[ol8_baseos_latest] openssl-perl-1:1.1.1c-15.el8.x86_64

OpenSSL is a toolkit for supporting cryptography. The openssl-perl
package provides Perl scripts for converting certificates and keys
from other formats to the formats used by the OpenSSL toolkit.

Changelog (Show File list) (Show related packages)

• Thu Mar 05 2020 Tomáš Mráz <tmraz@redhat.com> 1.1.1c-15

  - add selftest of the RAND_DRBG implementation

• Wed Feb 19 2020 Tomáš Mráz <tmraz@redhat.com> 1.1.1c-14

  - fix incorrect error return value from FIPS_selftest_dsa
  - S390x: properly restore SIGILL signal handler

• Wed Dec 04 2019 Tomáš Mráz <tmraz@redhat.com> 1.1.1c-12

  - additional fix for the edk2 build

• Tue Nov 26 2019 Tomáš Mráz <tmraz@redhat.com> 1.1.1c-9

  - disallow use of SHA-1 signatures in TLS in FIPS mode

• Mon Nov 25 2019 Tomáš Mráz <tmraz@redhat.com> 1.1.1c-8

  - fix CVE-2019-1547 - side-channel weak encryption vulnerability
  - fix CVE-2019-1563 - padding oracle in CMS API
  - fix CVE-2019-1549 - ensure fork safety of the DRBG
  - fix handling of non-FIPS allowed EC curves in FIPS mode
  - fix TLS compliance issues

• Thu Nov 21 2019 Tomáš Mráz <tmraz@redhat.com> 1.1.1c-7

  - backported ARM performance fixes from master

• Wed Nov 20 2019 Tomáš Mráz <tmraz@redhat.com> 1.1.1c-6

  - backport of S390x ECC CPACF enhancements from master
  - FIPS mode: properly disable 1024 bit DSA key generation
  - FIPS mode: skip ED25519 and ED448 algorithms in openssl speed
  - FIPS mode: allow AES-CCM ciphersuites

• Tue Nov 19 2019 Tomáš Mráz <tmraz@redhat.com> 1.1.1c-5

  - make the code suitable for edk2 build

• Thu Nov 14 2019 Tomáš Mráz <tmraz@redhat.com> 1.1.1c-4

  - backport of SSKDF from master

• Wed Nov 13 2019 Tomáš Mráz <tmraz@redhat.com> 1.1.1c-3

  - backport of KBKDF and KRB5KDF from master