cvs commit: src UPDATING src/crypto/openssl/crypto/asn1 tasn_dec.c src/crypto/openssl/crypto/dh dh.h dh_err.c dh_key.c src/crypto/openssl/crypto/dsa dsa.h dsa_err.c dsa_ossl.c src/crypto/openssl/crypto/rsa rsa.h rsa_eay.c rsa_err.c ...

From: Colin Percival <cperciva_at_FreeBSD.org>
Date: Thu, 28 Sep 2006 13:04:16 +0000 (UTC)
cperciva    2006-09-28 13:04:16 UTC

  FreeBSD src repository

  Modified files:        (Branch: RELENG_5_5)
    .                    UPDATING 
    crypto/openssl/crypto/asn1 tasn_dec.c 
    crypto/openssl/crypto/dh dh.h dh_err.c dh_key.c 
    crypto/openssl/crypto/dsa dsa.h dsa_err.c dsa_ossl.c 
    crypto/openssl/crypto/rsa rsa.h rsa_eay.c rsa_err.c 
    crypto/openssl/ssl   s2_clnt.c s3_srvr.c ssl_lib.c 
    sys/conf             newvers.sh 
  Log:
  Correct multiple vulnerabilities in crypto(3).
  Limit the size of public keys used in order to protect applications
  from a denial of service via insane key sizes.
  
  Security:       FreeBSD-SA-06:23.openssl
  Approved by:    so (cperciva)
  
  Revision          Changes    Path
  1.342.2.35.2.6    +5 -0      src/UPDATING
  1.1.1.2.16.1      +3 -0      src/crypto/openssl/crypto/asn1/tasn_dec.c
  1.1.1.6.18.1      +5 -0      src/crypto/openssl/crypto/dh/dh.h
  1.1.1.4.6.1.4.1   +1 -0      src/crypto/openssl/crypto/dh/dh_err.c
  1.1.1.8.4.1.4.1   +6 -0      src/crypto/openssl/crypto/dh/dh_key.c
  1.1.1.6.6.1.4.1   +6 -0      src/crypto/openssl/crypto/dsa/dsa.h
  1.1.1.4.18.1      +2 -0      src/crypto/openssl/crypto/dsa/dsa_err.c
  1.1.1.7.4.1.4.1   +12 -0     src/crypto/openssl/crypto/dsa/dsa_ossl.c
  1.10.4.1.4.1      +13 -1     src/crypto/openssl/crypto/rsa/rsa.h
  1.12.4.1.4.1      +45 -1     src/crypto/openssl/crypto/rsa/rsa_eay.c
  1.1.1.4.18.1      +1 -0      src/crypto/openssl/crypto/rsa/rsa_err.c
  1.12.2.1.4.1      +2 -1      src/crypto/openssl/ssl/s2_clnt.c
  1.1.1.13.2.1.4.1  +1 -1      src/crypto/openssl/ssl/s3_srvr.c
  1.1.1.11.2.1.4.1  +1 -1      src/crypto/openssl/ssl/ssl_lib.c
  1.62.2.21.2.8     +1 -1      src/sys/conf/newvers.sh
Received on Thu Sep 28 2006 - 13:04:19 UTC