Differential D1579

Update openssl to 1.0.2n to address vulnerabilities
ClosedPublic
Actions

Authored by kyrios123 on Dec 8 2017, 8:10 AM.

Tags

Referenced Files

	F11073485: D1579.diff
	Sat, Aug 12, 4:34 AM

	F10816904: D1579.id.diff
	Jun 1 2023, 4:28 AM

	F10779691: D1579.diff
	May 24 2023, 7:33 PM

	F10721290: D1579.id.diff
	May 6 2023, 9:03 AM

	F10690827: D1579.id3895.diff
	Apr 23 2023, 3:40 AM

Subscribers

Details

Reviewers

Group Reviewers

Commits

R2257:17feda32ed38: Update openssl to 1.0.2n to address vulnerabilities

Summary

Read/write after SSL object in error state (CVE-2017-3737)
rsaz_1024_mul_avx2 overflow bug on x86_64 (CVE-2017-3738)

Signed-off-by: Pierre-Yves <pyu@riseup.net>

Test Plan

openssl s_client -connect smtp.gmail.com:587 -starttls smtp

Diff Detail

Repository

Lint

Lint Not Applicable

Unit

Tests Not Applicable

Event Timeline

kyrios123 created this revision.Dec 8 2017, 8:10 AM

Herald added a reviewer: Triage Team. · View Herald TranscriptDec 8 2017, 8:10 AM

LGTM!

This revision is now accepted and ready to land.Dec 8 2017, 9:48 AM

Closed by commit R2257:17feda32ed38: Update openssl to 1.0.2n to address vulnerabilities (authored by kyrios123, committed by ikey). · Explain WhyDec 8 2017, 9:48 AM

This revision was automatically updated to reflect the committed changes.

Revision Contents
Changeset List

Path

Size

6 lines

pspec_x86_64.xml

14 lines

Diff 3900

package.yml

Loading...

pspec_x86_64.xml

Loading...