2009年1月 9日

[installer 1785] Re: OpenSSL 0.9.8j

(Thu, 08 Jan 2009 12:01:22 +0900)
KATOH Yasufumi <karma@xxxxx>:
> openssl 0.9.8j が出ていますね.
> http://www.openssl.org/news/announce.html
> http://www.openssl.org/news/secadv_20090107.txt

↑ということで、セキュリティホールの修正が含まれています。

☆ openssl-0.9.8j
http://www.openssl.org/
ftp://ftp.openssl.org/source/openssl-0.9.8j.tar.gz
http://www.openssl.org/source/openssl-0.9.8j.tar.gz

Changes between 0.9.8i and 0.9.8j [07 Jan 2009]

*) Properly check EVP_VerifyFinal() and similar return values
(CVE-2008-5077).
[Ben Laurie, Bodo Moeller, Google Security Team]

*) Properly check EVP_VerifyFinal() and similar return values
(CVE-2008-5077).
[Ben Laurie, Bodo Moeller, Google Security Team]

*) Enable TLS extensions by default.
[Ben Laurie]

*) Allow the CHIL engine to be loaded, whether the application is
multithreaded or not. (This does not release the developer from the
obligation to set up the dynamic locking callbacks.)
[Sander Temme <sander@xxxxx>]

*) Use correct exit code if there is an error in dgst command.
[Steve Henson; problem pointed out by Roland Dirlewanger]

*) Tweak Configure so that you need to say "experimental-jpake" to enable
JPAKE, and need to use -DOPENSSL_EXPERIMENTAL_JPAKE in applications.
[Bodo Moeller]

*) Add experimental JPAKE support, including demo authentication in
s_client and s_server.
[Ben Laurie]

*) Set the comparison function in v3_addr_canonize().
[Rob Austein <sra@xxxxx>]

*) Add support for XMPP STARTTLS in s_client.
[Philip Paeps <philip@xxxxx>]

*) Change the server-side SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG behavior
to ensure that even with this option, only ciphersuites in the
server's preference list will be accepted. (Note that the option
applies only when resuming a session, so the earlier behavior was
just about the algorithm choice for symmetric cryptography.)
[Bodo Moeller]

----
こがよういちろう


投稿者 xml-rpc : 2009年1月 9日 09:20
役に立ちました?:
過去のフィードバック 平均:(0) 総合:(0) 投票回数:(0)
本記事へのTrackback: http://hoop.euqset.org/blog/mt-tb2006.cgi/80815
トラックバック
コメント
コメントする




画像の中に見える文字を入力してください。