FreshPorts -- security/libressl: Free version of the SSL/TLS protocol forked from OpenSSL

Port details

libressl Free version of the SSL/TLS protocol forked from OpenSSL

3.6.2 security =15 Version of this port present on the latest quarterly branch.

Maintainer: brnrd@FreeBSD.org

Port Added: 2014-07-12 12:03:53

Last Update: 2023-03-18 10:17:29

Commit Hash: d5862e3

People watching this port, also watch:: nginx, openssl, rsync, pkg, tmux

Also Listed In: devel

License: BSD4CLAUSE

Description:

LibreSSL is an open-source implementation of the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols. It was forked from the OpenSSL cryptographic software library in April 2014 as a response by OpenBSD developers to the Heartbleed security vulnerability in OpenSSL, with the aim of refactoring the OpenSSL code so as to provide a more secure implementation. LibreSSL was forked from the OpenSSL library starting with the 1.0.1g branch and will follow the security guidelines used elsewhere in the OpenBSD project.

¦ ¦ ¦ ¦

pkg-plist: as obtained via: make generate-plist

There is no configure plist information for this port.

Dependency lines:

libressl>0:security/libressl

Conflicts:

CONFLICTS_INSTALL:

libressl-devel
openssl
openssl3[01]

Conflicts Matches:

There are no Conflicts Matches for this port. This is usually an error.

To install the port:

cd /usr/ports/security/libressl/ && make install clean

To add the package, run one of these commands:

pkg install security/libressl
pkg install libressl

NOTE: If this package has multiple flavors (see below), then use one of them instead of the name specified above.

PKGNAME: libressl

Package flavors (<flavor>: <package>)

default: libressl
libtls: libressl-libtls

distinfo:

TIMESTAMP = 1675879570 SHA256 (libressl-3.6.2.tar.gz) = 4be80fff073746cf50b4a8e5babe2795acae98c6b132a9e02519b445dfbfd033 SIZE (libressl-3.6.2.tar.gz) = 4239482

Packages (timestamps in pop-ups are UTC):

libressl
ABI	latest	quarterly
FreeBSD:11:aarch64	2.7.4	3.1.3
FreeBSD:11:amd64	3.3.4	3.3.3
FreeBSD:11:armv6	2.3.6	3.1.4
FreeBSD:11:i386	3.3.4	3.3.3
FreeBSD:11:mips
FreeBSD:11:mips64	2.3.6	3.1.4
FreeBSD:12:aarch64	2.7.4	3.5.4
FreeBSD:12:amd64	3.5.4	3.5.4
FreeBSD:12:armv6	2.7.4	3.1.4
FreeBSD:12:armv7	2.7.4	3.1.4
FreeBSD:12:i386	3.5.4	3.5.4
FreeBSD:12:mips
FreeBSD:12:mips64	2.7.4	3.1.3
FreeBSD:12:powerpc64		3.2.5
FreeBSD:13:aarch64	3.5.4	3.5.4
FreeBSD:13:amd64	3.5.4	3.5.4
FreeBSD:13:armv6	3.2.3	3.4.3
FreeBSD:13:armv7	3.5.4	3.5.4
FreeBSD:13:i386	3.6.2	3.5.4
FreeBSD:13:mips
FreeBSD:13:mips64
FreeBSD:13:powerpc64	3.2.3	3.5.4
FreeBSD:13:riscv64		3.4.3
FreeBSD:14:aarch64
FreeBSD:14:amd64
FreeBSD:14:armv6	3.5.3
FreeBSD:14:armv7
FreeBSD:14:i386
FreeBSD:14:mips
FreeBSD:14:mips64
FreeBSD:14:powerpc64
FreeBSD:14:riscv64	3.4.1

libressl-libtls
ABI	latest	quarterly
FreeBSD:11:aarch64
FreeBSD:11:amd64	3.3.4	3.3.3
FreeBSD:11:armv6
FreeBSD:11:i386	3.3.4	3.3.3
FreeBSD:11:mips
FreeBSD:11:mips64
FreeBSD:12:aarch64		3.5.4
FreeBSD:12:amd64	3.5.4	3.5.4
FreeBSD:12:armv6
FreeBSD:12:armv7
FreeBSD:12:i386	3.5.4	3.5.4
FreeBSD:12:mips
FreeBSD:12:mips64
FreeBSD:12:powerpc64
FreeBSD:13:aarch64	3.5.4	3.5.4
FreeBSD:13:amd64	3.5.4	3.5.4
FreeBSD:13:armv6		3.4.3
FreeBSD:13:armv7	3.5.4	3.5.4
FreeBSD:13:i386		3.5.4
FreeBSD:13:mips
FreeBSD:13:mips64
FreeBSD:13:powerpc64		3.5.4
FreeBSD:13:riscv64		3.4.3
FreeBSD:14:aarch64
FreeBSD:14:amd64
FreeBSD:14:armv6	3.5.3
FreeBSD:14:armv7
FreeBSD:14:i386
FreeBSD:14:mips
FreeBSD:14:mips64
FreeBSD:14:powerpc64
FreeBSD:14:riscv64	3.4.1

Dependencies

NOTE: FreshPorts displays only information on required and default dependencies. Optional dependencies are not covered.

