openbsd/src/lib/libssl, branch libressl-v2.1.9

openbsd/src/lib/libssl, branch libressl-v2.1.9 A mirror of https://github.com/libressl/openbsd.git https://git.lua4.win/openbsd/atom?h=libressl-v2.1.9 2015-12-04T04:22:24+00:00 Fix for OpenSSL CVE-2015-3195 2015-12-04T04:22:24+00:00 beck 2015-12-04T04:22:24+00:00 urn:sha1:9d74b492cb913dd2f6ff73e839389649c588d06f patch for OpenSSL CVE-2015-3194 2015-12-04T04:15:54+00:00 beck 2015-12-04T04:15:54+00:00 urn:sha1:9ec6d4074b5f3899c59d4224b79f5138ea47ab78 pull up fixes for leak and overrun 2015-10-15T02:23:26+00:00 tedu 2015-10-15T02:23:26+00:00 urn:sha1:1f0c7b9086ce1dc80bced5fa35412dcbdde99fa0 MFC: Fix several defects from OpenSSL. 2015-06-11T16:09:23+00:00 jsing 2015-06-11T16:09:23+00:00 urn:sha1:7ef74dad52fbca9122cd668d868d85d0e0762a1a These include: CVE-2015-1788 - Malformed ECParameters causes infinite loop CVE-2015-1789 - Exploitable out-of-bounds read in X509_cmp_time CVE-2015-1792 - CMS verify infinite loop with unknown hash function Fix several crash causing defects from OpenSSL. 2015-03-19T14:01:20+00:00 tedu 2015-03-19T14:01:20+00:00 urn:sha1:5880eaad897594cd2996545010f7b301fa948230 These include: CVE-2015-0209 - Use After Free following d2i_ECPrivatekey error CVE-2015-0286 - Segmentation fault in ASN1_TYPE_cmp CVE-2015-0287 - ASN.1 structure reuse memory corruption CVE-2015-0288 - X509_to_X509_REQ NULL pointer deref CVE-2015-0289 - PKCS7 NULL pointer dereferences Several other issues did not apply or were already fixed. Refer to https://www.openssl.org/news/secadv_20150319.txt joint work with beck, doug, guenther, jsing, miod This commit was manufactured by cvs2git to create branch 'OPENBSD_5_7'. 2015-03-08T16:48:49+00:00 cvs2svn admin@example.com 2015-03-08T16:48:49+00:00 urn:sha1:03e0d0748934886665c3031cda5fdccf45f2fb8d Reject DH keys sent by a server if they are considered too small; inspired 2015-03-08T16:48:47+00:00 miod 2015-03-08T16:48:47+00:00 urn:sha1:973703db67a8e73d70e63afa8f2cde19da09144d by a similar BoringSSL change, but raising the limit to 1024 bits. ok jsing@ markus@ guenther@ deraadt@ Fix a minor information leak that was introduced in t1_lib.c r1.71, whereby 2015-03-02T13:43:09+00:00 jsing 2015-03-02T13:43:09+00:00 urn:sha1:45ee9e335c1b859ecec006aefb1a3c604a1c8d29 an additional 28 bytes of .rodata (or .data) is provided to the network. In most cases this is a non-issue since the memory content is already public. Issue found and reported by Felix Groebert of the Google Security Team. ok bcook@ beck@ Fix CVE-2014-3570: properly calculate the square of a BIGNUM value. 2015-02-25T15:39:49+00:00 bcook 2015-02-25T15:39:49+00:00 urn:sha1:f3031aa7bff24911a8cae9bdd7cdcd88d8554f42 See https://www.openssl.org/news/secadv_20150108.txt for a more detailed discussion. Original OpenSSL patch here: https://github.com/openssl/openssl/commit/a7a44ba55cb4f884c6bc9ceac90072dea38e66d0 The regression test is modified a little for KNF. ok miod@ Fix CVE-2015-0205: Do not accept client authentication with Diffie-Hellman 2015-02-25T03:49:21+00:00 bcook 2015-02-25T03:49:21+00:00 urn:sha1:07a99d742112a2ad5f56da7d83e8519f21d605b9 certificates without requiring a CertificateVerify message. From OpenSSL commit: https://github.com/openssl/openssl/commit/1421e0c584ae9120ca1b88098f13d6d2e90b83a3 Thanks to Karthikeyan Bhargavan for reporting this. ok miod@