Overview

Request 151305 accepted

- update to version 1.0.1d, fixing security issues
o Fix renegotiation in TLS 1.1, 1.2 by using the correct TLS version.
o Include the fips configuration module.
o Fix OCSP bad key DoS attack CVE-2013-0166
o Fix for SSL/TLS/DTLS CBC plaintext recovery attack CVE-2013-0169
bnc#802184
o Fix for TLS AESNI record handling flaw CVE-2012-2686

Request History
Marcus Meissner's avatar

msmeissn created request

- update to version 1.0.1d, fixing security issues
o Fix renegotiation in TLS 1.1, 1.2 by using the correct TLS version.
o Include the fips configuration module.
o Fix OCSP bad key DoS attack CVE-2013-0166
o Fix for SSL/TLS/DTLS CBC plaintext recovery attack CVE-2013-0169
bnc#802184
o Fix for TLS AESNI record handling flaw CVE-2012-2686

Saul Goodman's avatar

licensedigger accepted review

{"approve": "preliminary, version number changed"}

Factory Auto's avatar

factory-auto added a reviewer

Please review sources

Factory Auto's avatar

factory-auto accepted review

Builds for repo openSUSE_Factory

Dominique Leuenberger's avatar

dimstar approved review

ok

Dominique Leuenberger's avatar

dimstar accepted review

ok

Stephan Kulow's avatar

coolo accepted request

checkin and copy for 12.3

openSUSE Build Service is sponsored by
Places