix vt(4) crash with improper ioctl parameters. [EN-15:01] Updated base system OpenSSL to 0.9.8zd. [EN-15:02] Fix freebsd-update libraries update ordering issue. [EN-15:03] Approved by: so Diff reduction against stable/9: this is a pure mechanical comment 2013-03-16T01:16:57Z Xin LI delphij@FreeBSD.org 2013-03-16T01:16:57Z urn:sha1:64ab21cf24d1862bb72e58d6d7eaa9bd75edea7d change that eliminates the unwanted diff caused by different Pod::Simple version and have no runtime impact. We do this in the hope of minimizing variants of patches that would need to be published, should an update is required during the remaining lifetime of the stable/8 branch. This is a direct commit to the stable/8 branch. Approved by: re (marius) Merge OpenSSL 0.9.8y. This is a direct commit to stable/8 as HEAD is on a 2013-03-08T17:28:40Z Xin LI delphij@FreeBSD.org 2013-03-08T17:28:40Z urn:sha1:cb3cabcbdf20e35bf2f88fbfebbd672a48ecd0e9 different release now. Pull in OpenSSH 6.1 from head. 2013-03-01T02:06:04Z Dag-Erling Smørgrav des@FreeBSD.org 2013-03-01T02:06:04Z urn:sha1:0cada23ac2b3af7c0a8cc7568f79e3c25ebc6e48 Although ECC-based algorithms are now supported, the order of preference has been changed so that RSA and DSA are still the preferred algorithms. MFC: r237657, r237658, r237666 2012-07-02T16:14:35Z Jung-uk Kim jkim@FreeBSD.org 2012-07-02T16:14:35Z urn:sha1:833689a92bd0dfdd74c7f6da043bdf1e64ae9757 Merge OpenSSL 0.9.8x and regen manual pages. Update the previous openssl fix. [12:01] 2012-05-30T12:01:28Z Bjoern A. Zeeb bz@FreeBSD.org 2012-05-30T12:01:28Z urn:sha1:447e2b9b61562760b7348af4a2e047426b4624b7 Fix a bug in crypt(3) ignoring characters of a passphrase. [12:02] Security: FreeBSD-SA-12:01.openssl (revised) Security: FreeBSD-SA-12:02.crypt Approved by: so (bz, simon) MFC r233136, r233432: 2012-03-29T01:46:30Z Eitan Adler eadler@FreeBSD.org 2012-03-29T01:46:30Z urn:sha1:5cb28cd395b89fa5039613f30bd7122cbc5431c3 Restore the ability to use a non-standard LOCALBASE to sshd Add the ability to use a non-standard LOCALBASE to ssh Approved by: cperciva (implicit) MFC r216166, r216167: 2010-12-09T22:03:53Z Simon L. B. Nielsen simon@FreeBSD.org 2010-12-09T22:03:53Z urn:sha1:069f2e4127e4f7cfd814122571a687135165998f Merge in OpenSSL 0.9.8q. Approved by: re (kib) Security: CVE-2010-4180 Security: http://www.openssl.org/news/secadv_20101202.txt Merge OpenSSL 0.9.8p into stable/8. 2010-11-26T22:50:58Z Simon L. B. Nielsen simon@FreeBSD.org 2010-11-26T22:50:58Z urn:sha1:2441a7fbe825d6c659c742074652c4c48fcfe8d7 This merges up to and including head/crypto/openssl/ r215697; and head/secure/lib/libcrypto/, head/secure/lib/libssl/, head/secure/usr.bin/openssl/ r215698. To make the merge simpler, a hack was added to set MACHINE_CPUARCH. Security: CVE-2010-2939, CVE-2010-3864 Security: http://www.openssl.org/news/secadv_20101116.txt Security: FreeBSD-SA-10:10.openssl Approved by: re (implicitly - they did not object of the general idea of OpenSSL update)