non port: security/openssl/distinfo |
Number of commits found: 122 (showing only 100 on this page) |
Wednesday, 31 Jan 2024
|
18:59 Bernard Spil (brnrd)
security/openssl: Security update to 3.0.13
* Note that this is a security rollup of four previously reported CVEs
Security: 10dee731-c069-11ee-9190-84a93843eb75
Security: 8337251b-b07b-11ee-b0d7-84a93843eb75
Security: a5956603-7e4f-11ee-9df6-84a93843eb75
MFH: 2024Q1
fa860fe |
Tuesday, 24 Oct 2023
|
18:26 Bernard Spil (brnrd)
security/openssl: Security update to 3.0.12
Security: 4a4712ae-7299-11ee-85eb-84a93843eb75
MFH: 2023Q4
e32f5f1 |
Saturday, 14 Oct 2023
|
17:23 Bernard Spil (brnrd)
security/openssl: Major version update to 3.0
* OpenSSL 1.1.1 is EoL, update to new LTS version
* Aligns with upcoming OpenSSL version in 14.0
d5ec2e1 |
Monday, 11 Sep 2023
|
16:46 Bernard Spil (brnrd)
security/openssl: Update to 1.1.1w
* Final version of OpenSSL 1.1.1, this port will upgrade to
3.0 (LTS) with a next commit.
* Note the recent vuln was Windows only
4649d1f |
Wednesday, 2 Aug 2023
|
19:27 Bernard Spil (brnrd)
security/openssl: Update to 1.1.1v
* MFH this version as this is a roll-up of multiple vulnerability fixes
MFH: 2023Q3
04ffe8f |
Wednesday, 31 May 2023
|
11:41 Bernard Spil (brnrd)
security/openssl: Security update to 1.1.1u
Security: eb9a3c57-ff9e-11ed-a0d1-84a93843eb75
MFH: 2023Q2
11c58a2 |
Tuesday, 7 Feb 2023
|
19:54 Bernard Spil (brnrd)
security/openssl: Security update to 1.1.1t
Security: 648a432c-a71f-11ed-86e9-d4c9ef517024
MFH: 2023Q1
bf0a2e5 |
Tuesday, 1 Nov 2022
|
17:47 Bernard Spil (brnrd)
security/openssl: Update to 1.1.1s
323086c |
Tuesday, 5 Jul 2022
|
14:53 Bernard Spil (brnrd)
security/openssl: Security update to 1.1.1q
* Fixes vuln in AES OCB
Security: a28e8b7e-fc70-11ec-856e-d4c9ef517024
MFH: 2022Q3
df0eb4e |
Wednesday, 22 Jun 2022
|
08:56 Bernard Spil (brnrd)
security/openssl: Security update to 1.1.1p
Security: 4eeb93bf-f204-11ec-8fbd-d4c9ef517024
f894292 |
Wednesday, 4 May 2022
|
07:33 Bernard Spil (brnrd)
security/openssl: Update to 1.1.1o
Security: fceb2b08-cb76-11ec-a06f-d4c9ef517024
MFH: 2022Q2
1c667cc |
Wednesday, 16 Mar 2022
|
19:18 Bernard Spil (brnrd)
security/openssl: Security update to 1.1.1n
Security: ea05c456-a4fd-11ec-90de-1c697aa5a594
MFH: 2022Q1
4374137 |
Tuesday, 14 Dec 2021
|
19:13 Bernard Spil (brnrd)
security/openssl: Update to 1.1.1m
00935ff |
Tuesday, 24 Aug 2021
|
17:54 Bernard Spil (brnrd)
security/openssl: Security update to 1.1.1l
Security: 96811d4a-04ec-11ec-9b84-d4c9ef517024
MFH: 2021Q3
d3011e2 |
Friday, 26 Mar 2021
|
08:13 brnrd
security/openssl: Security update to 1.1.1k
PR: 254551
Submitted by: Pascal Christen <pascal christen hostpoint ch>
MFH: 2021Q1
Security: 5a668ab3-8d86-11eb-b8d6-d4c9ef517024
|
Wednesday, 17 Feb 2021
|
13:57 brnrd
security/openssl: Security update to 1.1.1j
PR: 253561
Reported by: Michael Glaus <michael glaus hostpoint ch>
MFH: 2021Q1
Security: 96a21236-707b-11eb-96d8-d4c9ef517024
|
