oweals/openssl.git
2016-09-21 Matt CaswellFix OCSP Status Request extension unbounded memory...
2016-09-21 Dr. Stephen... update default dependency options
2016-09-21 Dr. Stephen... Make message buffer slightly larger than message.
2016-09-21 Dr. Stephen... Use SSL3_HM_HEADER_LENGTH instead of 4.
2016-09-21 Dr. Stephen... Remove unnecessary check.
2016-09-21 Dr. Stephen... Fix small OOB reads.
2016-08-26 David WoodhouseFix SSL_export_keying_material() for DTLS1_BAD_VER
2016-08-24 Dr. Stephen... Avoid overflow in MDC2_Update()
2016-08-24 Rich SalzSWEET32 (CVE-2016-2183): Move DES from HIGH to MEDIUM
2016-08-23 Dr. Stephen... Sanity check ticket length.
2016-08-22 Kazuki YamaguchiFix overflow check in BN_bn2dec()
2016-08-22 Matt CaswellPrevent DTLS Finished message injection
2016-08-22 Matt CaswellFix DTLS buffered message DoS attack
2016-08-20 Kurt RoeckxFix off by 1 in ASN1_STRING_set()
2016-08-19 Rich SalzRT3940: For now, just document the issue.
2016-08-19 Matt CaswellUpdate function error code
2016-08-19 Matt CaswellFix DTLS replay protection
2016-08-19 Matt CaswellFix DTLS unprocessed records bug
2016-08-16 Richard Levittemake update to have PEM_R_HEADER_TOO_LONG defined
2016-08-15 Dr. Stephen... Limit reads in do_b2i_bio()
2016-08-15 Dr. Stephen... Check for errors in BN_bn2dec()
2016-08-15 Dr. Stephen... Check for errors in a2d_ASN1_OBJECT()
2016-08-05 Dr. Stephen... Sanity check input length in OPENSSL_uni2asc().
2016-08-05 Dr. Stephen... Leak fixes.
2016-08-04 Kurt RoeckxReturn error when trying to print invalid ASN1 integer
2016-08-04 Dr. Stephen... Limit recursion depth in old d2i_ASN1_bytes function
2016-08-04 Dr. Stephen... Check for overflows in i2d_ASN1_SET()
2016-08-03 Dr. Stephen... Calculate sequence length properly.
2016-08-02 Dr. Stephen... include <limits.h>
2016-08-02 Dr. Stephen... Check for overflows in ASN1_object_size().
2016-08-02 Dr. Stephen... Check for overlows and error return from ASN1_object_size()
2016-07-22 Dr. Stephen... Fix OOB read in TS_OBJ_print_bio().
2016-06-30 Matt CaswellConvert memset calls to OPENSSL_cleanse
2016-06-29 Richard LevitteAllow proxy certs to be present when verifying a chain
2016-06-29 Richard LevitteFix proxy certificate pathlength verification
2016-06-29 Richard LevitteCheck that the subject name in a proxy cert complies...
2016-06-27 Matt CaswellChange usage of RAND_pseudo_bytes to RAND_bytes
2016-06-07 Matt CaswellMore fix DSA, preserve BN_FLG_CONSTTIME
2016-06-06 Cesar PereidaFix DSA, preserve BN_FLG_CONSTTIME
2016-06-03 Matt CaswellUpdate CONTRIBUTING
2016-06-01 Matt CaswellAvoid some undefined pointer arithmetic
2016-05-26 Viktor DukhovniEnsure verify error is set when X509_verify_cert()...
2016-05-26 Viktor DukhovniClarify negative return from X509_verify_cert()
2016-05-23 Matt CaswellFix error return value in SRP functions
2016-05-19 Matt CaswellCheck that the obtained public key is valid
2016-05-11 Rich SalzRecommend GH over RT, per team vote.
2016-05-11 Dr. Stephen... Update S/MIME certificates.
2016-05-09 Dr. Stephen... Only call FIPS_update, FIPS_final in FIPS mode.
2016-05-06 Dr. Stephen... Constify PKCS12_newpass()
2016-05-06 Dr. Stephen... Tidy up PKCS12_newpass() fix memory leaks.
