d/freebsd-skq
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
121,689 Commits 4 Branches 49 Tags 2 GiB
6e8d84bf2d
Commit Graph

696 Commits

Author SHA1 Message Date
des
0229eb56fa InstaMFC: OpenSSH 4.5p1 
Approved by:	re (kensmith)
 2006-11-11 00:51:29 +00:00
des
7b3ab265ce MFC: OpenSSH 4.4p1. 
Approved by:	re (kensmith)
 2006-10-06 14:07:23 +00:00
cvs2svn
c0a5c6610c This commit was manufactured by cvs2svn to create branch 'RELENG_6'. 2006-10-01 11:13:01 +00:00
simon
0202bc32c2 Correct multiple vulnerabilities in OpenSSH. 
Security:	FreeBSD-SA-06:22.openssh
Approved by:	re (kensmith)
 2006-09-30 19:50:57 +00:00
cperciva
44f6e11d2d Correct problem in the 2006-09-28 patch concerning the handling of 
excessively large DH moduli.

Reported by:	Steve Kiernan (Juniper SIRT)
Security:	FreeBSD-SA-06:23.openssl
Approved by:	re (kensmith)
 2006-09-29 13:44:03 +00:00
cperciva
7e94f38989 Correct multiple vulnerabilities in crypto(3). 
Limit the size of public keys used in order to protect applications
from a denial of service via insane key sizes.

Security:	FreeBSD-SA-06:23.openssl
Approved by:	re (htimsnek)
 2006-09-28 13:02:36 +00:00
des
24bce5a530 MFC: vendor patch for BSM problem in protocol version 1. 
Approved by:	re (mux)
 2006-09-25 09:37:35 +00:00
simon
03c6aca67f Correct incorrect PKCS#1 v1.5 padding validation in crypto(3). [1] 
Correct multiple denial-of-service vulnerabilities in BIND related to
SIG Query Processing and Excessive Recursive Queries. [2]

Security:	FreeBSD-SA-06:19.openssl [1]
Security:	FreeBSD-SA-06:20.bind [2]
 2006-09-06 21:20:54 +00:00
simon
9eee5c0c95 Fix a bug in the padlock engine when handling small data blocks. This 
could cause problem e.g. when using OpenVPN.

This is a direct commit to RELENG_6 since the issue was fixed by the
OpenSSL 0.9.8b import in -CURRENT.

PR:		bin/86598
Submitted by:	Mike Tancsa <mike@sentex.net>
Tested by:	Mike Tancsa, pjd
Obtained from:	OpenSSL CVS (eng_padlock.c 1.12 -> 1.13 diff)
 2006-07-30 14:03:03 +00:00
des
acb97a4ded MFC: (1.16) our glob(3) has all the required features. 2006-07-08 15:43:26 +00:00
cvs2svn
47d76a2b91 This commit was manufactured by cvs2svn to create branch 'RELENG_6'. 2006-05-25 04:01:05 +00:00
cperciva
801fe04163 Correct a man-in-the-middle SSL version rollback vulnerability. 
Security:       FreeBSD-SA-05:21.openssl
Approved by:    re@ (scottl)
 2005-10-11 11:53:03 +00:00
des
5be4e53fa0 Upgrade to 4.2p1. 
Approved by:	re (kensmith)
 2005-09-11 16:50:37 +00:00
cvs2svn
fa22dafdfa This commit was manufactured by cvs2svn to create branch 'RELENG_6'. 2005-09-03 06:59:35 +00:00
kensmith
28b7f562fc This is sort of an MFS. Peter made these changes to the RELENG_* 
branches but missed HEAD.  This patch extends his a little bit,
setting it up via the Makefiles so that adding _FREEFALL_CONFIG
to /etc/make.conf is the only thing needed to cluster-ize things
(current setup also requires overriding CFLAGS).

From Peter's commit to the RELENG_* branches:
> Add the freebsd.org custer's source modifications under #ifdefs to aid
> keeping things in sync.  For ksu:
> * install suid-root by default
> * don't fall back to asking for a unix password (ie: be pure kerberos)
> * allow custom user instances for things like www and not just root

The Makefile tweaks will be MFC-ed, the rest is already done.