Build dependencies:

pkgconf>=1.3.0_1 : devel/pkgconf

This port is required by:

for Build

net/relayd

Deleted ports which required this port:

Expand this list of 2 deleted ports

for Run

Deleted ports which required this port:

Expand this list of 1 deleted port

* - deleted ports are only shown under the This port is required by section. It was harder to do for the Required section. Perhaps later...

Configuration Options:

===> The following configuration options are available for libressl-3.6.2: MAN3=on: Install API manpages (section 3) NC=on: Install TLS-enabled netcat ===> Use 'make config' to modify these settings

Options name:

security_libressl

USES:

cpe libtool pathfix pkgconfig

FreshPorts was unable to extract/find any pkg message

Master Sites:

Expand this list (7 items)

Collapse this list.

Notes from UPDATING

These upgrade notes are taken from /usr/ports/UPDATING

2022-09-25

Affects: users of security/libressl

Author: brnrd@FreeBSD.org

Reason: 
  The port has been updated to the latest stable version 3.5 of LibreSSL.
  The shared library versions of the libraries have been bumped.

  After upgrading, manually update all packages that depend on any of the
  libraries provided by LibreSSL (libssl, libcrypto and libtls) since the
  versions of these libraries have changed. Normally, you can obtain the
  list of dependent software by running the following command:

  # pkg info -r libressl

  Then you should rebuild all ports depending on libressl to avoid dangling
  shared library dependencies.

Expand this list (13 items)

2021-11-09

Affects: users of security/libressl

Author: brnrd@FreeBSD.org

Reason: 
  The port has been updated to the latest stable version 3.4 of LibreSSL.
  The shared library versions of the libraries have been bumped.

  After upgrading, manually update all packages that depend on any of the
  libraries provided by LibreSSL (libssl, libcrypto and libtls) since the
  versions of these libraries have changed. Normally, you can obtain the
  list of dependent software by running the following command:

  # pkg info -r libressl

  Then you should rebuild all ports depending on libressl to avoid dangling
  shared library dependencies.

2019-04-22

Affects: users of security/libressl

Author: brnrd@FreeBSD.org

Reason: 
  The port has been updated to the latest stable version 2.9 of LibreSSL.
  The shared library versions of the libraries have been bumped.

  After upgrading, manually update all packages that depend on any of the
  libraries provided by LibreSSL (libssl, libcrypto and libtls) since the
  versions of these libraries have changed. Normally, you can obtain the
  list of dependent software by running the following command:

  # pkg info -r libressl

  Then you should rebuild all ports depending on libressl to avoid dangling
  shared library dependencies. Poudriere and pkg handle this correctly,
  portmaster and portupgrade users can use the following to rebuild all
  dependent ports.

  Portmaster users:
      portmaster -r libressl
  Portupgrade users:
      portupgrade -fr security/libressl

2018-10-20

Affects: users of security/libressl

Author: brnrd@FreeBSD.org

Reason: 
  The port has been updated to the latest stable version 2.8 of LibreSSL.
  The shared library versions of the libraries have been bumped.

  After upgrading, manually update all packages that depend on any of the
  libraries provided by LibreSSL (libssl, libcrypto and libtls) since the
  versions of these libraries have changed. Normally, you can obtain the
  list of dependent software by running the following command:

  # pkg info -r libressl

  Then you should rebuild all ports depending on libressl to avoid dangling
  shared library dependencies. Poudriere and pkg handle this correctly,
  portmaster and portupgrade users can use the following to rebuild all
  dependent ports.

  Portmaster users:
      portmaster -r libressl
  Portupgrade users:
      portupgrade -fr security/libressl

2018-04-28

Affects: users of security/libressl

Author: brnrd@FreeBSD.org

Reason: 
  The port has been updated to the latest stable version 2.7 of LibreSSL.
  The shared library versions of the libraries have been bumped.

  After upgrading, manually update all packages that depend on any of the
  libraries provided by LibreSSL (libssl, libcrypto and libtls) since the
  versions of these libraries have changed. Normally, you can obtain the
  list of dependent software by running the following command:

  # pkg info -r libressl

  Then you should rebuild all ports depending on libressl to avoid dangling
  shared library dependencies. Poudriere and pkg handle this correctly,
  portmaster and portupgrade users can use the following to rebuild all
  dependent ports.

  Portmaster users:
      portmaster -r libressl
  Portupgrade users:
      portupgrade -fr security/libressl

2017-11-07

Affects: users of security/libressl

Author: brnrd@FreeBSD.org

Reason: 
  The port has been updated to the latest stable version 2.6 of LibreSSL.
  The shared library versions of the libraries have been bumped.

