[Lunar-commits] <moonbase> openssl: version bumped to 0.9.8l.
Florin Braescu
florin at lunar-linux.org
Fri Nov 6 20:37:57 CET 2009
commit a66584cde95b38d019f17c8716cbcebda81531b6
Author: Florin Braescu <florin at lunar-linux.org>
Date: Fri Nov 6 21:37:57 2009 +0200
openssl: version bumped to 0.9.8l.
Changes:
Disable renegotiation completely - this fixes a severe security
problem (CVE-2009-3555) at the cost of breaking all
renegotiation. Renegotiation can be re-enabled by setting
SSL3_FLAGS_ALLOW_UNSAFE_LEGACY_RENEGOTIATION in s3->flags at
run-time. This is really not recommended unless you know what
you're doing.
---
crypto/openssl/DETAILS | 6 +++---
1 files changed, 3 insertions(+), 3 deletions(-)
diff --git a/crypto/openssl/DETAILS b/crypto/openssl/DETAILS
index f326c3b..8e3d02a 100644
--- a/crypto/openssl/DETAILS
+++ b/crypto/openssl/DETAILS
@@ -1,5 +1,5 @@
MODULE=openssl
- VERSION=0.9.8k
+ VERSION=0.9.8l
SOURCE=$MODULE-$VERSION.tar.gz
SOURCE2=Makefile.openssl-certs
SOURCE_URL[0]=http://www.openssl.org/source
@@ -7,12 +7,12 @@
SOURCE_URL[2]=http://www.dentarthurdent.com/transfer/openssl
SOURCE_URL[3]=ftp://ftp.infoscience.co.jp/pub/Crypto/SSL/openssl/source
SOURCE_URL[4]=ftp://ftp.duth.gr/pub/OpenSSL/source
- SOURCE_VFY=sha1:3ba079f91d3c1ec90a36dcd1d43857165035703f
+ SOURCE_VFY=sha1:d3fb6ec89532ab40646b65af179bb1770f7ca28f
SOURCE2_URL=$PATCH_URL
SOURCE2_VFY=sha1:0f30d44c0bf27883876bdf56fe9c541ee28bc2cd
WEB_SITE=http://www.openssl.org
ENTERED=20010922
- UPDATED=20090325
+ UPDATED=20091106
PSAFE="no"
SHORT="A library for providing encrypted transport layers"
More information about the Lunar-commits
mailing list