Number of commits found: 56

- Security update to 1.0.1c
Security: http://openssl.org/news/secadv_20120510.txt

- Security Update to 1.0.0a
Security: http://www.openssl.org/news/secadv_20120419.txt
Security:
http://lists.grok.org.uk/pipermail/full-disclosure/2012-April/086585.html
Security: CVE-2012-2110

- update to 1.0.1

- drop DTLS bugfixes, now included upstream

- drop SCTP, will be in 1.0.1

- Security update to 1.0.0h
Security: http://www.openssl.org/news/secadv_20120312.txt
Security: CVE-2012-0884

PR:             166064
Approved by:    portmgr (miwi)
Feature safe:   yes

- Security update to 1.0.0g
Security: http://www.openssl.org/news/secadv_20120118.txt

- Build with obsolte MD2 hash by default

- Security Update to 1.0.0f
Security: http://openssl.org/news/secadv_20120104.txt
Security: CVE-2011-4108
Security: CVE-2011-4109
Security: CVE-2011-4576
Security: CVE-2011-4577
Security: CVE-2011-4619
Security: CVE-2012-0027
Submitted by:   Tim Zingelman

- make portlint happier

- update patches
PR:             161379

Feature safe:   yes

- Security update to 1.0.0e
Security: http://openssl.org/news/secadv_20110906.txt

- drop option TLS_EXTRACTOR, now in distribution

- add RFC-5705 patch
Obtained from:  OpenBSD

- Security update to 1.0.0d
Security: http://openssl.org/news/secadv_20110208.txt
Security: CVE-2011-0014
Feature safe:   yes

- Security update to 1.0.0c
Security: http://openssl.org/news/secadv_20101202.txt
Security: CVE-2010-4180

- Security update to 1.0.0b
Security: http://openssl.org/news/secadv_20101116.txt
Security: CVE-2010-3864

PR:             152312
Submitted by:   Alexander Wittig

- Fix regression in TLS handling
Obtained from:  http://cvs.openssl.org/chngview?cn=19998

- update dtls-heartbeats.patch
PR:             147787
Submitted by:   Nagilum

- update to openssl-1.0.0a
Security: CVE-2010-1633
this problem was already fixed in 1.0.0 with option WITH_DTLS_BUGS

- fix path in c_rehash
Submitted by:   Matthias Andree
Obtained from:  http://rt.openssl.org/Ticket/Display.html?id=2234

- add more DTLS bugfixes
Obtained from:  http://sctp.fh-muenster.de/

- chase updated patches for sctp-17 and dtls

- update to 1.0.0
- regression tested on i386, amd64 and ia64
- use DIST_SUBDIR to resolve conflicts with old patchfiles
- new options DTLS_RENEGOTIATION, DTLS_HEARTBEAT, TLS_EXTRACTOR, SCTP

- Security update to 0.9.8n
Security: http://www.openssl.org/news/secadv_20100324.txt

- update to 0.9.8m
- support RFC5746
Security: CVE-2008-1678
Security: CVE-2009-1377
Security: CVE-2009-1378
Security: CVE-2009-1379
Approved by:    portmgr (pav)
Feature safe:   yes

- Security update to 0.9.8l
Security: CVE-2009-3555

- revert patch

- update dtls-bugs.patch

- add more DTLS bugfixes
- use options framework
- new option WITH_FIPS
add fips code
- new option WITH_SCTP
add SCTP support to openssl

- Security update to 0.9.8k
Security: http://www.openssl.org/news/secadv_20090325.txt
Security: CVE-2009-0590
Security: CVE-2009-0591 (port not affected)
Security: CVE-2009-0789
PR:             133156
Submitted by:   Eygene Ryabinkin

- update to 0.9.8j
- move patches from files-beta back to files
- FIPS disabled with force
- support for crypto_hw device cloning restored
- support for crypto_hw aes_256 restored

- cleanup 0.97

- update to 0.9.8i

PR:     124281

- readd 0.9.7m

- Security update to 0.9.8h
Security: http://openssl.org/news/secadv_20080528.txt
Security: http://secunia.com/advisories/30405/
Security: http://cert.fi/haavoittuvuudet/2008/advisory-openssl.html
Security: CVE-2008-0891
Security: CVE-2008-1672