  After upgrading, manually update all packages that depend on any of the
  libraries provided by LibreSSL (libssl, libcrypto and libtls) since the
  versions of these libraries have changed. Normally, you can obtain the
  list of dependent software by running the following command:

  # pkg info -r libressl

  Then you should rebuild all ports depending on libressl to avoid dangling
  shared library dependencies. Poudriere and pkg handle this correctly,
  portmaster and portupgrade users can use the following to rebuild all
  dependent ports.

  Portmaster users:
      portmaster -r libressl
  Portupgrade users:
      portupgrade -fr security/libressl

2017-04-11

Affects: users of security/libressl

Author: brnrd@FreeBSD.org

Reason: 
  The port has been updated to the latest stable version 2.5 of LibreSSL.
  The shared library versions of the libraries have been bumped.

  After upgrading, manually update all packages that depend on any of the
  libraries provided by LibreSSL (libssl, libcrypto and libtls) since the
  versions of these libraries have changed. Normally, you can obtain the
  list of dependent software by running the following command:

  # pkg info -r libressl

  Then you should rebuild all ports depending on libressl to avoid dangling
  shared library dependencies. Poudriere and pkg handle this correctly,
  portmaster and portupgrade users can use the following to rebuild all
  dependent ports.

  Portmaster users:
      portmaster -r libressl
  Portupgrade users:
      portupgrade -fr security/libressl

2016-08-11

Affects: users of security/libressl

Author: brnrd@FreeBSD.org

Reason: 
  The port has been updated to the latest stable version 2.4 of LibreSSL.
  The shared library versions of the libraries have been bumped.
  With this update, the patch for the OPENSSL_VERSION_NUMBER has been
  removed. This causes issues with a number of ports. Patches for all
  ports for which this issues is known can be found on
  https://wiki.freebsd.org/LibreSSL/Ports#OPENSSL_VERSION_NUMBER

  After upgrading, manually update all packages that depend on any of the
  libraries provided by LibreSSL (libssl, libcrypto and libtls) since the
  versions of these libraries have changed. Normally, you can obtain the
  list of dependent software by running the following command:

  # pkg info -r libressl

  Then you should rebuild all ports depending on libressl to avoid dangling
  shared library dependencies. Poudriere and pkg handle this correctly,
  portmaster and portupgrade users can use the following to rebuild all
  dependent ports.

  Portmaster users:
      portmaster -r libressl
  Portupgrade users:
      portupgrade -fr security/libressl

2016-06-16

Affects: users of security/openssl*, security/libressl*

Author: mat@FreeBSD.org

Reason: 
  Previously, to tell the ports tree, you needed to set:

  WITH_OPENSSL_PORT=yes

  And if you wanted a port that was not security/openssl, you needed to add,
  for example:

  OPENSSL_PORT=	security/libressl

  Now, all you need to do is:

  DEFAULT_VERSIONS+=  ssl=libressl

  Valid values are base, openssl, openssl-devel, libressl, and libressl-devel.

2016-05-03

Affects: users of security/libressl

Author: brnrd@FreeBSD.org

Reason: 
  LibreSSL 2.3 has removed SSLv3 support completely which leads to issues
  with a number of ports. Patches for many of these issues can be found
  on https://wiki.freebsd.org/OpenSSL/No-SSLv3

  After upgrading to 2.3.4, manually update all packages that depend on
  any of the libraries provided by LibreSSL (libssl, libcrypto and
  libtls) since the versions of these libraries have changed. Normally,
  you can obtain the list of dependent software by running the following
  command:

  # pkg info -r libressl

  Then you should rebuild all ports depending on libressl to avoid dangling
  shared library dependencies. Poudriere and pkg handle this correctly,
  portmaster and portupgrade users can use the following to rebuild all
  dependent ports.

  Portmaster users:
      portmaster -r libressl
  Portupgrade users:
      portupgrade -fr security/libressl

2015-08-06

Affects: users of security/libressl

Author: brnrd@FreeBSD.org

Reason: 
  After upgrading to 2.2.2, manually update all packages that depend on
  any of the libraries provided by LibreSSL (libssl, libcrypto and
  libtls) since the versions of these libraries have changed. Normally,
  you can obtain the list of dependent software by running the following
  command:

  # pkg info -r libressl

  Then you should rebuild all ports depending on libressl to avoid dangling
  shared library dependencies. Poudriere and pkg handle this correctly,
  portmaster and portupgrade users can use the following to rebuild all
  dependent ports.

  Portmaster users:
      portmaster -r libressl
  Portupgrade users:
      portupgrade -fr security/libressl

2015-07-08

Affects: users of security/libressl

Author: brnrd@FreeBSD.org

Reason: 
  After upgrading to 2.2.1, manually update all packages that depend on
  any of the libraries provided by LibreSSL (libssl, libcrypto and
  libtls) since the versions of these libraries have changed. Normally,
  you can obtain the list of dependent software by running the following
  command:

  pkg query -e '%n = libressl' %ro

  Then you should rebuild all ports depending on libressl to avoid dangling
  shared library dependencies.