Tuesday, 8 Dec 2020
|
16:26 brnrd
security/vuxml: Security update to 1.1.1i
MFH: 2020Q4
Security: 1d56cfc5-3970-11eb-929d-d4c9ef517024
|
Wednesday, 23 Sep 2020
|
19:55 brnrd
security/openssl: Update to 1.1.1g
|
Wednesday, 22 Apr 2020
|
09:35 brnrd
security/openssl: Security update to 1.1.1g
PR: 245795
Reported by: Dani <i dani at outlook com>
MFH: 2020Q2
Security: 012809ce-83f3-11ea-92ab-00163e433440
|
Tuesday, 31 Mar 2020
|
14:37 brnrd
security/openssl: Bug-fix update to 1.1.1f
PR: 245154
MFH: 2020Q1
|
Tuesday, 17 Mar 2020
|
20:02 brnrd
security/openssl: Update to 1.1.1e
- SM2/SM3 not a cipher [1]
- Add weak-ciphers option [2]
PR: 237056 [1]
Reported by: dewayne heuristicsystems com.au> [1], mat [2]
|
Friday, 20 Dec 2019
|
15:06 brnrd
security/openssl: Security update to 1.0.2u
MFH: 2019Q4
Security: d778ddb0-2338-11ea-a1c7-b499baebfeaf
|
Wednesday, 11 Sep 2019
|
20:04 brnrd
security/openssl: Security update to 1.0.2t
MFH: 2019Q3
Security: 9e0c6f7a-d46d-11e9-a1c7-b499baebfeaf
|
Tuesday, 28 May 2019
|
20:22 brnrd
security/openssl: Security hardening update to 1.0.2s
MFH: 2019Q2
|
Wednesday, 27 Feb 2019
|
08:06 brnrd
security/openssl: Security update to 1.0.2r
MFH: 2019Q1
Security: 7700061f-34f7-11e9-b95c-b499baebfeaf
|
Tuesday, 20 Nov 2018
|
17:53 brnrd
security/openssl: Update to 1.0.2q
|
Tuesday, 14 Aug 2018
|
15:04 brnrd
security/openssl: Add engines patches to distinfo
- Undo clobbering distinfo
Reported by: mat
|
14:12 brnrd
security/openssl: Update to 1.0.2p
- Includes vulnerability fixes that were already
added to the port as patches
|
Tuesday, 27 Mar 2018
|
15:27 brnrd
security/openssl: Fix distinfo for patches
Reported by: joneum
|
14:53 brnrd
securit/openssl: Security update to 1.0.2o
MFH: 2018Q1
Security: b7cff5a9-31cc-11e8-8f07-b499baebfeaf
|
Thursday, 7 Dec 2017
|
15:48 brnrd
security/openssl: Update to 1.0.2m
- Remove patch now included upstream
- Include post-release patch for clang build error
MFH: 2017Q4
Security: 3bb451fc-db64-11e7-ac58-b499baebfeaf
|
Thursday, 2 Nov 2017
|
21:32 brnrd
security/openssl: Security update to 1.0.2m
- Adds additional manpages too
MFH: 2017Q4
Security: f40f07aa-c00f-11e7-ac58-b499baebfeaf
|
Thursday, 25 May 2017
|
21:20 brnrd
security/openssl: Fix distinfo after DIST_SUBDIR update
- Chase DIST_SUBDIR update in distinfo
Reported by: Cybil Courraud
|
18:53 brnrd
security/openssl: Update to 1.0.2l
- Bugfix update to 1.0.2l
- Fix PADLOCK option
- Build failure -Wunused-function
- Properly disable with configure
- Strip patch-version from DIST_SUBDIR, reduce dirs
- Remove unneeded testssl patch, dtls tests are OK
- Add new WITHOUT_SSL3 testssl extra-patch
- Remove md5 patch (inconsistent output)
- Remove openbsd_hw.c patch (not compiled)
- Remove srtp patch (upstream fixed)
- Fix plist
|
Thursday, 26 Jan 2017
|
14:26 brnrd
security/openssl: Update to 1.0.2k
MFH: 2017Q1
Security: CVE-2016-7055
Security: CVE-2017-3731
Security: CVE-2017-3732
|
Monday, 26 Sep 2016
|
13:47 brnrd
