CVS commit: [netbsd-5-0] src/crypto/dist/openssl/ssl

To: source-changes%NetBSD.org@localhost
Subject: CVS commit: [netbsd-5-0] src/crypto/dist/openssl/ssl
From: "Manuel Bouyer" <bouyer%netbsd.org@localhost>
Date: Fri, 10 Dec 2010 21:42:43 +0000

Module Name:    src
Committed By:   bouyer
Date:           Fri Dec 10 21:42:43 UTC 2010

Modified Files:
        src/crypto/dist/openssl/ssl [netbsd-5-0]: s3_clnt.c s3_srvr.c

Log Message:
Pull up following revision(s) (requested by drochner in ticket #1509):
        crypto/external/bsd/openssl/dist/ssl/s3_srvr.c: revision 1.6 via patch
        crypto/external/bsd/openssl/dist/ssl/s3_clnt.c: revision 1.3 via patch
openssl security patch of the day:
Fix a flaw in the OpenSSL SSL/TLS server code where an old bug
workaround allows malicous clients to modify the stored session cache
ciphersuite. In some cases the ciphersuite can be downgraded to a weaker one
on subsequent connections. See
http://www.openssl.org/news/secadv_20101202.txt
(CVE-2010-4180)


To generate a diff of this commit:
cvs rdiff -u -r1.12.4.1.2.1 -r1.12.4.1.2.2 \
    src/crypto/dist/openssl/ssl/s3_clnt.c
cvs rdiff -u -r1.15.4.1.2.2 -r1.15.4.1.2.3 \
    src/crypto/dist/openssl/ssl/s3_srvr.c

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Prev by Date: CVS commit: [netbsd-5-1] src/crypto/dist/openssl/ssl
Next by Date: CVS commit: [netbsd-5] src/crypto/dist/openssl/ssl
Previous by Thread: CVS commit: [netbsd-5-1] src/crypto/dist/openssl/ssl
Next by Thread: CVS commit: [netbsd-5] src/crypto/dist/openssl/ssl
Indexes:

Home | Main Index | Thread Index | Old Index