2015-06-15

Affects: users of security/libressl

Author: brnrd@FreeBSD.org

Reason: 
  After upgrading libressl, manually update all packages that depend on
  this library since its version has changed. Normally, you can obtain the
  list of dependent software by running the following command:

  pkg query -e '%n = libressl' %ro

  Then you should rebuild all ports depending on libressl to avoid dangling
  shared library dependencies.

2015-03-04

Affects: users of security/libressl

Author: vsevolod@highsecure.ru

Reason: 
  After upgrading of libressl you should manually update all packages that
  depending on this library since its version has been changed. Normally,
  you could obtain the list of dependent software by running the following
  command:

  pkg query -e '%n = libressl' %ro

  Then you should rebuild all ports depending on libressl to avoid dangling
  shared library dependencies.

Collapse this list.

Number of commits found: 89

Commit	Credits	Log message
Commit History - (may be incomplete: for full details, see links to repositories near top of page)
3.6.2 18 Mar 2023 10:17:29	Bernard Spil (brnrd)	security/libressl: Update to 3.6.2 * Major SHLIBVER update
3.5.4 15 Mar 2023 09:14:16	Bernard Spil (brnrd)	security/openssl30: Chase rename in ports CONFLICTS* Reported by: cperciva, junchoon
3.5.4 08 Feb 2023 18:05:20	Bernard Spil (brnrd)	security/libressl: Security update to 3.5.4 Security: 1dd84344-a7da-11ed-86e9-d4c9ef517024 MFH: 2023Q1
3.5.3 25 Sep 2022 11:15:46	Bernard Spil (brnrd)	security/libressl: Update to 3.5.3 * Make sure you check https://wiki.freebsd.org/LibreSSL/3.5 and UPDATING
07 Sep 2022 21:58:51	Stefan Eßer (se)	Remove WWW entries moved into port Makefiles Commit b7f05445c00f has added WWW entries to port Makefiles based on WWW: lines in pkg-descr files. This commit removes the WWW: lines of moved-over URLs from these pkg-descr files. Approved by: portmgr (tcberner)
3.4.3 07 Sep 2022 21:10:59	Stefan Eßer (se)	Add WWW entries to port Makefiles It has been common practice to have one or more URLs at the end of the ports' pkg-descr files, one per line and prefixed with "WWW:". These URLs should point at a project website or other relevant resources. Access to these URLs required processing of the pkg-descr files, and they have often become stale over time. If more than one such URL was present in a pkg-descr file, only the first one was tarnsfered into the port INDEX, but for many ports only the last line did contain the port specific URL to further information. There have been several proposals to make a project URL available as a macro in the ports' Makefiles, over time. (Only the first 15 lines of the commit message are shown above )
3.4.3 20 Jul 2022 14:22:56	Tobias C. Berner (tcberner)	security: remove 'Created by' lines A big Thank You to the original contributors of these ports: * <ports@c0decafe.net> * Aaron Dalton <aaron@FreeBSD.org> * Adam Weinberger <adamw@FreeBSD.org> * Ade Lovett <ade@FreeBSD.org> * Aldis Berjoza <aldis@bsdroot.lv> * Alex Dupre <ale@FreeBSD.org> * Alex Kapranoff <kappa@rambler-co.ru> * Alex Samorukov <samm@freebsd.org> * Alexander Botero-Lowry <alex@foxybanana.com> * Alexander Kriventsov <avk@vl.ru> * Alexander Leidinger <netchild@FreeBSD.org> (Only the first 15 lines of the commit message are shown above )
3.4.3 16 Mar 2022 19:19:45	Bernard Spil (brnrd)	security/libressl: Security update to 3.4.3 Security: ea05c456-a4fd-11ec-90de-1c697aa5a594 MFH: 2022Q1
3.4.2 28 Nov 2021 11:30:36	Bernard Spil (brnrd)	security/libressl: Fix merge conflict
3.4.1 23 Nov 2021 22:11:40	Stefan Eßer (se)	/: Remove redundant '-[0-9]*' from CONFLICTS_INSTALL The conflict checks compare the patterns first against the package names without version (as reported by "pkg query "%n"), then - if there was no match - agsinst the full package names including the version (as reported by "pkg query "%n-%v"). Approved by: portmgr (blanket)
3.4.1 09 Nov 2021 08:19:33	Bernard Spil (brnrd)	security/libressl: Upgrade to 3.4.1 * Includes TLS 1.3 capability
3.3.5 03 Oct 2021 11:54:58	Bernard Spil (brnrd)	security/libressl: Update to 3.3.5 * Fixes issues with LetsEncrypt DST Root X3 expiry MFH: 2021Q4
3.3.4 29 Aug 2021 12:05:02	Bernard Spil (brnrd)	security/libressl: Update to 3.3.4 * Auto-generate MAN3 plist
3.3.3 04 May 2021 14:31:51	Bernard Spil (brnrd)	security/libressl: Upgrade to 3.3.3 * Add libtls flavor
3.2.5 06 Apr 2021 14:31:07	Mathieu Arnold (mat)	Remove # $FreeBSD$ from Makefiles.
3.2.5 20 Mar 2021 18:35:47	brnrd	security/libressl: Security update to 3.2.5 Security: eeca52dc-866c-11eb-b8d6-d4c9ef517024
