generic-library/openssl
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
openssl/crypto
History
Mark J. Cox 951dfbb13a Introduce limits to prevent malicious keys being able to 
cause a denial of service.  (CVE-2006-2940)
[Steve Henson, Bodo Moeller]

Fix ASN.1 parsing of certain invalid structures that can result
in a denial of service.  (CVE-2006-2937)  [Steve Henson]

Fix buffer overflow in SSL_get_shared_ciphers() function.
(CVE-2006-3738) [Tavis Ormandy and Will Drewry, Google Security Team]

Fix SSL client code which could crash if connecting to a
malicious SSLv2 server.  (CVE-2006-4343)
[Tavis Ormandy and Will Drewry, Google Security Team]
2006-09-28 11:29:03 +00:00
..
aes
Fix from HEAD.
2006-08-31 21:01:41 +00:00
asn1
Introduce limits to prevent malicious keys being able to
2006-09-28 11:29:03 +00:00
bf
Update filenames in makefiles
2006-02-04 01:49:36 +00:00
bio
backport recent changes from the cvs head
2006-02-08 19:16:33 +00:00
bn
Ensure that the addition mods[i]+delta cannot overflow in probable_prime().
2006-09-18 14:01:39 +00:00
buffer
Update filenames in makefiles
2006-02-04 01:49:36 +00:00
camellia
New Camellia implementation (replacing previous version)
2006-07-19 13:38:27 +00:00
cast
Update filenames in makefiles
2006-02-04 01:49:36 +00:00
comp
Update filenames in makefiles
2006-02-04 01:49:36 +00:00
conf
Update filenames in makefiles
2006-02-04 01:49:36 +00:00
des
Update filenames in makefiles
2006-02-04 01:49:36 +00:00
dh
Introduce limits to prevent malicious keys being able to
2006-09-28 11:29:03 +00:00
dsa
Introduce limits to prevent malicious keys being able to
2006-09-28 11:29:03 +00:00
dso
Update filenames in makefiles
2006-02-04 01:49:36 +00:00
ec
Introduce limits to prevent malicious keys being able to
2006-09-28 11:29:03 +00:00
ecdh
Missing CFLAG in couple of depend: targets [from HEAD].
2005-12-18 19:02:22 +00:00
ecdsa
fix typo: pass pre-computed parameters to the underlying signature function; thanks to Lucas Newman
2006-02-13 08:22:39 +00:00
engine
Fix warning.
2006-04-15 17:53:52 +00:00
err
Thread-safety fixes
2006-06-14 08:51:41 +00:00
evp
Fix from HEAD.
2006-08-31 21:01:41 +00:00
hmac
Update filenames in makefiles
2006-02-04 01:49:36 +00:00
idea
Update filenames in makefiles
2006-02-04 01:49:36 +00:00
krb5
Further BUILDENV refinement, further fool-proofing of Makefiles and
2005-05-16 16:55:47 +00:00
lhash
Update filenames in makefiles
2006-02-04 01:49:36 +00:00
md2
Update filenames in makefiles
2006-02-04 01:49:36 +00:00
md4
Update filenames in makefiles
2006-02-04 01:49:36 +00:00
md5
Update filenames in makefiles
2006-02-04 01:49:36 +00:00
mdc2
Update filenames in makefiles
2006-02-04 01:49:36 +00:00
objects
Camellia cipher, contributed by NTT
2006-06-09 15:42:21 +00:00
ocsp
improved error checking and some fixes
2005-07-26 20:55:17 +00:00
pem
Update filenames in makefiles
2006-02-04 01:49:36 +00:00
perlasm
Fix from HEAD.
2006-02-04 01:26:49 +00:00
pkcs7
Oops...
2006-07-09 12:07:22 +00:00
pkcs12
Fix from HEAD.
2006-05-17 18:20:27 +00:00
pqueue
Update filenames in makefiles
2006-02-04 01:49:36 +00:00
rand
use <poll.h> as by Single Unix Specification
2006-06-30 08:14:50 +00:00
rc2
fix "#ifndef HZ" statement
2006-02-28 20:08:46 +00:00
rc4
Update filenames in makefiles
2006-02-04 01:49:36 +00:00
rc5
Update filenames in makefiles
2006-02-04 01:49:36 +00:00
ripemd
Update filenames in makefiles
2006-02-04 01:49:36 +00:00
rsa
Introduce limits to prevent malicious keys being able to
2006-09-28 11:29:03 +00:00
sha
Update filenames in makefiles
2006-02-04 01:49:36 +00:00
stack
Update filenames in makefiles
2006-02-04 01:49:36 +00:00
store
backport recent changes from the cvs head
2006-02-08 19:16:33 +00:00
threads
Only use environment variables if uid and gid are the same as euid and egid.
2003-12-27 16:07:20 +00:00
txt_db
Update filenames in makefiles
2006-02-04 01:49:36 +00:00
ui
Avoid unused variable warnings.
