diff options
| author | Brent Cook <busterb@gmail.com> | 2022-03-13 12:37:55 -0500 |
|---|---|---|
| committer | Brent Cook <busterb@gmail.com> | 2022-03-13 12:37:55 -0500 |
| commit | 120007084564f2877eac287418a236ab07f829d4 (patch) | |
| tree | 2d9bb26a359e1a0418fae088043314b32199f1ca | |
| parent | d09ca2569d9cbe6fa1e8038e90ff5cb57e20e0b5 (diff) | |
| download | portable-3.3.6.tar.gz portable-3.3.6.tar.bz2 portable-3.3.6.zip | |
update Changelogv3.3.6
| -rw-r--r-- | ChangeLog | 5 | ||||
| -rw-r--r-- | patches/opensslv.h | 4 |
2 files changed, 7 insertions, 2 deletions
| @@ -28,6 +28,11 @@ history is also available from Git. | |||
| 28 | 28 | ||
| 29 | LibreSSL Portable Release Notes: | 29 | LibreSSL Portable Release Notes: |
| 30 | 30 | ||
| 31 | 3.3.6 - Security fix | ||
| 32 | |||
| 33 | * A malicious certificate can cause an infinite loop. | ||
| 34 | Reported by and fix from Tavis Ormandy and David Benjamin, Google. | ||
| 35 | |||
| 31 | 3.3.5 - Security fix | 36 | 3.3.5 - Security fix |
| 32 | 37 | ||
| 33 | * A stack overread could occur when checking X.509 name constraints. | 38 | * A stack overread could occur when checking X.509 name constraints. |
diff --git a/patches/opensslv.h b/patches/opensslv.h index 7e6158c..b3805e4 100644 --- a/patches/opensslv.h +++ b/patches/opensslv.h | |||
| @@ -3,9 +3,9 @@ | |||
| 3 | #define HEADER_OPENSSLV_H | 3 | #define HEADER_OPENSSLV_H |
| 4 | 4 | ||
| 5 | /* These will change with each release of LibreSSL-portable */ | 5 | /* These will change with each release of LibreSSL-portable */ |
| 6 | #define LIBRESSL_VERSION_NUMBER 0x3030500fL | 6 | #define LIBRESSL_VERSION_NUMBER 0x3030600fL |
| 7 | /* ^ Patch starts here */ | 7 | /* ^ Patch starts here */ |
| 8 | #define LIBRESSL_VERSION_TEXT "LibreSSL 3.3.5" | 8 | #define LIBRESSL_VERSION_TEXT "LibreSSL 3.3.6" |
| 9 | 9 | ||
| 10 | /* These will never change */ | 10 | /* These will never change */ |
| 11 | #define OPENSSL_VERSION_NUMBER 0x20000000L | 11 | #define OPENSSL_VERSION_NUMBER 0x20000000L |