3.2.4_1 16 Mar 2021 15:43:22	brnrd	security/libressl: Security fix for potential use-after-free MFH: 2021Q1 Security: eeca52dc-866c-11eb-b8d6-d4c9ef517024
3.2.4 13 Feb 2021 10:12:57	brnrd	security/libressl: Bugfix update to 3.2.4 * See errata 013 from OpenBSD 6.8 * Various interoperability issues and memory leaks were discovered in libcrypto and libssl
3.2.3 11 Dec 2020 10:40:03	brnrd	security/libressl: Security update to 3.2.3 MFH: 2020Q4 Security: 88dfd92f-3b9c-11eb-929d-d4c9ef517024
3.2.2 19 Oct 2020 18:02:55	brnrd	security/libressl: Update to 3.2.2
3.1.4 19 Aug 2020 07:03:12	brnrd	security/libressl: Update to 3.1.4 * Interoperability and bug fixes (incl hang) MFH: 2020Q3
3.1.3 16 Jun 2020 07:00:52	brnrd	security/libressl: Chain-validation update to 3.1.3
3.1.2 21 May 2020 11:12:15	brnrd	security/libressl: Bugfix update to 3.1.2 * Fixes client crash MFH: 2020Q2
3.1.1 08 May 2020 20:17:22	brnrd	security/libressl: Update to 3.1.1 * 3.1 branch now stable (OpenBSD 6.7)
3.0.2 27 Apr 2020 13:10:14	brnrd	security/openssl-devel: Resurrect OpenSSL devel port
3.0.2 01 Jan 2020 17:30:19	brnrd	Chase rename of security/openssl111 - Categories n-z MFH: 2020Q1
3.0.2 19 Oct 2019 14:23:00	brnrd	security/libressl: Update to 3.0.2 * no SHLIBVER bump
2.9.2 22 May 2019 18:24:29	brnrd	security/libressl: Update to 2.9.2
2.9.1 22 Apr 2019 19:44:58	brnrd	security/libressl: Update to 2.9.1 - Requires a rebuild of all dependent ports
2.8.3 16 Dec 2018 11:08:56	brnrd	security/libressl: Security update to 2.8.3 Security: 6f170cf2-e6b7-11e8-a9a8-b499baebfeaf
2.8.2 20 Oct 2018 10:30:23	brnrd	security/libressl: Update to 2.8.2 - Requires rebuild of all dependent ports
2.7.4 12 Sep 2018 11:36:17	brnrd	Chase CONFLICTS after addition of security/openssl111 - While here mark OpenSSL 1.1.0 deprecated see: https://www.openssl.org/policies/releasestrat.html
2.7.4 14 Jun 2018 17:28:54	brnrd	security/libressl: Security update to 2.7.4 MFH: 2018Q2 Security: c82ecac5-6e3f-11e8-8777-b499baebfeaf
2.7.3 06 May 2018 19:08:26	brnrd	security/libressl: Don't stage man3 manpages if MAN3 off
2.7.3 06 May 2018 12:16:09	brnrd	security/libressl: Update to 2.7.3
2.7.2_1 30 Apr 2018 08:08:49	brnrd	security/libressl: Use -pthread Reported by: jbeich, eadler
2.7.2_1 29 Apr 2018 12:37:37	brnrd	security/libressl: Force linking libthr - Fixes problems with loading private ssh keys
2.7.2 28 Apr 2018 20:09:44	brnrd	security/libressl: Add version.mk change
2.7.2 28 Apr 2018 19:46:57	brnrd	security/libressl: Update to 2.7.2 - Most important ports are compatible, see https://wiki.freebsd.org/LibreSSL/2.7 for more info
2.6.4_1 27 Apr 2018 10:16:47	brnrd	security/libressl: Bump portrevision - Everybody deserves AES-NI off-load Reported by: adamw
2.6.4 24 Apr 2018 19:50:43	brnrd	security/libressl: Fix AES-NI assembly detection - While here, fix broken man3 option Reported by: Franco Fichtner <franco opnsense org>
2.6.4 21 Dec 2017 07:07:23	brnrd	security/libressl: Bugfix update to 2.6.4 - Fixes (No-)TLS with broken smtp clients MFH: 2017Q4
2.6.3 07 Nov 2017 15:30:52	brnrd	security/libressl: Update to 2.6.3 - Align with security/libressl-devel - Switch to using new install-man5 target for MAN3 option - Add UPDATING entry
2.5.5 13 Jul 2017 10:49:16	brnrd	security/libressl: Update to 2.5.5 - Bugfix update to 2.5.5 - nc manpage install fixed upstream
2.5.4 03 May 2017 08:44:36	brnrd	security/libressl: Update to 2.5.4 - Security update to 2.5.4 - Remove CVE-2017-8301 patch (included in 2.5.4) Security: 24673ed7-2bf3-11e7-b291-b499baebfeaf
2.5.3_1 29 Apr 2017 17:10:09	brnrd	security/libressl: Fix vulnerability Obtained from: OpenBSD MFH: 2017Q2 Security: 24673ed7-2bf3-11e7-b291-b499baebfeaf Security: CVE-2017-8301
2.5.3 11 Apr 2017 19:01:34	brnrd	security/libressl: Update to 2.5.3 - Update to 2.5.3 - Bump shlib versions - Add UPDATING entry for shlib version bumps - Use --enable-nc configure arg - Align with CFLAGS from -devel - Remove commented EXPLICIT_BZERO blurb - Update pkg-plist - Add x25519, drop krb5_asn header - Add ocspcheck binary - Added/removed man-pages
2.4.5 01 Feb 2017 09:59:34	brnrd	security/libressl: Update to 2.4.5 - Update version to 2.4.5 - Remove patch now included
2.4.4_1 11 Jan 2017 11:42:37	brnrd	security/libressl: Fix ECDSA P-256 timing attack vuln - Add patch from OpenBSD MFH: 2017Q1 Security: 7caebe30-d7f1-11e6-a9a5-b499baebfeaf Security: CVE-2016-7056
2.4.4 02 Dec 2016 11:58:22	mat	Do not use post-stage. Use post-install instead. The only reason to use post-stage is because the port needs to do "things" at a later time, like some plist manipulation. While there, fold post-install in do-install targets when they are defined. PR: 214780 Submitted by: mat Exp-run by: antoine Sponsored by: Absolight
