openssl: 1.0.1s -> 1.0.1t, 1.0.2g -> 1.0.2h (bdafc6df) · Commits · jan / nixpkgs

Commit bdafc6df authored May 03, 2016 by

Nathan Zadoks

openssl: 1.0.1s -> 1.0.1t, 1.0.2g -> 1.0.2h

CVE-2016-2108, high severity: Memory corruption in the ASN.1 encoder
CVE-2016-2107, high severity: Padding oracle in AES-NI CBC MAC check
CVE-2016-2105, low severity: EVP_EncodeUpdate overflow
CVE-2016-2106, low severity: EVP_EncryptUpdate overflow
CVE-2016-2109, low severity: ASN.1 BIO excessive memory allocation
CVE-2016-2176, low severity: EBCDIC overread

parent 5ca86940

Hide whitespace changes

Inline Side-by-side

Please register or to comment