security/openssl: Update to 1.0.2j
- Update to 1.0.2j
- Fixes Missing CRL sanity check (CVE-2016-7052)
Security: 337d8-83ed-11e6-bf52-b499baebfeaf
|
Friday, 23 Sep 2016
|
12:54 brnrd
security/openssl: Update to 1.0.2i
- Update to 1.0.2i
- Move from PORTREVISION to PORTVERSION updates
- Remove patches that are included upstream
Reviewed by: mat, delphij
MFH: 2016Q3
Sponsored by: EuroBSDcon 2016 DevSummit
Differential Revision: D8006
|
Saturday, 27 Aug 2016
|
11:00 mat
Revert the OpenSSL 1.1.0 update, it was not tested.
With hat: portmgr
Sponsored by: Absolight
|
09:59 dinoex
- update to 1.1.0
- bump SHLIBVERSION
|
Tuesday, 3 May 2016
|
15:19 dinoex
- Security update to 1.0.2h
Security: https://www.openssl.org/news/secadv/20160503.txt
Security: CVE-2016-2105
Security: CVE-2016-2106
Security: CVE-2016-2107
Security: CVE-2016-2108
Security: CVE-2016-2109
Security: CVE-2016-2176
MFH: 2016Q2
|
Tuesday, 1 Mar 2016
|
16:40 dinoex
- Security update to 1.0.2g
Security: https://www.openssl.org/news/secadv/20160301.txt
Security: CVE-2016-0800
Security: CVE-2016-0705
Security: CVE-2016-0798
Security: CVE-2016-0797
Security: CVE-2016-0799
Security: CVE-2016-0702
Security: CVE-2016-0703
Security: CVE-2016-0704
|
Thursday, 28 Jan 2016
|
15:09 dinoex
- Security update:
- add LICENSE_FILE
MFH: 2016Q1
Security: CVE-2015-3197
Security: CVE-2016-0701
|
Saturday, 5 Dec 2015
|
09:41 delphij
Update to 1.0.2e.
Security: CVE-2015-3193
Security: CVE-2015-3194
Security: CVE-2015-3195
Security: CVE-2015-3196
Security: CVE-2015-1794
MFH: 2015Q4
Approved by: so
|
Thursday, 9 Jul 2015
|
20:54 dinoex
- Security update to 1.0.2d
Security: http://openssl.org/news/secadv_20150709.txt
|
Friday, 12 Jun 2015
|
16:47 dinoex
- update to 1.0.2c
|
14:40 dinoex
- fix path in SIZE lines
|
14:19 zi
- Correct patch filename for SIZE
|
14:09 zi
- Restore missing checksum for
1001-crypto-hmac-support-EVP_MD_CTX_FLAG_ONESHOT-and-set-.patch
- Correct ordering
|
Thursday, 11 Jun 2015
|
21:37 zi
- Update to 1.0.2b
- Partially pacify portlint
With hat: ports-secteam
Security: 8305e215-1080-11e5-8ba2-000c2980a9f3
|
Saturday, 25 Apr 2015
|
09:36 dinoex
- patchfiles for option PADLOCK renamed again
PR: 199444
|
Saturday, 21 Mar 2015
|
10:53 dinoex
- Security update to 1.0.2a
- termios.h now default
- fix patches
- fix manpage generation
- option ZLIB removed from default
- restore padlock support
- restore RFC-5705
- restore patch history
- restore build on older FreeBSD
- restore soname
Security: https://www.openssl.org/news/secadv_20150319.txt
Security: CVE-2015-0291
Security: CVE-2015-0204
Security: CVE-2015-0290
Security: CVE-2015-0207
Security: CVE-2015-0286
Security: CVE-2015-0208
Security: CVE-2015-0287
Security: CVE-2015-0289
Security: CVE-2015-0292
Security: CVE-2015-0293
Security: CVE-2015-1787
Security: CVE-2015-0285
Security: CVE-2015-0209
Security: CVE-2015-0288
|
Thursday, 19 Mar 2015
|
20:23 delphij
Update to 1.0.1m to fix multiple vulnerabilities.
