This update solves eight security issues namingly:
1. DTLS segmentation fault in dtls1_get_record (CVE-2014-3571)
2. DTLS memory leak in dtls1_buffer_record (CVE-2015-0206)
3. no-ssl3 configuration sets method to NULL (CVE-2014-3569)
4. ECDHE silently downgrades to ECDH [Client] (CVE-2014-3572)
5. RSA silently downgrades to EXPORT_RSA [Client] (CVE-2015-0204)
6. DH client certificates accepted without verification [Server] (CVE-2015-0205)
7. Certificate fingerprints can be modified (CVE-2014-8275)
8. Bignum squaring may produce incorrect results (CVE-2014-3570)

URL for this Security Advisory:
https://www.openssl.org/news/secadv_20150108.txt

also (CVE-2014-3567) and (CVE-2014-3568) and other
non security bugfixes.

https://www.openssl.org/news/secadv_20140806.txt

* CVE-2014-3505
* CVE-2014-3506
* CVE-2014-3507
* CVE-2014-3508
* CVE-2014-3509
* CVE-2014-3510
* CVE-2014-3511
* CVE-2014-3512
* CVE-2014-5139

Signed-off-by: Alejandro Mery <amery@geeks.cl>

http://www.openssl.org/news/secadv_20140605.txt

This fixes the TLS heartbeat read overrun (CVE-2014-0160) vulnerability

References:

[1] https://www.openssl.org/news/secadv_20140407.txt
[2] http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-0160

Changes between 1.0.1e and 1.0.1f [6 Jan 2014]

  *) Fix for TLS record tampering bug. A carefully crafted invalid
     handshake could crash OpenSSL with a NULL pointer exception.
     Thanks to Anton Johansson for reporting this issues.
     (CVE-2013-4353)

  *) Keep original DTLS digest and encryption contexts in retransmission
     structures so we can use the previous session parameters if they need
     to be resent. (CVE-2013-6450)
     [Steve Henson]

  *) Add option SSL_OP_SAFARI_ECDHE_ECDSA_BUG (part of SSL_OP_ALL) which
     avoids preferring ECDHE-ECDSA ciphers when the client appears to be
     Safari on OS X.  Safari on OS X 10.8..10.8.3 advertises support for
     several ECDHE-ECDSA ciphers, but fails to negotiate them.  The bug
     is fixed in OS X 10.8.4, but Apple have ruled out both hot fixing
     10.8..10.8.3 and forcing users to upgrade to 10.8.4 or newer.
     [Rob Stradling, Adam Langley]

Reference:

- http://git.openssl.org/gitweb/?p=openssl.git;a=patch;h=147dbb2fe3bead7a10e2f280261b661ce7af7adc
- http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=703031

This bugfix release corrects the fix for CVE-2013-0169 done in openssl 1.0.1d.

Fixing following CVE's

- SSL, TLS and DTLS Plaintext Recovery Attack (CVE-2013-0169)
- TLS 1.1 and 1.2 AES-NI crash (CVE-2012-2686)
- OCSP invalid key DoS issue (CVE-2013-0166)

Reference: http://www.openssl.org/news/secadv_20130205.txt

Note:

Despite the fact that openssl's "Configure" script seems to offer support
for MIT Kerberos and Heimdal only the MIT flavour is officially supported!

Note:

This is needed to solve the possible circular dependency with kerberos
implementations like MIT kerberos (krb5 package) or Heimdal (heimdal
package).

http://openssl.org/news/secadv_20120510.txt

Note:

More information about the security fixes can be found here:

http://openssl.org/news/secadv_20110906.txt

New gas requires sign extention in lea instruction. This resolves md5-x86_64.pl
and sha1-x86_64.pl bugs, but without modifying the code. PR: 2094,2095

http://cvs.openssl.org/chngview?cn=18869

Fix for out range of signed 32bit displacement error on newer binutils in file
sha1-x86_64.pl.

http://cvs.openssl.org/chngview?cn=18864

[IMPORTANT]

An invalid Return value check in pkey_rsa_verifyrecover was discovered. When
verification recovery fails for RSA keys an uninitialised buffer with an
undefined length is returned instead of an error code. This could lead to an
information leak.

original advisory: http://www.openssl.org/news/secadv_20100601.txt
CVE-2010-1633: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1633

References
----------

This vulnerability is tracked as CVE-2010-0740.

URL for this Security Advisory:
http://www.openssl.org/news/secadv_20100324.txt

http://www.openssl.org/news/secadv_20090325.txt

CVE-2008-1678 (Medium) :
Memory leak in the zlib_stateful_init function in crypto/comp/c_zlib.c in libssl in OpenSSL 0.9.8f
through 0.9.8h allows remote attackers to cause a denial of service (memory consumption) via
multiple calls, as demonstrated by initial SSL client handshakes to the Apache HTTP Server
mod_ssl that specify a compression algorithm.

git-svn-id: svn://svn.opensde.net/opensde/package/trunk@20072 10447126-35f2-4685-b0cf-6dd780d3921f