[ol7_latest_archive] openssl-devel-1:1.0.1e-34.el7_0.7.i686

Name:	openssl-devel
Epoch:	1
Version:	1.0.1e
Release:	34.el7_0.7
Architecture:	i686
Group:	Development/Libraries
Size:	2311841
License:	OpenSSL
RPM:	openssl-devel-1.0.1e-34.el7_0.7.i686.rpm
Source RPM:	openssl-1.0.1e-34.el7_0.7.src.rpm
Build Date:	Tue Jan 20 2015
Build Host:	ca-build56.us.oracle.com
Vendor:	Oracle America
URL:	http://www.openssl.org/
Summary:	Files for development of applications which will use OpenSSL
Description:	OpenSSL is a toolkit for supporting cryptography. The openssl-devel package contains include files needed to develop applications which support various cryptographic algorithms and protocols.

Changelog (Show File list) (Show related packages)

Tue Jan 13 2015 Tomáš Mráz <tmraz@redhat.com> 1.0.1e-34.7

- fix CVE-2014-3570 - incorrect computation in BN_sqr()
- fix CVE-2014-3571 - possible crash in dtls1_get_record()
- fix CVE-2014-3572 - possible downgrade of ECDH ciphersuite to non-PFS state
- fix CVE-2014-8275 - various certificate fingerprint issues
- fix CVE-2015-0204 - remove support for RSA ephemeral keys for non-export
  ciphersuites and on server
- fix CVE-2015-0205 - do not allow unauthenticated client DH certificate
- fix CVE-2015-0206 - possible memory leak when buffering DTLS records

Wed Oct 15 2014 Tomáš Mráz <tmraz@redhat.com> 1.0.1e-34.6

- fix CVE-2014-3567 - memory leak when handling session tickets
- fix CVE-2014-3513 - memory leak in srtp support
- add support for fallback SCSV to partially mitigate CVE-2014-3566
  (padding attack on SSL3)

Fri Aug 08 2014 Tomáš Mráz <tmraz@redhat.com> 1.0.1e-34.4

- fix CVE-2014-3505 - doublefree in DTLS packet processing
- fix CVE-2014-3506 - avoid memory exhaustion in DTLS
- fix CVE-2014-3507 - avoid memory leak in DTLS
- fix CVE-2014-3508 - fix OID handling to avoid information leak
- fix CVE-2014-3509 - fix race condition when parsing server hello
- fix CVE-2014-3510 - fix DoS in anonymous (EC)DH handling in DTLS
- fix CVE-2014-3511 - disallow protocol downgrade via fragmentation

Tue Jun 03 2014 Tomáš Mráz <tmraz@redhat.com> 1.0.1e-34.3

- fix CVE-2010-5298 - possible use of memory after free
- fix CVE-2014-0195 - buffer overflow via invalid DTLS fragment
- fix CVE-2014-0198 - possible NULL pointer dereference
- fix CVE-2014-0221 - DoS from invalid DTLS handshake packet
- fix CVE-2014-0224 - SSL/TLS MITM vulnerability
- fix CVE-2014-3470 - client-side DoS when using anonymous ECDH

Tue Apr 08 2014 Tomáš Mráz <tmraz@redhat.com> 1.0.1e-34

- fix CVE-2014-0160 - information disclosure in TLS heartbeat extension

Fri Feb 14 2014 Tomáš Mráz <tmraz@redhat.com> 1.0.1e-33

- use the key length from configuration file if req -newkey rsa is invoked

Thu Feb 13 2014 Tomáš Mráz <tmraz@redhat.com> 1.0.1e-32
```
- avoid unnecessary reseeding in BN_rand in the FIPS mode
```

Wed Feb 12 2014 Tomáš Mráz <tmraz@redhat.com> 1.0.1e-31

- print ephemeral key size negotiated in TLS handshake (#1057715)
- add DH_compute_key_padded needed for FIPS CAVS testing
- make expiration and key length changeable by DAYS and KEYLEN
  variables in the certificate Makefile (#1058108)
- change default hash to sha256 (#1062325)
- lower the actual 3des strength so it is sorted behind aes128 (#1056616)

Fri Jan 24 2014 Daniel Mach <dmach@redhat.com> - 1:1.0.1e-30
```
- Mass rebuild 2014-01-24
```
Wed Jan 15 2014 Tomáš Mráz <tmraz@redhat.com> 1.0.1e-29
```
- rebuild with -O3 on ppc64 architecture
```