1. Forum
  2. Usenet
  3. COMP.UNIX.BSD.OPENBSD.ANN

  • LibreSSL 3.0.1 Released

    From Brent Cook@21:1/5 to All on Tue Oct 1 04:45:02 2019
    Copy: libressl@openbsd.org

    We have released LibreSSL 3.0.1, which will be arriving in the
    LibreSSL directory of your local OpenBSD mirror soon.

    This is the second development release from the 3.0 series, which will eventually be part of OpenBSD 6.6. It includes the following changes:

    * Ported Billy Brumley's fix for CVE-2019-1547 in OpenSSL 1.1.1. If a NULL
    or zero cofactor is passed to EC_GROUP_set_generator(), try to compute
    it using Hasse's bound. This works as long as the cofactor is small
    enough.

    * Fixed a memory leak in error paths for eckey_type2param().

    * Initial work on supporting Cryptographic Message Syntax (CMS) in
    libcrypto (not enabled).

    * Various manual page improvements and additions.

    * Added a CMake check for an existing uninstall target, facilitating
    embedding LibreSSL in larger CMake projects, from Matthew Albrecht.

    The LibreSSL project continues improvement of the codebase to reflect modern, safe programming practices. We welcome feedback and improvements from the broader community. Thanks to all of the contributors who helped make this release possible.

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)