2005-09-26 02:40:18 +00:00
x509
Inherit check time if appropriate.
2006-05-03 13:16:02 +00:00
x509v3
backport recent changes from the cvs head
2006-02-08 19:16:33 +00:00
.cvsignore
Add emacs cache files to .cvsignore.
2005-04-11 14:17:07 +00:00
cpt_err.c
Rebuild error codes.
2005-04-12 16:15:22 +00:00
cryptlib.c
WCE update, mostly typos [from HEAD].
2005-08-03 20:04:05 +00:00
cryptlib.h
Move _WIN32_WINNT definition from command line to e_os.h [from HEAD].
2005-05-21 13:19:46 +00:00
crypto-lib.com
Keep synchronised with Unix
2006-06-12 06:46:27 +00:00
crypto.h
Eliminate "statement with no effect" warning when OPENSSL_assert macro
2005-05-08 19:54:33 +00:00
cversion.c
(oops) Apologies all, that last header-cleanup commit was from the wrong
2004-04-19 18:09:28 +00:00
ebcdic.c
Oops, this file already had the "empty source file" workaround but it
2003-10-29 22:25:04 +00:00
ebcdic.h
EBCDIC support.
2000-02-01 02:21:16 +00:00
ex_data.c
(oops) Apologies all, that last header-cleanup commit was from the wrong
2004-04-19 18:09:28 +00:00
ia64cpuid.S
Cpuid modules updates.
2005-05-03 21:05:06 +00:00
install.com
Keep synchronised with the Unix build
2006-06-10 05:38:29 +00:00
LPdir_nyi.c
Copy a few files from LPlib (a new project of mine), add a wrapper.
2004-07-10 13:16:02 +00:00
LPdir_unix.c
Import changed files from LPlib. The changes are logged as follows
2004-09-23 22:11:39 +00:00
LPdir_vms.c
Import changed files from LPlib. The changes are logged as follows
2004-09-23 22:11:39 +00:00
LPdir_win32.c
Import changed files from LPlib. The changes are logged as follows
2004-09-23 22:11:39 +00:00
LPdir_win.c
Import changed files from LPlib. The changes are logged as follows
2004-09-23 22:11:39 +00:00
LPdir_wince.c
Import changed files from LPlib. The changes are logged as follows
2004-09-23 22:11:39 +00:00
Makefile
Update filenames in makefiles
2006-02-04 01:49:36 +00:00
md32_common.h
bswapl usage should be masked by I386_ONLY.
2005-09-19 13:17:07 +00:00
mem_clr.c
avoid warnings when building on systems where sizeof(void *) > sizeof(int)
2005-04-29 14:26:59 +00:00
mem_dbg.c
To secure Win64 API I'm throwing in this minimalistic Win64 support.
2005-07-04 23:24:12 +00:00
mem.c
CRYPTO_malloc(), CRYPTO_realloc() and variants of them should return NULL
2003-12-01 12:06:15 +00:00
o_dir_test.c
Copy a few files from LPlib (a new project of mine), add a wrapper.
2004-07-10 13:16:02 +00:00
o_dir.c
DJGPP has opendir() and friends, according to Gisle Vanem <giva@bgnett.no>.
2004-08-03 19:15:21 +00:00
o_dir.h
Copy a few files from LPlib (a new project of mine), add a wrapper.
2004-07-10 13:16:02 +00:00
o_str.c
"Overload" SunOS 4.x memcmp, which ruins ASN1_OBJECT table lookups [from HEAD].
2005-09-20 20:25:17 +00:00
o_str.h
"Overload" SunOS 4.x memcmp, which ruins ASN1_OBJECT table lookups [from HEAD].
2005-09-20 20:25:17 +00:00
o_time.c
Since version 7.0, The C RTL in VMS handles time in terms of UTC
2004-07-19 07:50:43 +00:00
o_time.h
Use one address consistently.
2001-07-05 10:20:07 +00:00
opensslconf.h.in
This fixes the installation target for dynamic engines, which was trying to
2004-06-01 03:18:58 +00:00
opensslv.h
After tagging, prep for next release
2006-09-05 08:51:30 +00:00
ossl_typ.h
Reduce dependencies on crypto.h by moving the opaque definition of
2004-05-17 18:39:00 +00:00
sparccpuid.S
Cpuid modules updates.
2005-05-03 21:05:06 +00:00
symhacks.h
Another symbol longer than 31 characters...
2004-09-08 08:13:03 +00:00
tmdiff.c
Netware-specific changes,
2003-11-28 13:10:58 +00:00
tmdiff.h
For whatever reason (compiler or header bugs), at least one commonly-used
2003-10-29 04:40:13 +00:00
uid.c
Netware-specific changes,
2003-11-28 13:10:58 +00:00
x86_64cpuid.pl
Solaris x86_64 /usr/ccs/bin/as support.
2005-06-20 14:50:26 +00:00
x86cpuid.pl
Perlasm update from HEAD addressing build problems on non-ELF platforms
2005-12-06 18:47:18 +00:00