With hat: so
|
Friday, 16 Jan 2015
|
09:17 dinoex
- update to 1.0.1l
- fix option PADLOCK
|
Friday, 9 Jan 2015
|
00:02 delphij
Update to 1.01k.
With hat: ports-secteam
Security: vuxml 4e536c14-9791-11e4-977d-d050992ecde8
Security: CVE-2014-3569
Security: CVE-2014-3570
Security: CVE-2014-3571
Security: CVE-2014-3572
Security: CVE-2014-8275
Security: CVE-2015-0204
Security: CVE-2015-0205
Security: CVE-2015-0206
|
Wednesday, 15 Oct 2014
|
18:34 delphij
Update to 1.01j.
With hat: ports-secteam
Security: vuxml 03175e62-5494-11e4-9cc1-bc5ff4fb5e7b
Security: CVE-2014-3513
Security: CVE-2014-3566
Security: CVE-2014-3567
Security: CVE-2014-3568
|
Wednesday, 6 Aug 2014
|
23:37 delphij
Update to 1.01i.
With hat: ports-secteam
Security: vuxml 8aff07eb-1dbd-11e4-b6ba-3c970e169bc2
Security: CVE-2014-3505
Security: CVE-2014-3506
Security: CVE-2014-3507
Security: CVE-2014-3508
Security: CVE-2014-3509
Security: CVE-2014-3510
Security: CVE-2014-3511
Security: CVE-2014-3512
Security: CVE-2014-5139
|
Thursday, 5 Jun 2014
|
12:54 delphij
Update to 1.0.1h.
Approved by: so (ports-security@ blanket)
Security: 5ac53801-ec2e-11e3-9cf3-3c970e169bc2
|
Monday, 7 Apr 2014
|
21:46 bdrewery
- Update to 1.0.1g
Changes:
- Fix for CVE-2014-0160
- Add TLS padding extension workaround for broken servers.
- Fix for CVE-2014-0076
Security: CVE-2014-0160
Security: CVE-2014-0076
Security: https://www.openssl.org/news/secadv_20140407.txt
With hat: portmgr
MFH: 2014Q2
|
Wednesday, 8 Jan 2014
|
20:52 dinoex
- fix option PADLOCK
Submitted by: Renato Botelho
|
Tuesday, 7 Jan 2014
|
20:40 dinoex
- Security update to openssl-1.0.1f
- remove broken patches
- new fix for perl5.18
- fix option GMP
Security: http://www.openssl.org/news/vulnerabilities.html
Security: CVE-2013-4353
Security: CVE-2013-6449
Security: CVE-2013-6450
Security: 5aaa257e-772d-11e3-a65a-3c970e169bc2
|
Saturday, 21 Sep 2013
|
09:45 dinoex
- fix build with perl 5.16
Submitted by: Takefu
|
Tuesday, 5 Mar 2013
|
20:47 dinoex
- updated patches for options PADLOCK
|
Wednesday, 13 Feb 2013
|
20:23 dinoex
- update to 1.0.1e
|
Wednesday, 6 Feb 2013
|
20:13 dinoex
- Security update to 1.0.1d
Security: CVE-2012-2686
Security: CVE-2013-0166
Security: CVE-2013-0169
Security: http://www.openssl.org/news/secadv_20120510.txt
|
Sunday, 3 Feb 2013
|
06:36 dinoex
- fix option PADLOCK
PR: 175622
Submitted by: Mathieu Simon
|
Friday, 15 Jun 2012
|
21:07 dinoex
- use OPTIONS_DEFINE
- add VIA padlock support
PR: 164795
Submitted by: Stefan Krüger
|
Sunday, 13 May 2012
|
07:35 dinoex
- Security update to 1.0.1c
Security: http://openssl.org/news/secadv_20120510.txt
|
Friday, 20 Apr 2012
|
11:13 dinoex
