Module Name: src
Committed By: snj
Date: Sun Oct 19 20:10:28 UTC 2014
Modified Files:
src/doc [netbsd-5-1]: CHANGES-5.1.5
Log Message:
1927
To generate a diff of this commit:
cvs rdiff -u -r1.1.2.18 -r1.1.2.19 src/doc/CHANGES-5.1.5
Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.
Modified files:
Index: src/doc/CHANGES-5.1.5
diff -u src/doc/CHANGES-5.1.5:1.1.2.18 src/doc/CHANGES-5.1.5:1.1.2.19
--- src/doc/CHANGES-5.1.5:1.1.2.18 Wed Aug 27 13:46:54 2014
+++ src/doc/CHANGES-5.1.5 Sun Oct 19 20:10:28 2014
@@ -1,4 +1,4 @@
-# $NetBSD: CHANGES-5.1.5,v 1.1.2.18 2014/08/27 13:46:54 msaitoh Exp $
+# $NetBSD: CHANGES-5.1.5,v 1.1.2.19 2014/10/19 20:10:28 snj Exp $
A complete list of changes from the NetBSD 5.1.4 release to the NetBSD 5.1.5
release:
@@ -267,3 +267,64 @@ sys/netinet6/ip6_output.c 1.158 via pa
Fix a memory leak in calling setsockopt() on an INET6 socket.
[maxv ticket #1920]
+
+crypto/dist/openssl/apps/s_client.c patch
+crypto/dist/openssl/crypto/LPdir_vms.c patch
+crypto/dist/openssl/crypto/LPdir_win.c patch
+crypto/dist/openssl/crypto/Makefile patch
+crypto/dist/openssl/crypto/constant_time_locl.h patch
+crypto/dist/openssl/crypto/constant_time_test.c patch
+crypto/dist/openssl/crypto/bn/bn_exp.c patch
+crypto/dist/openssl/crypto/bn/exptest.c patch
+crypto/dist/openssl/crypto/bn/asm/x86_64-gcc.c patch
+crypto/dist/openssl/crypto/dsa/dsa_ameth.c patch
+crypto/dist/openssl/crypto/ec/ec.h patch
+crypto/dist/openssl/crypto/ec/ec_ameth.c patch
+crypto/dist/openssl/crypto/ec/ec_asn1.c patch
+crypto/dist/openssl/crypto/ec/ec_key.c patch
+crypto/dist/openssl/crypto/ec/ecp_smpl.c patch
+crypto/dist/openssl/crypto/err/openssl.ec patch
+crypto/dist/openssl/crypto/evp/Makefile patch
+crypto/dist/openssl/crypto/evp/evp_enc.c patch
+crypto/dist/openssl/crypto/pkcs7/pkcs7.h patch
+crypto/dist/openssl/crypto/rsa/Makefile patch
+crypto/dist/openssl/crypto/rsa/rsa.h patch
+crypto/dist/openssl/crypto/rsa/rsa_err.c patch
+crypto/dist/openssl/crypto/rsa/rsa_oaep.c patch
+crypto/dist/openssl/crypto/rsa/rsa_pk1.c patch
+crypto/dist/openssl/crypto/rsa/rsa_sign.c patch
+crypto/dist/openssl/doc/apps/s_client.pod patch
+crypto/dist/openssl/doc/crypto/BIO_s_accept.pod patch
+crypto/dist/openssl/doc/crypto/CMS_add1_signer.pod patch
+crypto/dist/openssl/doc/crypto/EVP_DigestInit.pod patch
+crypto/dist/openssl/doc/crypto/EVP_DigestVerifyInit.pod patch
+crypto/dist/openssl/doc/crypto/EVP_EncryptInit.pod patch
+crypto/dist/openssl/doc/crypto/EVP_PKEY_set1_RSA.pod patch
+crypto/dist/openssl/doc/crypto/EVP_PKEY_sign.pod patch
+crypto/dist/openssl/doc/ssl/SSL_CTX_set_mode.pod patch
+crypto/dist/openssl/doc/ssl/SSL_CTX_set_tmp_dh_callback.pod patch
+crypto/dist/openssl/ssl/Makefile patch
+crypto/dist/openssl/ssl/s23_clnt.c patch
+crypto/dist/openssl/ssl/s23_srvr.c patch
+crypto/dist/openssl/ssl/s2_lib.c patch
+crypto/dist/openssl/ssl/s3_clnt.c patch
+crypto/dist/openssl/ssl/s3_enc.c patch
+crypto/dist/openssl/ssl/s3_lib.c patch
+crypto/dist/openssl/ssl/s3_pkt.c patch
+crypto/dist/openssl/ssl/s3_srvr.c patch
+crypto/dist/openssl/ssl/ssl-lib.com patch
+crypto/dist/openssl/ssl/ssl.h patch
+crypto/dist/openssl/ssl/ssl3.h patch
+crypto/dist/openssl/ssl/ssl_err.c patch
+crypto/dist/openssl/ssl/ssl_lib.c patch
+crypto/dist/openssl/ssl/t1_enc.c patch
+crypto/dist/openssl/ssl/t1_lib.c patch
+crypto/dist/openssl/ssl/tls1.h patch
+crypto/dist/openssl/test/Makefile patch
+crypto/dist/openssl/test/constant_time_test.c patch
+
+ OpenSSL security fixes derived from the diff between
+ OpenSSL 1.0.0n and 1.0.0o, fixing CVE-2014-3567, CVE-2014-3568,
+ and adding POODLE mitigation via support for TLS_FALLBACK_SCSV.
+ [spz, ticket #1927]
+
