| Commit History - (may be incomplete: see SVNWeb link above for full details) |
| Date | By | Description |
25 Apr 2015 09:36:02
  1.0.2_1
 
|
dinoex  |
- patchfiles for option PADLOCK renamed again
PR: 199444 |
12 Apr 2015 17:28:08
1.0.2_1
|
dinoex |
- disable option ASM by default
- bump PORTREVISION
PR: 196756 |
26 Mar 2015 08:38:25
1.0.2
|
marino |
security/openssl: Remove patch hunk for configuring pthreads
The patching of Configure file for pthreads is unnecessary -- the effect
of -lpthread -D_REENTRANT is the same as -pthread -D_REENTRANT, so just
remove it to make things even more simpler. |
25 Mar 2015 08:30:28
1.0.2
|
marino |
security category: Remove $PTHREAD_LIBS
approved by: PTHREAD blanket |
21 Mar 2015 10:53:14
1.0.2
|
dinoex |
- Security update to 1.0.2a
- termios.h now default
- fix patches
- fix manpage generation
- option ZLIB removed from default
- restore padlock support
- restore RFC-5705
- restore patch history
- restore build on older FreeBSD
- restore soname
Security: https://www.openssl.org/news/secadv_20150319.txt
Security: CVE-2015-0291
Security: CVE-2015-0204
Security: CVE-2015-0290
Security: CVE-2015-0207
Security: CVE-2015-0286
Security: CVE-2015-0208
Security: CVE-2015-0287
Security: CVE-2015-0289
Security: CVE-2015-0292
Security: CVE-2015-0293
Security: CVE-2015-1787
Security: CVE-2015-0285
Security: CVE-2015-0209
Security: CVE-2015-0288 |
19 Mar 2015 22:15:37
1.0.1_19
|
delphij |
Fix botched patch, this fixes build for i386.
Reported by: ohauer
Pointy hat to: delphij |
19 Mar 2015 21:55:03
1.0.1_19
|
dinoex |
- mark BROKEN options |
19 Mar 2015 20:23:37
1.0.1_19
|
delphij |
Update to 1.0.1m to fix multiple vulnerabilities.
With hat: so |
16 Jan 2015 09:17:39
1.0.1_18
|
dinoex |
- update to 1.0.1l
- fix option PADLOCK |
09 Jan 2015 00:02:31
1.0.1_17
|
delphij |
Update to 1.01k.
With hat: ports-secteam
Security: vuxml 4e536c14-9791-11e4-977d-d050992ecde8
Security: CVE-2014-3569
Security: CVE-2014-3570
Security: CVE-2014-3571
Security: CVE-2014-3572
Security: CVE-2014-8275
Security: CVE-2015-0204
Security: CVE-2015-0205
Security: CVE-2015-0206 |
23 Nov 2014 10:34:38
1.0.1_16
|
dinoex |
- new option TLSEXPCIPHERS
PR: 195270
Submitted by: yuri@rawbw.com
- options ordered by function
- extends descriptions |
15 Oct 2014 18:34:14
1.0.1_16
|
delphij |
Update to 1.01j.
With hat: ports-secteam
Security: vuxml 03175e62-5494-11e4-9cc1-bc5ff4fb5e7b
Security: CVE-2014-3513
Security: CVE-2014-3566
Security: CVE-2014-3567
Security: CVE-2014-3568 |
14 Aug 2014 16:25:12
1.0.1_15
|
dinoex |
- remove workaround for amd64 |
11 Aug 2014 04:27:53
1.0.1_14
|
dinoex |
- new options SSL2 SSL3
Suggested by: Velcro Leaf |
06 Aug 2014 23:37:50
1.0.1_14
|
delphij |
Update to 1.01i.