2.4.4 15 Nov 2016 21:51:28	brnrd	security/libressl: Update to 2.4.4 - Bug-fix update to 2.4.4 - Improve MAN3 option handling - add extra-patch
2.4.3 30 Oct 2016 14:56:57	brnrd	security/libressl: Switch to CONFLICTS_INSTALL - There's no conflict at build time PR: 213691
2.4.3 21 Oct 2016 12:51:41	mat	${RM} already has -f. PR: 213570 Submitted by: mat Exp-run by: antoine Sponsored by: Absolight
2.4.3 27 Sep 2016 20:50:33	brnrd	security/libressl: Update to 2.4.3 - Update to 2.4.3 - Only affected by CVE-2016-6304 (high) MFH: 2016Q3 Security: CVE-2016-6304 Security: 43eaa656-80bc-11e6-bf52-b499baebfeaf
2.4.2 11 Aug 2016 20:06:03	brnrd	security/libressl: Update to 2.4.2 - Update to latest stable version 2.4.2 - Add UPDATING entry - Remove OPENSSL_VERSION_NUMBER patch - Change post-install targets to post-stage where possible - Bump libcrypto version in version.mk PR: 211701
2.3.7 03 Aug 2016 19:25:11	brnrd	security/libressl: Update to 2.3.7 - Bugfix update [1] Release notes: - http://ftp.openbsd.org/pub/OpenBSD/LibreSSL/libressl-2.3.7-relnotes.txt
2.3.6 16 Jun 2016 13:22:59	mat	Add DEFAULT_VERSIONS=ssl=XXX Move the openssl detection routine to bsd.default-version.mk. Add warnings telling people to not use WITH_OPENSSL_PORT or WITH_OPENSSL_BASE. To ease maintainability, change the way the different ssl libraries version numbers are checked. PR: 210149 Submitted by: mat Exp-run by: antoine Sponsored by: The FreeBSD Foundation, Absolight Differential Revision: https://reviews.freebsd.org/D6577
2.3.6 09 Jun 2016 20:33:10	brnrd	security/libressl: Update to version 2.3.6 Security: CVE-2016-2178 Sponsored by: BSDCan DevSummit
2.3.5 01 Jun 2016 06:51:53	brnrd	security/libressl: Update to 2.3.5 - Update to bug-fix version 2.3.5 - `signify` verified tarball - Remove MAKE_JOBS_UNSAFE added in 2.3.4
2.3.4 03 May 2016 21:15:44	brnrd	security/libressl: Update to 2.3.4 - Upstream marked the 2.3 branch as stable - Bump SHLIB_VERSION in bsd.openssl.mk - Note SHLIB_VERSION bump and SSLv3 removal in UPDATING - Add TLS-enabled netcat binary - Fix linking issues with MySQL 5.7 [1] - Includes vulnerability fixes [2] PR: 208759 [1] Security: 01d729ca-1143-11e6-b55e-b499baebfeaf [2] Reviewed_by: feld (mentor), koobs (mentor) Approved by: feld (mentor, ports-secteam) Differential Revision: D5902
2.2.6 06 Mar 2016 20:06:41	brnrd	security/libressl*: Register conflict with security/openssl-devel - Add conflict for security/openssl-devel - Sort conflicts alphabetically Reviewed by: feld (mentor), koobs (mentor) Approved by: feld (mentor) Differential Revision: D5539
2.2.6 31 Jan 2016 11:48:37	brnrd	security/libressl: Update to 2.2.6 - Update to version 2.2.6 [1] - Remove CA root cert that is installed by default Changes: ftp://ftp.openbsd.org/pub/OpenBSD/LibreSSL/libressl-2.2.6-relnotes.txt [1] Reviewed by: koobs (mentor), feld (mentor) Approved by: (mentor) Differential Revision: D5115
2.2.5 05 Jan 2016 19:47:13	brnrd	ecurity/libressl: Take MAINTAINER'ship - As requested by current maintainer via email Reviewed by: koobs (mentor), vsevolod (maintainer), feld (mentor) Approved by: koobs (mentor), vsevolod (maintainer) Differential Revision: D4782
2.2.5 08 Dec 2015 10:02:19	brnrd	security/libressl: Update to 2.2.5 - Version 2.2.5 addresses CVE-2015-2394 - Refactor regression-test target to TEST_TARGET - Add LibreSSL < 2.2.5/2.3.1_1 vuxml entry Reviewed by: koobs (mentor), feld (ports-secteam), delphij (ports-secteam) Approved by: koobs (mentor), delphij (ports-secteam) Security: 215e740e-9c56-11e5-90e7-b499baebfeaf MFH: 2015Q4 Differential Revision: https://reviews.freebsd.org/D4393
2.2.4 16 Oct 2015 07:13:03	brnrd	security/libressl: Fix memory leak and buffer overflow DoS vulnerability * Update to 2.2.4 (fixing vulnerabilities) * Create vuxml entry Differential Revision: https://reviews.freebsd.org/D3916 Submitted by: Bernard Spil <brnrd@freebsd.org> Reviewed by: delphij Approved by: delphij (secteam) MFC after: 2015Q4 Security: e75a96df-73ca-11e5-9b45-b499baebfeaf Security: CVE-2015-5333, CVE-2015-5334
2.2.3 15 Sep 2015 19:22:46	brnrd	security/libressl: Fix AESNI support PR: 200894 Approved by: vsevolod (maintainer, mentor)
2.2.3 31 Aug 2015 12:25:43	brnrd	security/libressl: Update to 2.2.3 - Update to 2.2.3 - Show compiler flags/invokes in build-log Changes: ftp://ftp.openbsd.org/pub/OpenBSD/LibreSSL/libressl-2.2.3-relnotes.txt Reviewed by: koobs (mentor) Approved by: koobs (mentor) Differential Revision: https://reviews.freebsd.org/D3537
2.2.2 06 Aug 2015 19:36:47	brnrd	Revert pkg-plist OPENSSL_SHLIBVER addition Reported by: antoine
