[blfs-book] OpenSSL 1.0.1c has been released [Freecode]

Freecode noreply at freecode.com
Wed Jun 6 15:25:44 PDT 2012


Dear OpenSSL follower,

barsnick just announced version 1.0.1c of OpenSSL on Freecode.

The release notes for this version are as follows:

Record length are now sanity checked before skipping explicit IV in TLS 1.2,
1.1, and DTLS, to avoid possible DoS attacks.  A possible deadlock when decoding
public keys has been fixed.  The TLS 1.0 record version number is no longer used
in the initial client hello if renegotiating.  tkeylen in now initialized
properly when encrypting CMS messages.  In FIPS mode, composite ciphers are no
longer used, as they are not approved.

Project description:

The OpenSSL Project is a collaborative effort to
develop a robust, commercial-grade, fully
featured, and Open Source toolkit implementing the
Secure Sockets Layer (SSL v2/v3) and Transport
Layer Security (TLS v1) as well as a full-strength
general-purpose cryptography library.

Detailed history and release notes are available here:

    http://freecode.com/projects/openssl#release_345391

If you want to unfollow this project, please log in to:

    http://freecode.com/account/subscriptions

Best regards,
Freecode

-- 
This email was sent to blfs-book at linuxfromscratch.org.

Geeknet, Inc. | 594 Howard Street, Suite 300 | San Francisco, CA  94105 
Privacy Policy: http://geek.net/privacy-statement



More information about the blfs-book mailing list