With hat: ports-secteam
Security: vuxml 8aff07eb-1dbd-11e4-b6ba-3c970e169bc2
Security: CVE-2014-3505
Security: CVE-2014-3506
Security: CVE-2014-3507
Security: CVE-2014-3508
Security: CVE-2014-3509
Security: CVE-2014-3510
Security: CVE-2014-3511
Security: CVE-2014-3512
Security: CVE-2014-5139 |
03 Aug 2014 15:30:04
1.0.1_13
|
dinoex |
- rename patch files |
29 Jul 2014 14:30:10
1.0.1_13
|
adamw |
Rename security/ patches to reflect the files they modify. |
15 Jul 2014 16:57:39
1.0.1_13
|
adamw |
Add DOCS to OPTIONS_DEFINE to ports that check for PORT_OPTIONS:MDOCS. |
13 Jul 2014 20:47:22
1.0.1_13
|
dinoex |
- add CONFLICTS because of libressl |
10 Jul 2014 10:27:39
1.0.1_13
|
des |
Include the final letter in the CPE version field. |
03 Jul 2014 16:49:37
1.0.1_13
|
dinoex |
- allow OPENSSLDIR be changed in /etc/make.conf or Makefile.local |
05 Jun 2014 12:54:40
1.0.1_13
|
delphij |
Update to 1.0.1h.
Approved by: so (ports-security@ blanket)
Security: 5ac53801-ec2e-11e3-9cf3-3c970e169bc2 |
04 Jun 2014 16:54:57
1.0.1_12
|
des |
Add CPE information.
With hat: ports-secteam |
03 May 2014 16:36:42
1.0.1_12
|
dinoex |
- Security patch
Security: CVE-2014-0198
Security: http://seclists.org/oss-sec/2014/q2/232
Security:
https://rt.openssl.org/Ticket/Display.html?user=guest&pass=guest&id=3321
Obtained from: OpenBSD |
13 Apr 2014 08:40:14
1.0.1_11
|
dinoex |
- fix a 4 year old "use-after-free" problem
https://rt.openssl.org/Ticket/Display.html?id=2167&user=guest&pass=guest
http://www.tedunangst.com/flak/post/analysis-of-openssl-freelist-reuse
http://ftp.openbsd.org/pub/OpenBSD/patches/5.4/common/008_openssl.patch
Obtained from: OpenBSD |
12 Apr 2014 16:58:26
1.0.1_10
|
dinoex |
- fix perl path for CURRENT
PR: 188486 |
07 Apr 2014 21:46:40
1.0.1_10
|
bdrewery |
- Update to 1.0.1g
Changes:
- Fix for CVE-2014-0160
- Add TLS padding extension workaround for broken servers.
- Fix for CVE-2014-0076
Security: CVE-2014-0160
Security: CVE-2014-0076
Security: https://www.openssl.org/news/secadv_20140407.txt
With hat: portmgr
MFH: 2014Q2 |
30 Mar 2014 19:37:22
1.0.1_9
|
dinoex |
- add missing LIB_DEPENDS for forbidden option GMP |
28 Mar 2014 18:23:44
1.0.1_9
|
dinoex |
- reset GREP_OPTIONS
PR: 188030 |
04 Mar 2014 06:51:38
1.0.1_9
|
dinoex |
- remove broken MANPREFIX |
02 Mar 2014 13:13:28
1.0.1_9
|
dinoex |
- error out early if users trying to break their base system
PR: 187076 |
14 Feb 2014 14:34:00
1.0.1_9
|
dinoex |
- use STAGEDIR
PR: 186753
Submitted by: Takefu |
08 Jan 2014 20:52:58
1.0.1_9
|
dinoex |
- fix option PADLOCK
Submitted by: Renato Botelho |
08 Jan 2014 07:12:01
1.0.1_9
|
dinoex |
- better fix for perl5.18
Submitted by: Jung-uk Kim
- clean up |
07 Jan 2014 20:40:22
1.0.1_9
|
dinoex |
- Security update to openssl-1.0.1f
- remove broken patches
- new fix for perl5.18
- fix option GMP