MFC after:      3 days
Approved by:    re (dwhite)
 2005-07-07 14:16:38 +00:00
des
af7fe6f7d6 Forgot to bump the version addendum. 2005-06-05 18:30:53 +00:00
des
ec61b1c40a Regenerate. 2005-06-05 15:46:27 +00:00
des
983ad11a1c Resolve conflicts. 2005-06-05 15:46:09 +00:00
des
3c5bc6b274 Update for 4.1p1. 2005-06-05 15:43:57 +00:00
des
35c298a910 This commit was generated by cvs2svn to compensate for changes in r147001, 
which included commits to RCS files with non-trunk default branches.
 2005-06-05 15:41:57 +00:00
des
c4dfc1ed3b Vendor import of OpenSSH 4.1p1. 2005-06-05 15:41:57 +00:00
des
7688286f9d This commit was generated by cvs2svn to compensate for changes in r146998, 
which included commits to RCS files with non-trunk default branches.
 2005-06-05 15:40:50 +00:00
des
11a09ab416 Vendor import of OpenSSH 4.0p1. 2005-06-05 15:40:50 +00:00
des
9230b25dd7 Rewrite some of the regexps so they don't match themselves. 2005-06-04 23:18:33 +00:00
nectar
21cef1ac2a File removed in update from OpenSSL 0.9.7d -> 0.9.7e. 2005-02-25 06:22:30 +00:00
nectar
0d4d2c2cec This commit was generated by cvs2svn to compensate for changes in r142430, 
which included commits to RCS files with non-trunk default branches.
 2005-02-25 06:14:53 +00:00
nectar
ced877b043 Resolve conflicts after import of OpenSSL 0.9.7e. 2005-02-25 05:49:44 +00:00
nectar
52bc459a40 This commit was generated by cvs2svn to compensate for changes in r142425, 
which included commits to RCS files with non-trunk default branches.
 2005-02-25 05:39:05 +00:00
nectar
78a59572b3 Vendor import of OpenSSL 0.9.7e. 2005-02-25 05:39:05 +00:00
nectar
a876e908ea Update list of files to remove prior to import of OpenSSL 0.9.7e. 2005-02-25 05:31:23 +00:00
nectar
a55ec1447a Clean up the OpenSSL vendor branch by removing files that are not 
part of recent releases.
 2005-02-25 05:25:37 +00:00
nectar
86364e2030 This commit was generated by cvs2svn to compensate for changes in r142421, 
which included commits to RCS files with non-trunk default branches.
 2005-02-25 05:25:37 +00:00
nectar
cf46be8ba9 This commit was generated by cvs2svn to compensate for changes in r142403, 
which included commits to RCS files with non-trunk default branches.
 2005-02-24 22:22:53 +00:00
nectar
2565fa1348 Vendor import of Heimdal 0.6.3. 2005-02-24 22:22:53 +00:00
nectar
3dc1e39cf7 Do not include lib/kdfs in future imports. 2005-02-24 22:17:13 +00:00
nectar
1473734316 Remove lib/kdfs from vendor branch: we do not build it, and it will not 
be included in future imports.
 2005-02-24 22:16:35 +00:00
nectar
412870c336 Clean up the Heimdal vendor branch by removing files not included in 
any import for several years.

If memory serves, this was
Suggested by:	ru
an awfully long time ago-- sorry for the delay!
 2005-02-24 22:14:04 +00:00
des
2ed082fd66 Better Xlist command line. 2004-10-28 16:13:28 +00:00
des
a744ec13ad Resolve conflicts 2004-10-28 16:11:31 +00:00
des
d5d493f03a Vendor import of OpenSSH 3.9p1. 2004-10-28 16:03:53 +00:00
des
b0cdf22191 This commit was generated by cvs2svn to compensate for changes in r137015, 
which included commits to RCS files with non-trunk default branches.
 2004-10-28 16:03:53 +00:00
des
0a4f1e0cd4 These are unnecessary and have been causing imp@ trouble. 2004-10-27 19:07:36 +00:00
markm
1659a5207b Add support for C3 Nehemiah ACE ("Padlock") AES crypto. This comes 
from OpenSSL 0.9.5 (yet to be released), and is pretty complete.
 2004-08-14 13:38:35 +00:00
markm
402a1009de Bring in support for VIA C3 Nehemiah Padlock crypto support (AES). 
This is from the upcoming OpenSSL 0.9.8 release.
 2004-08-13 19:37:23 +00:00
markm
d57fb14ce4 This commit was generated by cvs2svn to compensate for changes in r133665, 
which included commits to RCS files with non-trunk default branches.
 2004-08-13 19:37:23 +00:00
des
aaa4408d55 Regenerate. 2004-04-20 09:49:37 +00:00
des
6e7fa35a0a One more conflict. 2004-04-20 09:47:13 +00:00
des
e5d801b2d6 Resolve conflicts. 2004-04-20 09:46:41 +00:00
des
efa3572464 Adjust version number and addendum. 2004-04-20 09:37:29 +00:00
des
c69db9c5a2 Vendor import of OpenSSH 3.8.1p1. 2004-04-20 09:35:04 +00:00