2.2.2 06 Aug 2015 19:13:18	brnrd	security/libressl: Update to 2.2.2 * Bump SHLIB versions of libssl/crypto/tls * Bump OPENSSL_SHLIBVER in bsd.openssl.mk * Add UPDATING entry for SHLIB version bump * Narrow scope of CONFLICTS (portlint) Changes: ftp://ftp.openbsd.org/pub/OpenBSD/LibreSSL/libressl-2.2.2-relnotes.txt Differential_revision: D3278 Reviewed by: koobs (mentor), vsevolod (maintainer, mentor) Approved by: koobs (mentor)
2.2.1 08 Jul 2015 19:27:48	brnrd	security/libressl: Update to 2.2.1 * Minor update from OpenBSD LibreSSL-portable * Bumps all SHLIB versions * Bumps OPENSSL_SHLIBVER in bsd.openssl.mk * Adds UPDATING entry for SHLIB version bump * MFH as 2.2.0 already closes several vulns Changes: ftp://ftp.openbsd.org/pub/OpenBSD/LibreSSL/libressl-2.2.1-relnotes.txt Differential revision: https://reviews.freebsd.org/D2963 Reviewed by: vsevolod (maintainer/mentor), koobs (mentor) Approved by: vsevolod (maintainer/mentor), koobs (mentor) MFH: 2015Q3
2.2.0 14 Jun 2015 13:28:27	brnrd	security/libressl: Update to 2.2.0 - Update to 2.2.0 - Remove opensslfeatures.h patch (included upstream) - Add pkg-plist (mainly documentation) - Bump libcrypto SHLIB version in Mk/bsd.openssl.mk Changes: http://marc.info/?l=openbsd-announce&m=143404058913441 Reviewed_by: vsevolod, koobs Approved by: vsevolod (maintainer, mentor), koobs (mentor) Security: 8305e215-1080-11e5-8ba2-000c2980a9f3 Differential revision: D2770 MFH: 2015Q2
2.1.7 12 Jun 2015 02:23:34	vsevolod	- Update to 2.1.7 that fixes the recent openssl vulnerabilities Submitted by: zi via IRC
2.1.6_1 01 Jun 2015 07:25:55	brnrd	security/libressl: Backport change for missing EGD feature - LibreSSL uses opensslfeatures.h to set defines for removed features - RAND_egd support was removed before first portable release - Change adds OPENSSL_NO_EGD define to make porting easier - Change is part of coming 2.2.0 version Approved by: vsevolod (maintainer, mentor), koobs (mentor) Obtained from: OpenBSD MFC after: 1 month
2.1.6 14 May 2015 10:15:09	mat	MASTER_SITES cleanup. - Replace ${MASTER_SITE_FOO} with FOO. - Merge MASTER_SITE_SUBDIR into MASTER_SITES when possible. (This means 99.9% of the time.) - Remove occurrences of MASTER_SITE_LOCAL when no subdirectory was present and no hint of what it should be was present. - Fix some logic. - And generally, make things more simple and easy to understand. While there, add magic values to the FESTIVAL, GENTOO, GIMP, GNUPG, QT and SAMBA macros. Also, replace some EXTRACT_SUFX occurences with USES=tar:*. Checked by: make fetch-urlall-list With hat: portmgr Sponsored by: Absolight
2.1.6 19 Mar 2015 23:11:49	vsevolod	- Update to 2.1.6 - Remove incorrectly added patch files PR: 198718 Submitted by: Bernard Spil <spil.oss at gmail.com> Security: CVE-2015-0209, CVE-2015-0286, CVE-2015-0287, CVE-2015-0288, CVE-2015-0289
2.1.5_1 19 Mar 2015 15:30:24	vsevolod	- Backport the following fixes from openssl [1]: CVE-2015-0207 Segmentation fault in DTLSv1_listen moderate CVE-2015-0209 Use After Free following d2i_ECPrivatekey error low CVE-2015-0286 Segmentation fault in ASN1_TYPE_cmp moderate CVE-2015-0287 ASN.1 structure reuse memory corruption moderate CVE-2015-0289 PKCS7 NULL pointer dereferences moderate - Enable libtls component [2] - Bump portrevision PR: 198681 [1] Submitted by: Bernard Spil <spil.oss at gmail.com> [1], naddy [2]
2.1.5 18 Mar 2015 09:55:01	vsevolod	- Update to 2.1.5 PR: 198651 Submitted by: Bernard Spil <spil.oss at gmail.com>
2.1.4 04 Mar 2015 09:34:26	vsevolod	- Update to 2.1.4 PR: 198269 Submitted by: Bernard Spil <spil.oss at gmail.com>
2.1.3 22 Jan 2015 16:48:38	vsevolod	- Update to 2.1.3 PR: 197005 Submitted by: Bernard Spil <spil.oss at gmail.com>
2.1.2 16 Dec 2014 22:06:34	vsevolod	- Update to 2.1.2
2.1.1 17 Oct 2014 10:13:02	vsevolod	- Update to 2.1.1.
2.1.0 13 Oct 2014 08:33:04	vsevolod	- Update to 2.1.0 Submitted by: Johan Schuijt <johan at 300.nl> via private email
2.0.5 17 Aug 2014 14:22:00	vsevolod	- Update to 2.0.5. Submitted by: Johan Schuijt <johan at 300.nl> via private email
2.0.4 07 Aug 2014 12:56:14	vsevolod	- Update to 2.0.4. Notice: openssl CVEs are not yet fixed in this version.
2.0.3 22 Jul 2014 14:08:54	vsevolod	Update to 2.0.3.
2.0.2 16 Jul 2014 11:07:25	vsevolod	Update to 2.0.2
2.0.1 13 Jul 2014 14:52:26	vsevolod	- Update to 2.0.1
2.0.0_1 12 Jul 2014 20:49:36	vsevolod	- Fix OPENSSL_VERSION_NUMBER to identify that libressl supports features of openssl 1.0.1g only - Add LIBRESSL_VERSION_NUMBER to distinguish from openssl - Strip libraries correctly - Bump PORTREVISION
2.0.0 12 Jul 2014 12:03:43	vsevolod	Add libressl port - OpenBSD fork of the popular OpenSSL library.