- Security Update to 1.0.0a
Security: http://www.openssl.org/news/secadv_20120419.txt
Security:
http://lists.grok.org.uk/pipermail/full-disclosure/2012-April/086585.html
Security: CVE-2012-2110
|
Wednesday, 11 Apr 2012
|
21:06 dinoex
- update to 1.0.1
|
Thursday, 15 Mar 2012
|
06:15 dinoex
- drop DTLS bugfixes, now included upstream
- drop SCTP, will be in 1.0.1
- Security update to 1.0.0h
Security: http://www.openssl.org/news/secadv_20120312.txt
Security: CVE-2012-0884
PR: 166064
Approved by: portmgr (miwi)
Feature safe: yes
|
Thursday, 19 Jan 2012
|
19:25 dinoex
- Security update to 1.0.0g
Security: http://www.openssl.org/news/secadv_20120118.txt
|
Wednesday, 11 Jan 2012
|
05:44 dinoex
- Build with obsolte MD2 hash by default
- Security Update to 1.0.0f
Security: http://openssl.org/news/secadv_20120104.txt
Security: CVE-2011-4108
Security: CVE-2011-4109
Security: CVE-2011-4576
Security: CVE-2011-4577
Security: CVE-2011-4619
Security: CVE-2012-0027
Submitted by: Tim Zingelman
|
Tuesday, 22 Nov 2011
|
06:50 dinoex
- make portlint happier
- update patches
PR: 161379
Feature safe: yes
|
Wednesday, 7 Sep 2011
|
18:10 dinoex
- Security update to 1.0.0e
Security: http://openssl.org/news/secadv_20110906.txt
- drop option TLS_EXTRACTOR, now in distribution
- add RFC-5705 patch
Obtained from: OpenBSD
|
Thursday, 10 Feb 2011
|
18:30 dinoex
- Security update to 1.0.0d
Security: http://openssl.org/news/secadv_20110208.txt
Security: CVE-2011-0014
Feature safe: yes
|
Friday, 3 Dec 2010
|
15:19 dinoex
- Security update to 1.0.0c
Security: http://openssl.org/news/secadv_20101202.txt
Security: CVE-2010-4180
|
Wednesday, 17 Nov 2010
|
10:35 dinoex
- Security update to 1.0.0b
Security: http://openssl.org/news/secadv_20101116.txt
Security: CVE-2010-3864
PR: 152312
Submitted by: Alexander Wittig
- Fix regression in TLS handling
Obtained from: http://cvs.openssl.org/chngview?cn=19998
|
Friday, 11 Jun 2010
|
20:15 dinoex
- update dtls-heartbeats.patch
PR: 147787
Submitted by: Nagilum
|
Sunday, 6 Jun 2010
|
12:33 dinoex
- update to openssl-1.0.0a
Security: CVE-2010-1633
this problem was already fixed in 1.0.0 with option WITH_DTLS_BUGS
|
Wednesday, 5 May 2010
|
15:21 dinoex
- fix path in c_rehash
Submitted by: Matthias Andree
Obtained from: http://rt.openssl.org/Ticket/Display.html?id=2234
- add more DTLS bugfixes
Obtained from: http://sctp.fh-muenster.de/
|
Tuesday, 6 Apr 2010
|
10:46 dinoex
- chase updated patches for sctp-17 and dtls
|
Friday, 2 Apr 2010
|
18:42 dinoex
- update to 1.0.0
- regression tested on i386, amd64 and ia64
- use DIST_SUBDIR to resolve conflicts with old patchfiles
- new options DTLS_RENEGOTIATION, DTLS_HEARTBEAT, TLS_EXTRACTOR, SCTP
