update version and changelog for 2.1.9v2.1.9 OPENBSD_5_7

author: Brent Cook <bcook@openbsd.org> 2015-12-05 13:13:12 -0600
committer: Brent Cook <bcook@openbsd.org> 2015-12-05 13:13:12 -0600
commit: 5b093cd0c83ae53c3024f853dfd6f81e71e64540 (patch)
tree: 8f9362e144870f6b861af6edb1443c1f54d0f39d
parent: 6494230957b88d03625adba38ecd09d07375432c (diff)
download: portable-2.1.9.tar.gz
portable-2.1.9.tar.bz2
portable-2.1.9.zip
2 files changed, 19 insertions, 1 deletions
diff --git a/ChangeLog b/ChangeLog
index 79fa9eb..8d4d7ca 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -31,10 +31,28 @@ LibreSSL Portable Release Notes:
 This release primarily addresses a number of security issues in coordination
 with the OpenSSL project.
+2.1.9 - Reliability Update
+        * Fixes from OpenSSL 1.0.1q
+         - CVE-2015-3194 - NULL pointer dereference in client side certificate
+                           validation.
+         - CVE-2015-3195 - Memory leak in PKCS7 - not reachable from TLS/SSL
+        * The following OpenSSL CVEs did not apply to LibreSSL
+         - CVE-2015-3193 - Carry propagating bug in the x86_64 Montgomery squaring
+                           procedure.
+         - CVE-2015-3196 - Double free race condition of the identify hint data.
+         See https://marc.info/?l=openbsd-announce&m=144925068504102
 2.1.8 - Security Update
        * Fixes for a memory leak and out-of-bounds access in OBJ_obj2txt
          reported by Qualys Security.
+         - CVE-2015-5333 - memory leak in OBJ_obj2txt
+         - CVE-2015-5334 - 1-byte buffer overflow in OBJ_obj2txt
+         See http://www.openwall.com/lists/oss-security/2015/10/16/1
 2.1.7 - Security Update
diff --git a/VERSION b/VERSION
index ebf14b4..63a1a1c 100644
--- a/VERSION
+++ b/VERSION
@@ -1 +1 @@
-2.1.8
+2.1.9
author	Brent Cook <bcook@openbsd.org>	2015-12-05 13:13:12 -0600
committer	Brent Cook <bcook@openbsd.org>	2015-12-05 13:13:12 -0600
commit	5b093cd0c83ae53c3024f853dfd6f81e71e64540 (patch)
tree	8f9362e144870f6b861af6edb1443c1f54d0f39d
parent	6494230957b88d03625adba38ecd09d07375432c (diff)
download	portable-2.1.9.tar.gz portable-2.1.9.tar.bz2 portable-2.1.9.zip

diff --git a/ChangeLog b/ChangeLog index 79fa9eb..8d4d7ca 100644 --- a/ChangeLog +++ b/ChangeLog
@@ -31,10 +31,28 @@ LibreSSL Portable Release Notes:
31	This release primarily addresses a number of security issues in coordination	31	This release primarily addresses a number of security issues in coordination
32	with the OpenSSL project.	32	with the OpenSSL project.
33		33
		34	2.1.9 - Reliability Update
		35
		36	* Fixes from OpenSSL 1.0.1q
		37	- CVE-2015-3194 - NULL pointer dereference in client side certificate
		38	validation.
		39	- CVE-2015-3195 - Memory leak in PKCS7 - not reachable from TLS/SSL
		40
		41	* The following OpenSSL CVEs did not apply to LibreSSL
		42	- CVE-2015-3193 - Carry propagating bug in the x86_64 Montgomery squaring
		43	procedure.
		44	- CVE-2015-3196 - Double free race condition of the identify hint data.
		45
		46	See https://marc.info/?l=openbsd-announce&m=144925068504102
		47
34	2.1.8 - Security Update	48	2.1.8 - Security Update
35		49
36	* Fixes for a memory leak and out-of-bounds access in OBJ_obj2txt	50	* Fixes for a memory leak and out-of-bounds access in OBJ_obj2txt
37	reported by Qualys Security.	51	reported by Qualys Security.
		52	- CVE-2015-5333 - memory leak in OBJ_obj2txt
		53	- CVE-2015-5334 - 1-byte buffer overflow in OBJ_obj2txt
		54
		55	See http://www.openwall.com/lists/oss-security/2015/10/16/1
38		56
39	2.1.7 - Security Update	57	2.1.7 - Security Update
40		58


diff --git a/VERSION b/VERSION index ebf14b4..63a1a1c 100644 --- a/VERSION +++ b/VERSION
@@ -1 +1 @@
	2.1.8		2.1.9