Number of commits found: 89

Login
User Login Create account

Servers and bandwidth provided by
New York Internet, iXsystems, and RootBSD

This site
What is FreshPorts? About the authors Issues FAQ How big is it? Security Policy Privacy Blog Contact

Search
Enter Keywords: more...

Latest Vulnerabilities

libXpm	Mar 23
tailscale	Mar 23
chromium	Mar 22
ungoogled-chromium	Mar 22
redis	Mar 21
redis-devel	Mar 21
curl	Mar 20
phpmyadmin	Mar 16
phpmyadmin5	Mar 16
apache24	Mar 11
chromium	Mar 09
jenkins	Mar 09
jenkins-lts	Mar 09
ungoogled-chromium	Mar 09
go119	Mar 08

9 vulnerabilities affecting 177 ports have been reported in the past 14 days

^* - modified, not new

All vulnerabilities

Last processed:
2023-03-23 18:06:50 UTC

Ports
Home Categories Deleted ports Sanity Test Failures Newsfeeds

Statistics

Graphs
NEW Graphs (Javascript)

Calculated hourly:

Port count	59499
Broken	136
Deprecated	184
Ignore	313
Forbidden	10
Restricted	2
No CDROM	0
Vulnerable	32
Expired	7
Set to expire	150
Interactive	0
new 24 hours	1
new 48 hours	1
new 7 days	44
new fortnight	68
new month	128