system environment/libraries

openssl096b - The OpenSSL toolkit.

Website: http://www.openssl.org/
License: BSDish
Vendor: Scientific Linux
Description:
The OpenSSL toolkit provides support for secure communications between
machines. OpenSSL includes a certificate management tool and shared
libraries which provide various cryptographic algorithms and
protocols.

Packages

openssl096b-0.9.6b-22.46.el4_8.1.i386 [615 KiB] Changelog by Tomas Mraz (2010-03-19):
- CVE-2009-3245 - add missing checks for bn_wexpand failures (#570924)
openssl096b-0.9.6b-22.46.el4_8.1.x86_64 [673 KiB] Changelog by Tomas Mraz (2010-03-19):
- CVE-2009-3245 - add missing checks for bn_wexpand failures (#570924)
openssl096b-0.9.6b-22.46.el4_7.x86_64 [673 KiB] Changelog by Tomas Mraz (2008-12-17):
- CVE-2008-5077 - incorrect checks for malformed signatures (#476671)
openssl096b-0.9.6b-22.46.el4_7.i386 [615 KiB] Changelog by Tomas Mraz (2008-12-17):
- CVE-2008-5077 - incorrect checks for malformed signatures (#476671)
openssl096b-0.9.6b-22.46.x86_64 [672 KiB] Changelog by Tomas Mraz (2006-09-28):
- fix CVE-2006-2940 - parasitic public keys DoS (#207274)
- fix CVE-2006-3738 - buffer overflow in SSL_get_shared_ciphers (#206940)
- fix CVE-2006-4343 - sslv2 client DoS (#206940)
openssl096b-0.9.6b-22.46.i386 [614 KiB] Changelog by Tomas Mraz (2006-09-28):
- fix CVE-2006-2940 - parasitic public keys DoS (#207274)
- fix CVE-2006-3738 - buffer overflow in SSL_get_shared_ciphers (#206940)
- fix CVE-2006-4343 - sslv2 client DoS (#206940)
openssl096b-0.9.6b-22.43.i386 [614 KiB] Changelog by Tomas Mraz (2006-09-09):
- fix CVE-2006-4339 - prevent attack on PKCS#1 v1.5 signatures (#205180)
openssl096b-0.9.6b-22.43.x86_64 [672 KiB] Changelog by Tomas Mraz (2006-09-09):
- fix CVE-2006-4339 - prevent attack on PKCS#1 v1.5 signatures (#205180)
openssl096b-0.9.6b-22.42.x86_64 [672 KiB] Changelog by Tomas Mraz (2005-10-31):
- fix CVE-2004-0079 - prevent a null pointer assignment in
  do_change_cipher_spec()
- add security fix for CVE-2003-0851 to sync with 2.1AS
openssl096b-0.9.6b-22.42.i386 [614 KiB] Changelog by Tomas Mraz (2005-10-31):
- fix CVE-2004-0079 - prevent a null pointer assignment in
  do_change_cipher_spec()
- add security fix for CVE-2003-0851 to sync with 2.1AS
openssl096b-0.9.6b-22.4.i386 [613 KiB] Changelog by Tomas Mraz (2005-10-06):
- fix CAN-2005-2969 - remove SSL_OP_MSIE_SSLV2_RSA_PADDING which
  disables the countermeasure against man in the middle attack in SSLv2
  (#169863)
- more fixes for constant time/memory access for DSA signature algorithm
openssl096b-0.9.6b-22.4.x86_64 [671 KiB] Changelog by Tomas Mraz (2005-10-06):
- fix CAN-2005-2969 - remove SSL_OP_MSIE_SSLV2_RSA_PADDING which
  disables the countermeasure against man in the middle attack in SSLv2
  (#169863)
- more fixes for constant time/memory access for DSA signature algorithm

Listing created by Repoview-0.6.4