Menu
▾
▴
[Devil-linux-software] OpenSSL 1.0.0e has been released [freshmeat.net]
|
From: freshmeat.net <no...@fr...> - 2011-09-07 10:49:31
|
Dear freshmeat.net subscriber, barsnick just announced version 1.0.0e of OpenSSL on freshmeat.net. ------------------------------------------------------------------------ Real-time Protection for Hyper-V Moving resources to virtual platforms has allowed IT departments to consolidate and better utilize resources. However, protecting virtual machines is not always as simple as backing up the virtual disk files and special care must be taken. The three primary solution categories are backup, high availability and disaster recovery solutions. Learn more. http://www.accelacomm.com/jaw/fmnl/114/80612232/ ------------------------------------------------------------------------ The changes are as follows: Initialization of X509_STORE_CTX was fixed to eliminate a case where CRLs with "nextUpdate" in the past were sometimes accepted. (This was reported as CVE-2011-3207.) An error in SSL memory handling for (EC)DH ciphersuites was fixed (CVE-2011-3210). A memory leak on bad inputs to x509_name_ex_d2i was fixed. Some ECC ciphersuites are no longer restricted to SHA1. Protection against ECDSA timing attacks was introduced. Project description: The OpenSSL Project is a collaborative effort to develop a robust, commercial-grade, fully featured, and Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) as well as a full-strength general-purpose cryptography library. Detailed history and release notes are available here: http://freshmeat.net/projects/openssl#release_336070 If you want to change your subscription to this project, please log in to: http://freshmeat.net/account/subscriptions Best regards, freshmeat.net -- This email was sent to dev...@li.... Geeknet, Inc. | 594 Howard Street, Suite 300 | San Francisco, CA 94105 Privacy Policy: http://geek.net/privacy-statement |