2016-05-06 Dr. Stephen... Only set CMS parameter when encrypting
2016-05-05 Dr. Stephen... Use default ASN.1 for SEED.
2016-05-05 Dr. Stephen... Always try to set ASN.1 parameters for CMS.
2016-05-04 Dr. Stephen... Fix name length limit check.
2016-05-04 Dr. Stephen... Fix double free in d2i_PrivateKey().
2016-05-04 Dr. Stephen... add documentation
2016-05-03 Matt CaswellPrepare for 1.0.1u-dev
2016-05-03 Matt CaswellPrepare for 1.0.1t release OpenSSL_1_0_1t
2016-05-03 Matt Caswellmake update
2016-05-03 Matt CaswellUpdate CHANGES and NEWS for the new release
2016-05-03 Dr. Stephen... Fix ASN1_INTEGER handling.
2016-05-03 Kurt RoeckxCheck that we have enough padding characters.
2016-05-03 Matt CaswellRemove some documentation for functions not in 1.0.x
2016-05-03 Matt CaswellAdd documentation for EVP_EncodeInit() and similar...
2016-05-03 Matt CaswellEnsure EVP_EncodeUpdate handles an output length that...
2016-05-03 Matt CaswellAvoid overflow in EVP_EncodeUpdate
2016-05-03 Matt CaswellPrevent EBCDIC overread for very long strings
2016-05-03 Matt CaswellFix encrypt overflow
2016-05-02 Dr. Stephen... Fix i2d_X509_AUX: pp can be NULL.
2016-04-29 Dr. Stephen... Don't free ret->data if malloc fails.
2016-04-29 Dr. Stephen... Add checks to X509_NAME_oneline()
2016-04-29 Dr. Stephen... Sanity check buffer length.
2016-04-29 Dr. Stephen... Add size limit to X509_NAME structure.
2016-04-27 Dr. Stephen... Reject inappropriate private key encryption ciphers.
2016-04-26 Matt CaswellEnsure we check i2d_X509 return val
2016-04-25 Matt CaswellFix a signed/unsigned warning
2016-04-25 Rich SalzFix NULL deref in apps/pkcs7
2016-04-23 Viktor DukhovniFix buffer overrun in ASN1_parse().
2016-04-22 Dr. Stephen... Harden ASN.1 BIO handling of large amounts of data.
2016-04-07 David BenjaminFix memory leak on invalid CertificateRequest.
2016-03-26 Dr. Stephen... Fix FIPS SSLv2 test
2016-03-18 Matt CaswellFix the no-comp option for Windows
2016-03-18 Matt CaswellAdd a check for a failed malloc
2016-03-18 Matt CaswellEnsure that memory allocated for the ticket is freed
2016-03-18 Matt CaswellFix a potential double free in EVP_DigestInit_ex
2016-03-14 Kurt RoeckxAdd no-ssl2-method
2016-03-09 Viktor Dukhovniexpose SSLv2 method prototypes
2016-03-08 Viktor DukhovniRetain SSLv2 methods as functions that return NULL
2016-03-07 Andy Polyakovbn/asm/x86[_64]-mont*.pl: complement alloca with page...
2016-03-07 Kurt RoeckxRemove LOW from the default
2016-03-07 Dr. Stephen... Don't shift serial number into sign bit
2016-03-04 Dr. Stephen... Sanity check PVK file fields.
2016-03-01 Matt CaswellPrepare for 1.0.1t-dev
2016-03-01 Matt CaswellPrepare for 1.0.1s release OpenSSL_1_0_1s
2016-03-01 Matt Caswellmake update
2016-03-01 Matt CaswellEnsure mk1mf.pl is aware of no-weak-ssl-ciphers option
2016-03-01 Matt CaswellUpdate CHANGES and NEWS for new release
2016-03-01 Andy Polyakovperlasm/x86_64-xlate.pl: handle inter-bank movd.
2016-03-01 Andy Polyakovcrypto/bn/x86_64-mont5.pl: constant-time gather procedure.
2016-03-01 Andy Polyakovbn/bn_exp.c: constant-time MOD_EXP_CTIME_COPY_FROM_PREBUF.
next