[Devil-linux-software] OpenSSL 0.9.8k has been released [freshmeat.net]

SourceForge Headquarters 1320 Columbia Street Suite 310 San Diego, CA 92101 +1 (858) 422-6466

Dear freshmeat.net subscriber,

barsnick just announced version 0.9.8k of OpenSSL on freshmeat.net.

The changes are as follows:

Three security flaws of moderate severity were fixed: Printing the contents of
an ASN1 certificate with an illegal encoded length could cause an application
crash (CVE-2009-0590). CMS verification could cause an invalid set of signed
attributes to appear valid (CVE-2009-0591). A malformed ASN1 structure could
cause invalid memory access (CVE-2009-0789). Further minor modifications were
made.

Project description:

The OpenSSL Project is a collaborative effort to
develop a robust, commercial-grade, fully
featured, and Open Source toolkit implementing the
Secure Sockets Layer (SSL v2/v3) and Transport
Layer Security (TLS v1) as well as a full-strength
general-purpose cryptography library.

Detailed history and release notes are available here:

    http://freshmeat.net/projects/openssl#release_296921

If you want to change your subscription to this project, please log in to:

    http://freshmeat.net/account/subscriptions

Best regards,
freshmeat.net