Security: http://www.openssl.org/news/vulnerabilities.html
Security: CVE-2013-4353
Security: CVE-2013-6449
Security: CVE-2013-6450
Security: 5aaa257e-772d-11e3-a65a-3c970e169bc2 |
21 Sep 2013 09:45:25
1.0.1_8
|
dinoex |
- fix build with perl 5.16
Submitted by: Takefu |
20 Sep 2013 22:55:26
1.0.1_8
|
bapt |
Add NO_STAGE all over the place in preparation for the staging support (cat:
security) |
16 Sep 2013 16:45:35
1.0.1_8
|
bapt |
Convert to new perl framework
Convert USE_GMAKE to USES |
09 Sep 2013 18:22:13
1.0.1_8
|
dinoex |
- drop depedency to makedepend
Submitted by: Darren Pilgrim |
18 Jun 2013 04:33:06
1.0.1_8
|
dinoex |
- fix build when libc.so is not a symlink
Submitted by: Bryan Drewery |
18 Mar 2013 06:20:21
1.0.1_8
|
dinoex |
- fix wording of option
Submitted by: Warren Block |
05 Mar 2013 20:47:18
1.0.1_8
|
dinoex |
- updated patches for options PADLOCK |
03 Mar 2013 22:37:47
1.0.1_8
|
dinoex |
- fix build with manpages |
25 Feb 2013 06:07:10
1.0.1_8
|
dinoex |
- fix broken symlink in manpage
Submitted by: Warren Block |
13 Feb 2013 20:23:04
1.0.1_8
|
dinoex |
- update to 1.0.1e |
10 Feb 2013 16:20:47
1.0.1_7
|
dinoex |
- fix paddding in TLS1.1 and DTLS on amd64 |
06 Feb 2013 20:13:08
1.0.1_6
|
dinoex |
- Security update to 1.0.1d
Security: CVE-2012-2686
Security: CVE-2013-0166
Security: CVE-2013-0169
Security: http://www.openssl.org/news/secadv_20120510.txt |
03 Feb 2013 06:36:23
1.0.1_5
|
dinoex |
- fix option PADLOCK
PR: 175622
Submitted by: Mathieu Simon |
29 Jan 2013 18:46:39
1.0.1_5
|
dinoex |
- enable optimized NIST ECC on 64-bit little-endian machines
PR: 175663
Submitted by: bf |
29 Jan 2013 05:34:22
1.0.1_4
|
dinoex |
- make the pkg-message respect PREFIX
PR: 175663
Submitted by: bf |
28 Jan 2013 18:07:32
1.0.1_4
|
dinoex |
- mark option PADLOCK as BROKEN
PR: 175622 |
26 Jan 2013 16:34:40
1.0.1_4
|
dinoex |
- cleanup header |
29 Jul 2012 21:17:24
1.0.1_4
|
dinoex |
- fix pkg-plist for option SHARED
PR: 170261
Submitted by: Bryan Drewery |
29 Jul 2012 08:48:53
1.0.1_4
|
dinoex |
- fix pkg-plist for option SHARED disabled |
29 Jul 2012 08:36:47
1.0.1_4
|
dinoex |
- pass no-thread if threads are disabled |
29 Jul 2012 08:10:38
1.0.1_4
|
dinoex |
- fix option THREADS
- bump PORTREVISION
PR: 170231
Submitted by: Kubilay Kocak |
30 Jun 2012 11:33:28
1.0.1_3
|
dinoex |
- update descripitions
PR: 169464
Submitted by: CyberRax
- shorter desc for options |
26 Jun 2012 03:41:01
1.0.1_3
|
dinoex |
- fix options ZLIP and ASM
Reported by: jkim |
15 Jun 2012 21:07:56
1.0.1_2
|
dinoex |
- use OPTIONS_DEFINE
- add VIA padlock support
PR: 164795
Submitted by: Stefan Krüger |
17 May 2012 04:45:02
1.0.1_2
|
dinoex |
- fix build with -Werror
PR: 167350
Submitted by: Bryan Drewery
Obtained from:
http://rt.openssl.org/Ticket/Display.html?id=2724&user=guest&pass=guest#lasttrans |
13 May 2012 07:35:17
