date:20130929

Re: Patch for Correct fix for CVE-2013-0169 for openssl-.0.9.8y

2013-09-29 Thread mancha

Costas Stasimos coststasimos at gmail.com writes:
 Is there already prepared patch for 0.9.8y for this issue? If yes
 where I could download it?

Hi. there's a fix already committed in the git tree which means
it'll be included in the next 0.9.8 release.

You can grab it here:

https://github.com/openssl/openssl/commit
/59b1129e0a50fdf7e4e58d7c355783a7bfc1f44c

--mancha


__
OpenSSL Project http://www.openssl.org
Development Mailing List   openssl-dev@openssl.org
Automated List Manager   majord...@openssl.org

Re: Documentation issue?

2013-09-29 Thread Steve Marquess

On 09/27/2013 09:38 PM, karanpopali wrote:
 In the FIPS User Guide (http://www.openssl.org/docs/fips/UserGuide-2.0.pdf),
 there is example to set the default DRBG type. It uses DRBG type as
 NID_hmac_WithSHA256, but it should be NID_hmacWithSHA256.
 
 Example from UserGuide:
 ./config -DOPENSSL_DRBG_DEFAULT_TYPE=NID_hmac_WithSHA256 \
 -DOPENSSL_DRBG_DEFAULT_FLAGS=0 

Good catch, thanks. Fixed in revision to be posted soon.

-Steve M.

-- 
Steve Marquess
OpenSSL Software Foundation, Inc.
1829 Mount Ephraim Road
Adamstown, MD  21710
USA
+1 877 673 6775 s/b
+1 301 874 2571 direct
marqu...@opensslfoundation.com
marqu...@openssl.com
gpg/pgp key: http://openssl.com/docs/0xCE69424E.asc
__
OpenSSL Project http://www.openssl.org
Development Mailing List   openssl-dev@openssl.org
Automated List Manager   majord...@openssl.org

Re: Patch for Correct fix for CVE-2013-0169 for openssl-.0.9.8y

Re: Documentation issue?

2 matches

Site Navigation

Mail list logo

Footer information