svn commit: r264265 - in head: crypto/openssl/crypto/bn crypto/openssl/crypto/ec crypto/openssl/ssl sys/fs/nfsserver
Bryan Drewery
bdrewery at FreeBSD.org
Tue Apr 8 20:55:20 UTC 2014
On 2014-04-08 13:27, Xin LI wrote:
> Author: delphij
> Date: Tue Apr 8 18:27:32 2014
> New Revision: 264265
> URL: http://svnweb.freebsd.org/changeset/base/264265
>
> Log:
> Fix NFS deadlock vulnerability. [SA-14:05]
>
> Fix "Heartbleed" vulnerability and ECDSA Cache Side-channel
> Attack in OpenSSL. [SA-14:06]
>
> Modified:
> head/crypto/openssl/crypto/bn/bn.h
> head/crypto/openssl/crypto/bn/bn_lib.c
> head/crypto/openssl/crypto/ec/ec2_mult.c
> head/crypto/openssl/ssl/d1_both.c
> head/crypto/openssl/ssl/t1_lib.c
> head/sys/fs/nfsserver/nfs_nfsdserv.c
>
__FreeBSD_version is needed too.
Also, that this was a partial release of 1.0.1g is confusing a LOT of
users. They think they are still vulnerable. They expect to see 1.0.1g
in 'openssl version'. We could have our own version string in 'openssl
version' to remedy this.
--
Regards,
Bryan Drewery
More information about the svn-src-all
mailing list