1.0.1_2
|
dinoex |
- Security update to 1.0.1c
Security: http://openssl.org/news/secadv_20120510.txt |
20 Apr 2012 11:13:17
1.0.1_1
|
dinoex |
- Security Update to 1.0.0a
Security: http://www.openssl.org/news/secadv_20120419.txt
Security:
http://lists.grok.org.uk/pipermail/full-disclosure/2012-April/086585.html
Security: CVE-2012-2110 |
11 Apr 2012 21:06:35
1.0.1
|
dinoex |
- update to 1.0.1 |
15 Mar 2012 06:15:33
1.0.0_10
|
dinoex |
- drop DTLS bugfixes, now included upstream
- drop SCTP, will be in 1.0.1
- Security update to 1.0.0h
Security: http://www.openssl.org/news/secadv_20120312.txt
Security: CVE-2012-0884
PR: 166064
Approved by: portmgr (miwi)
Feature safe: yes |
22 Feb 2012 05:15:12
1.0.0_9
|
dinoex |
- tamper SHLIB_VERSION_NUMBER in opensslv.h
This allows some qt apps to dynamicly load openssl |
19 Jan 2012 19:25:16
1.0.0_9
|
dinoex |
- Security update to 1.0.0g
Security: http://www.openssl.org/news/secadv_20120118.txt |
11 Jan 2012 05:44:00
1.0.0_8
|
dinoex |
- Build with obsolte MD2 hash by default
- Security Update to 1.0.0f
Security: http://openssl.org/news/secadv_20120104.txt
Security: CVE-2011-4108
Security: CVE-2011-4109
Security: CVE-2011-4576
Security: CVE-2011-4577
Security: CVE-2011-4619
Security: CVE-2012-0027
Submitted by: Tim Zingelman |
22 Nov 2011 06:50:04
1.0.0_7
|
dinoex |
- make portlint happier
- update patches
PR: 161379
Feature safe: yes |
22 Nov 2011 06:48:05
1.0.0_6
|
dinoex |
- cleanup homepage
Feature safe: yes |
07 Sep 2011 18:10:58
1.0.0_6
|
dinoex |
- Security update to 1.0.0e
Security: http://openssl.org/news/secadv_20110906.txt
- drop option TLS_EXTRACTOR, now in distribution
- add RFC-5705 patch
Obtained from: OpenBSD |
10 Feb 2011 18:30:34
1.0.0_5
|
dinoex |
- Security update to 1.0.0d
Security: http://openssl.org/news/secadv_20110208.txt
Security: CVE-2011-0014
Feature safe: yes |
03 Dec 2010 15:19:01
1.0.0_4
|
dinoex |
- Security update to 1.0.0c
Security: http://openssl.org/news/secadv_20101202.txt
Security: CVE-2010-4180 |
17 Nov 2010 10:35:00
1.0.0_3
|
dinoex |
- Security update to 1.0.0b
Security: http://openssl.org/news/secadv_20101116.txt
Security: CVE-2010-3864
PR: 152312
Submitted by: Alexander Wittig
- Fix regression in TLS handling
Obtained from: http://cvs.openssl.org/chngview?cn=19998 |
11 Jun 2010 20:15:30
1.0.0_2
|
dinoex |
- ease fetching |
11 Jun 2010 20:15:00
1.0.0_2
|
dinoex |
- update dtls-heartbeats.patch
PR: 147787
Submitted by: Nagilum |
06 Jun 2010 12:33:25
1.0.0_2
|
dinoex |
- update to openssl-1.0.0a
Security: CVE-2010-1633
this problem was already fixed in 1.0.0 with option WITH_DTLS_BUGS |
05 May 2010 15:21:58
1.0.0_1
|
dinoex |
- fix path in c_rehash
Submitted by: Matthias Andree
Obtained from: http://rt.openssl.org/Ticket/Display.html?id=2234
- add more DTLS bugfixes
Obtained from: http://sctp.fh-muenster.de/ |
