wbrawner/openssl
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
openssl/ssl
History
Vitezslav Cizek 9d9e053536 Degrade 3DES to MEDIUM in SSL2 
The SWEET32 fix moved 3DES from HIGH to MEDIUM, but omitted SSL2.

CLA: trivial
Reviewed-by: Kurt Roeckx <kurt@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/1683)

(cherry picked from commit 6d69dc56de)
2016-10-14 11:32:14 -04:00
..
bio_ssl.c Handle SSL_ERROR_WANT_X509_LOOKUP 2015-09-20 14:22:52 +01:00
clienthellotest.c Add test for SSL_set_session_ticket_ext 2015-07-27 16:14:02 +01:00
d1_both.c Make message buffer slightly larger than message. 2016-09-21 20:01:32 +01:00
d1_clnt.c Fix DTLS buffered message DoS attack 2016-08-22 11:03:14 +01:00
d1_enc.c Run util/openssl-format-source -v -c . 2015-01-22 09:38:39 +00:00
d1_lib.c Fix DTLS buffered message DoS attack 2016-08-22 11:03:14 +01:00
d1_meth.c Run util/openssl-format-source -v -c . 2015-01-22 09:38:39 +00:00
d1_pkt.c Prevent DTLS Finished message injection 2016-08-22 11:03:14 +01:00
d1_srtp.c Run util/openssl-format-source -v -c . 2015-01-22 09:38:39 +00:00
d1_srvr.c Fix DTLS buffered message DoS attack 2016-08-22 11:03:14 +01:00
dtls1.h Fix d2i_SSL_SESSION for DTLS1_BAD_VER 2015-02-27 20:32:49 +00:00
heartbeat_test.c Run util/openssl-format-source -v -c . 2015-01-22 09:38:39 +00:00
install-ssl.com Don't forget to install srtp.h as well 2012-05-10 15:01:22 +00:00
kssl.c Remove the "eay" c-file-style indicators 2015-12-18 13:13:31 +01:00
kssl.h Remove the "eay" c-file-style indicators 2015-12-18 13:13:31 +01:00
kssl_lcl.h Remove the "eay" c-file-style indicators 2015-12-18 13:13:31 +01:00
Makefile make update 2016-03-01 13:40:45 +00:00
s2_clnt.c Change usage of RAND_pseudo_bytes to RAND_bytes 2016-06-27 15:02:34 +01:00
s2_enc.c Run util/openssl-format-source -v -c . 2015-01-22 09:38:39 +00:00
s2_lib.c Degrade 3DES to MEDIUM in SSL2 2016-10-14 11:32:14 -04:00
s2_meth.c Add no-ssl2-method 2016-03-14 21:17:18 +01:00
s2_pkt.c Add length sanity check in SSLv2 n_do_ssl_write() 2015-04-29 17:44:02 +01:00
s2_srvr.c Change usage of RAND_pseudo_bytes to RAND_bytes 2016-06-27 15:02:34 +01:00
s3_both.c Make message buffer slightly larger than message. 2016-09-21 20:01:32 +01:00
s3_cbc.c Ensure all EVP calls have their returns checked where appropriate 2015-11-20 15:56:42 +00:00
s3_clnt.c Avoid KCI attack for GOST 2016-09-22 00:25:58 +01:00
s3_enc.c Ensure all EVP calls have their returns checked where appropriate 2015-11-20 15:56:42 +00:00
s3_lib.c SWEET32 (CVE-2016-2183): Move DES from HIGH to MEDIUM 2016-08-24 08:58:00 -04:00
s3_meth.c Run util/openssl-format-source -v -c . 2015-01-22 09:38:39 +00:00
s3_pkt.c Don't send an alert if we've just received one 2015-05-25 23:11:02 +01:00
s3_srvr.c Fix small OOB reads. 2016-09-21 14:14:36 +01:00
s23_clnt.c Change usage of RAND_pseudo_bytes to RAND_bytes 2016-06-27 15:02:34 +01:00
s23_lib.c Run util/openssl-format-source -v -c . 2015-01-22 09:38:39 +00:00
s23_meth.c Run util/openssl-format-source -v -c . 2015-01-22 09:38:39 +00:00
s23_pkt.c Run util/openssl-format-source -v -c . 2015-01-22 09:38:39 +00:00
s23_srvr.c Re-align some comments after running the reformat script. 2015-01-22 09:39:01 +00:00
srtp.h Run util/openssl-format-source -v -c . 2015-01-22 09:38:39 +00:00
ssl-lib.com Spaces were added in some strings for better readability. However, those spaces do not belong in file names, so when picking out the individual parts, remove the spaces 2014-10-15 10:49:24 +02:00
ssl.h Update function error code 2016-08-19 14:05:09 +01:00
ssl2.h Run util/openssl-format-source -v -c . 2015-01-22 09:38:39 +00:00
ssl3.h Add test for SSL_set_session_ticket_ext 2015-07-27 16:14:02 +01:00
ssl23.h Run util/openssl-format-source -v -c . 2015-01-22 09:38:39 +00:00
ssl_algs.c Run util/openssl-format-source -v -c . 2015-01-22 09:38:39 +00:00
ssl_asn1.c Make no-psk compile without warnings. 2015-09-16 18:12:04 +01:00
ssl_cert.c Set reference count earlier 2015-11-24 21:53:40 +01:00
ssl_ciph.c Remove LOW from the default 2016-03-07 18:57:40 +01:00
ssl_err.c Fix DTLS replay protection 2016-08-19 14:04:56 +01:00
ssl_err2.c Run util/openssl-format-source -v -c . 2015-01-22 09:38:39 +00:00
ssl_lib.c Fix SSL_export_keying_material() for DTLS1_BAD_VER 2016-08-26 18:08:23 +01:00
ssl_locl.h Fix DTLS buffered message DoS attack 2016-08-22 11:03:14 +01:00
ssl_rsa.c Ensure all EVP calls have their returns checked where appropriate 2015-11-20 15:56:42 +00:00
ssl_sess.c Change usage of RAND_pseudo_bytes to RAND_bytes 2016-06-27 15:02:34 +01:00
ssl_stat.c Add Error state 2015-05-05 20:07:48 +01:00
ssl_task.c Re-align some comments after running the reformat script. 2015-01-22 09:39:01 +00:00
ssl_txt.c Run util/openssl-format-source -v -c . 2015-01-22 09:38:39 +00:00
ssl_utst.c Run util/openssl-format-source -v -c . 2015-01-22 09:38:39 +00:00
ssltest.c _BSD_SOURCE is deprecated, use _DEFAULT_SOURCE instead 2015-12-02 18:49:57 +01:00
t1_clnt.c Run util/openssl-format-source -v -c . 2015-01-22 09:38:39 +00:00
t1_enc.c Fix more URLs mangled by reformat 2015-12-19 20:40:39 +00:00
t1_lib.c Fix OCSP Status Request extension unbounded memory growth 2016-09-22 00:25:58 +01:00
t1_meth.c Run util/openssl-format-source -v -c . 2015-01-22 09:38:39 +00:00
t1_reneg.c Run util/openssl-format-source -v -c . 2015-01-22 09:38:39 +00:00
t1_srvr.c Run util/openssl-format-source -v -c . 2015-01-22 09:38:39 +00:00
tls1.h Fix references to various RFCs 2015-10-23 20:43:09 +02:00
tls_srp.c Code style: space after 'if' 2015-04-16 13:51:51 -04:00