|
Tuesday, 30 Mar 2010
|
19:07 dinoex
- Security update to 0.9.8n
Security: http://www.openssl.org/news/secadv_20100324.txt
|
Friday, 26 Feb 2010
|
18:47 dinoex
- update to 0.9.8m
- support RFC5746
Security: CVE-2008-1678
Security: CVE-2009-1377
Security: CVE-2009-1378
Security: CVE-2009-1379
Approved by: portmgr (pav)
Feature safe: yes
|
Friday, 6 Nov 2009
|
20:09 dinoex
- Security update to 0.9.8l
Security: CVE-2009-3555
|
Friday, 14 Aug 2009
|
06:32 dinoex
- revert patch
|
Thursday, 13 Aug 2009
|
20:01 dinoex
- update dtls-bugs.patch
|
Wednesday, 20 May 2009
|
19:22 dinoex
- add more DTLS bugfixes
- use options framework
- new option WITH_FIPS
add fips code
- new option WITH_SCTP
add SCTP support to openssl
|
Saturday, 28 Mar 2009
|
17:32 dinoex
- Security update to 0.9.8k
Security: http://www.openssl.org/news/secadv_20090325.txt
Security: CVE-2009-0590
Security: CVE-2009-0591 (port not affected)
Security: CVE-2009-0789
PR: 133156
Submitted by: Eygene Ryabinkin
|
Friday, 9 Jan 2009
|
18:48 dinoex
- update to 0.9.8j
- move patches from files-beta back to files
- FIPS disabled with force
- support for crypto_hw device cloning restored
- support for crypto_hw aes_256 restored
|
06:38 dinoex
- cleanup 0.97
|
Thursday, 9 Oct 2008
|
05:35 dinoex
- update to 0.9.8i
|
Sunday, 8 Jun 2008
|
10:53 dinoex
PR: 124281
|
10:51 dinoex
- readd 0.9.7m
|
Thursday, 29 May 2008
|
17:49 dinoex
- Security update to 0.9.8h
Security: http://openssl.org/news/secadv_20080528.txt
Security: http://secunia.com/advisories/30405/
Security: http://cert.fi/haavoittuvuudet/2008/advisory-openssl.html
Security: CVE-2008-0891
Security: CVE-2008-1672
|
Tuesday, 23 Oct 2007
|
20:24 dinoex
- update to 0.9.8g
|
Tuesday, 16 Oct 2007
|
20:37 dinoex
- Secuurity update to 0.9.8f
Security: CVE-2007-4995
|
Tuesday, 27 Feb 2007
|
20:03 dinoex
- Security update to 0.9.7m / 0.9.8e
- md5 verfified.
Security: CVE-2006-2937
Security: CVE-2006-2938
Security: CVE-2006-2940
Security: CVE-2006-3738
Security: CVE-2006-4343
Security: SA-06:23.openssl
|
Thursday, 28 Sep 2006
|
15:24 dinoex
- Security update to 0.9.7l
- Security update to 0.9.8d
Security: http://www.openssl.org/news/secadv_20060928.txt
Security: CVE-2006-2937
Security: CVE-2006-2940
Security: CVE-2006-3738
Security: CVE-2006-4343
Security: http://security.freebsd.org/advisories/FreeBSD-SA-06:23.openssl.asc
md5 hashes verfied
|
Friday, 8 Sep 2006
|
05:20 dinoex
- update to 0.9.8c
- update stable to 0.9.7k
md5 verified
Security: http://www.openssl.org/news/secadv_20060905.txt
Security: CAN-2006-4339
|
Number of commits found: 122 (showing only 100 on this page) |