- update to 0.9.8g

- Secuurity update to 0.9.8f
Security: CVE-2007-4995

- Security update to 0.9.7m / 0.9.8e
- md5 verfified.
Security:       CVE-2006-2937
Security:       CVE-2006-2938
Security:       CVE-2006-2940
Security:       CVE-2006-3738
Security:       CVE-2006-4343
Security:       SA-06:23.openssl

- Security update to 0.9.7l
- Security update to 0.9.8d
Security: http://www.openssl.org/news/secadv_20060928.txt
Security: CVE-2006-2937
Security: CVE-2006-2940
Security: CVE-2006-3738
Security: CVE-2006-4343
Security: http://security.freebsd.org/advisories/FreeBSD-SA-06:23.openssl.asc

md5 hashes verfied

- update to 0.9.8c
- update stable to 0.9.7k
md5 verified
Security: http://www.openssl.org/news/secadv_20060905.txt
Security: CAN-2006-4339

- update to 0.9.8a and 0.9.7j
  md5 verified with distribution

- add SHA checksum

- update stable to 0.9.7i

- update to 0.9.7g and 0.9.8a

- update to 0.9.8 for WITH_OPENSSL_BETA=yes

- update 0.9.7g
PR:             79899
Submitted by:   Vasil Dimov

- update to 0.9.7f

- Bugfix update to 0.9.7e
- md5 verfied with website

- Security update to 0.9.7d
http://www.openssl.org/news/secadv_20040317.txt

- add SIZE

- Security Fix, Update to 0.9.7c
- Fix manpages

- Udpate to 0.9.7b

- merged some patches in distribution
- added thread support on alpha, sparc64
- Update to 0.9.7a (with security fix)
- defaults openssl to port

- Update to 0.9.7
- rnd_keys.c now in distribution
- drop lib/libRSAglue.a
- build on i386, alpha, sparc64, ia64
- build on 2.2.8 with the gas-patch as noted in FAQ

- add new checksum, only "OPENSSL_VERSION_NUMBER" has been changed
in the distribution after 6th December.
2178290  6 Dez 00:25 /usr/ports/distfiles/openssl-0.9.6h.tar.gz
2178314  8 Dez 21:43 /usr/ports/distfiles/openssl-0.9.6h.tar.gz

- Update to 0.9.6h
- md5 verified
- add test target
- make build on sparc64

Security Update to: 0.9.6g

Security Update to 0.9.6e

Update to: 0.9.6d

See:
http://www.openssl.org/source/exp/CHANGES

Port improvements:
proccessor type is now detected

Add option: OPENSSL_WITH_386
This set as default for package generation on bento

- Update to 0.9.6c
- more manpages
- shift FORBIDDEN

 Excerpt of Changes between 0.9.6b and 0.9.6c  [21 dec 2001]
  *) Fix BN_rand_range bug pointed out by Dominikus Scherkl
  *) Only add signing time to PKCS7 structures if it is not already present.
  *) Fix crypto/objects/objects.h: "ld-ce" should be "id-ce", OBJ_ld_ce
     should be OBJ_id_ce.  Also some ip-pda OIDs in crypto/objects/objects.txt
     were incorrect (cf. RFC 3039).
  *) Release CRYPTO_LOCK_DYNLOCK when CRYPTO_destroy_dynlockid()
     returns early because it has nothing to do.
  *) Fix mutex callback return values in crypto/engine/hw_ncipher.c.
  *) Change ssl/s2_clnt.c and ssl/s2_srvr.c so that received handshake
     messages are stored in a single piece (fixed-length part and

(Only the first 15 lines of the commit message are shown above )

Upgrade openssl to 0.9.6b.    

Upgrade openssl to 0.9.6a and bump the shlib version in the process   due to
non-backwards compatible changes. The shlib bump necessitates   a corresponding
bump in bsd.port.mk for the automagic openssl   dependency. Mistakes in the port
are my responsibility. Approval for   the bsd.port.mk commit comes through asami
-> kkenn -> me. Kris is   a little busy at the moment, so he asked me to lob it
in.    

Number of commits found: 56

12 vulnerabilities affecting 17 ports have been reported in the past 14 days

^* - modified, not new

All vulnerabilities