06 Apr 2010 19:16:06
1.0.0
|
dinoex |
- add option WITHOUT_ASM |
06 Apr 2010 17:30:34
1.0.0
|
dinoex |
- fix build on sparc64
Submitted by: kwm |
06 Apr 2010 10:46:38
1.0.0
|
dinoex |
- chase updated patches for sctp-17 and dtls |
05 Apr 2010 18:21:07
1.0.0
|
dinoex |
- add options WITH_MD2
Suggested by: Tatsuki Makino
- add options WITH_RC5 and WITH_RFC3779 |
05 Apr 2010 07:44:05
1.0.0
|
dinoex |
- strip text for options
Reported by: Richard J. Dawes |
02 Apr 2010 18:42:11
1.0.0
|
dinoex |
- update to 1.0.0
- regression tested on i386, amd64 and ia64
- use DIST_SUBDIR to resolve conflicts with old patchfiles
- new options DTLS_RENEGOTIATION, DTLS_HEARTBEAT, TLS_EXTRACTOR, SCTP |
30 Mar 2010 19:07:14
0.9.8n
|
dinoex |
- Security update to 0.9.8n
Security: http://www.openssl.org/news/secadv_20100324.txt |
26 Feb 2010 18:47:09
0.9.8m
|
dinoex |
- update to 0.9.8m
- support RFC5746
Security: CVE-2008-1678
Security: CVE-2009-1377
Security: CVE-2009-1378
Security: CVE-2009-1379
Approved by: portmgr (pav)
Feature safe: yes |
23 Jan 2010 18:00:29
0.9.8l_4
|
dinoex |
- allow use of faster CPU
- enable SSE2 optimisations
- fix thread option
- cleanup
- fix spelling
- pass no-zlib option
Submitted by: b.f. |
20 Jan 2010 14:56:53
0.9.8l_3
|
dinoex |
- Security patch to fix Memory leak
http://cvs.openssl.org/chngview?cn=19068
http://www.openwall.com/lists/oss-security/2010/01/13/3
Security: CVE-2009-4355
Security: CVE-2008-1678
Obtained from: cvs.openssl.org |
13 Jan 2010 13:30:27
0.9.8l_2
|
dinoex |
- new option WITH_OPENSSL_THREADS
- revert Configure
- bump shared libs |
12 Jan 2010 15:43:52
0.9.8l_1
|
dinoex |
- drop broken FIPS support
- drop broken SCTP support
- drop out of date MASTER_SITE
- mark DEPRECATED |
05 Jan 2010 12:13:56
0.9.8l_1
|
ale |
Don't link unneeded PTHREAD_LIBS.
Approved by: portmgr |
06 Nov 2009 21:15:35
0.9.8l
|
dinoex |
- improve message for option WITH_SCTP
PR: 140153
Submitted by: Paul J Murphy |
06 Nov 2009 20:09:49
0.9.8l
|
dinoex |
- Security update to 0.9.8l
Security: CVE-2009-3555 |
30 Oct 2009 08:24:05
0.9.8k_5
|
dinoex |
- add option WITH_FIPS to make config
Submitted by: Patrick Rael |
19 Sep 2009 05:21:20
0.9.8k_5
|
dinoex |
PR: 138881
Obtained from: openssl-1.0.0
Feature safe: yes |
17 Sep 2009 07:06:24
0.9.8k_4
|
dinoex |
- fix Hardware acceleration
PR: 138881
Submitted by: Larry Baird
Feature safe: yes |
14 Aug 2009 09:49:16
0.9.8k_3
|
dinoex |
- make patches fetchable
- add temorary location to allow fetch before mirrors are in sync. |
14 Aug 2009 06:32:22
0.9.8k_3
|
dinoex |
- revert patch |
13 Aug 2009 20:01:35
0.9.8k_3
|
dinoex |
- update dtls-bugs.patch |
10 Aug 2009 12:47:30
0.9.8k_2
|
dinoex |
- mark option WITH_SCTP as broken |
21 Jul 2009 17:51:43
0.9.8k_2
|
dinoex |
- fix build for OSVERSION 800105 |
As an Amazon Associate I earn from qualifying purchases.
