Re: openssl warning in ftp(1)

To: current-users%netbsd.org@localhost
Subject: Re: openssl warning in ftp(1)
From: christos%astron.com@localhost (Christos Zoulas)
Date: Thu, 9 Apr 2020 01:40:43 -0000 (UTC)

In article <CAN5gJXpEpSqNX-W=pHNmYGA7BdU45DSovnxVaWRs3UiBVvNigQ%mail.gmail.com@localhost>,
Alistair Crooks  <agc%pkgsrc.org@localhost> wrote:
>-=-=-=-=-=-
>
>Major changes between OpenSSL 1.1.1e and OpenSSL 1.1.1f [31 Mar 2020]
>
>   - Revert the unexpected EOF reporting via SSL_ERROR_SSL
>
>Major changes between OpenSSL 1.1.1d and OpenSSL 1.1.1e [17 Mar 2020]
>
>   - Fixed an overflow bug in the x64_64 Montgomery squaring procedure used
>   in exponentiation with 512-bit moduli (CVE-2019-1551
>   <https://www.openssl.org/news/vulnerabilities.html#2019-1551>)
>   - Properly detect unexpected EOF while reading in libssl and report it
>   via SSL_ERROR_SSL
>

1.1.1f is in HEAD now.

christos

References:
- openssl warning in ftp(1)
  - From: Thomas Klausner
- Re: openssl warning in ftp(1)
  - From: Alistair Crooks

Prev by Date: Re: sysctl machdep.hypervisor
Next by Date: Re: patches for RDC pcidevs, rdcpcib driver and Vortex86 SoCs identification
Previous by Thread: Re: openssl warning in ftp(1)
Next by Thread: wip/wine64 on amd64
Indexes:

Home | Main Index | Thread Index | Old Index