upstream/opnsense-src
1
0
Fork 0
mirror of https://github.com/opnsense/src.git synced 2026-02-18 18:20:26 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions
opnsense-src/crypto/openssl/apps
History
Gordon Tetlow 7ca64ab386 openssl: Fix multiple vulnerabilities 
This is a rollup commit from upstream to fix:
  Stack buffer overflow in CMS AuthEnvelopedData parsing (CVE-2025-15467)
  Heap out-of-bounds write in BIO_f_linebuffer on short writes (CVE-2025-68160)
  Unauthenticated/unencrypted trailing bytes with low-level OCB function calls (CVE-2025-69418)
  Out of bounds write in PKCS12_get_friendlyname() UTF-8 conversion (CVE-2025-69419)
  Missing ASN1_TYPE validation in TS_RESP_verify_response() function (CVE-2025-69420)
  NULL Pointer Dereference in PKCS12_item_decrypt_d2i_ex function (CVE-2025-69421)
  Missing ASN1_TYPE validation in PKCS#12 parsing (CVE-2026-22795)
  ASN1_TYPE Type Confusion in the PKCS7_digest_from_attributes() function (CVE-2026-22796)

See https://openssl-library.org/news/secadv/ for additional details.

Approved by:	so
Obtained from:	OpenSSL
Security:	FreeBSD-SA-26:01.openssl
Security:	CVE-2025-15467
Security:	CVE-2025-68160
Security:	CVE-2025-69418
Security:	CVE-2025-69419
Security:	CVE-2025-69420
Security:	CVE-2025-69421
Security:	CVE-2026-22795
Security:	CVE-2026-22796
2026-01-28 07:35:43 +01:00
..
demoSRP OpenSSL: Vendor import of OpenSSL 3.0.13 2024-02-05 08:06:08 -08:00
include Merge OpenSSL 3.0.9 2023-06-23 18:53:36 -04:00
lib openssl: Import OpenSSL 3.0.16 2025-03-25 14:07:59 -07:00
asn1parse.c openssl: Import OpenSSL 3.0.16 2025-03-25 14:07:59 -07:00
build.info Merge OpenSSL 3.0.9 2023-06-23 18:53:36 -04:00
ca-cert.srl
ca-key.pem Update OpenSSL to 1.1.1. 2018-09-13 20:40:51 +00:00
ca-req.pem Update OpenSSL to 1.1.1. 2018-09-13 20:40:51 +00:00
ca.c OpenSSL: update to 3.0.10 2023-08-10 12:07:32 -04:00
CA.pl.in Merge OpenSSL 3.0.9 2023-06-23 18:53:36 -04:00
cert.pem
ciphers.c Merge OpenSSL 3.0.9 2023-06-23 18:53:36 -04:00
client.pem Merge OpenSSL 1.0.1c. 2012-07-12 19:30:53 +00:00
cmp.c OpenSSL: update to 3.0.11 2023-10-12 14:46:11 -04:00
cms.c openssl: Import OpenSSL 3.0.16 2025-03-25 14:07:59 -07:00
crl.c Merge OpenSSL 3.0.9 2023-06-23 18:53:36 -04:00
crl2pkcs7.c Merge OpenSSL 3.0.9 2023-06-23 18:53:36 -04:00
ct_log_list.cnf Merge OpenSSL 1.1.1b. 2019-02-26 19:31:33 +00:00
dgst.c openssl: Import OpenSSL 3.0.15. 2024-09-27 20:50:47 -07:00
dhparam.c OpenSSL: update to 3.0.12 2023-10-25 16:20:31 -04:00
dsa-ca.pem Update OpenSSL to 1.1.1. 2018-09-13 20:40:51 +00:00
dsa-pca.pem Update OpenSSL to 1.1.1. 2018-09-13 20:40:51 +00:00
dsa.c Merge OpenSSL 3.0.9 2023-06-23 18:53:36 -04:00
dsa512.pem
dsa1024.pem
dsap.pem
dsaparam.c OpenSSL: update to 3.0.12 2023-10-25 16:20:31 -04:00
ec.c Merge OpenSSL 3.0.9 2023-06-23 18:53:36 -04:00
ecparam.c Merge OpenSSL 3.0.9 2023-06-23 18:53:36 -04:00
enc.c OpenSSL: update to 3.0.12 2023-10-25 16:20:31 -04:00
engine.c openssl: Import OpenSSL 3.0.16 2025-03-25 14:07:59 -07:00
errstr.c OpenSSL: Vendor import of OpenSSL 3.0.13 2024-02-05 08:06:08 -08:00
fipsinstall.c Merge OpenSSL 3.0.9 2023-06-23 18:53:36 -04:00
gendsa.c OpenSSL: update to 3.0.12 2023-10-25 16:20:31 -04:00
genpkey.c OpenSSL: update to 3.0.12 2023-10-25 16:20:31 -04:00
genrsa.c OpenSSL: update to 3.0.12 2023-10-25 16:20:31 -04:00
info.c Merge OpenSSL 3.0.9 2023-06-23 18:53:36 -04:00
insta.ca.crt Merge OpenSSL 3.0.9 2023-06-23 18:53:36 -04:00
kdf.c Merge OpenSSL 3.0.9 2023-06-23 18:53:36 -04:00
list.c Update to OpenSSL 3.0.14 2024-06-29 13:29:18 -07:00
mac.c Merge OpenSSL 3.0.9 2023-06-23 18:53:36 -04:00
nseq.c Merge OpenSSL 3.0.9 2023-06-23 18:53:36 -04:00
ocsp.c Update to OpenSSL 3.0.14 2024-06-29 13:29:18 -07:00
openssl-vms.cnf OpenSSL: Vendor import of OpenSSL 3.0.13 2024-02-05 08:06:08 -08:00
openssl.c Merge OpenSSL 3.0.9 2023-06-23 18:53:36 -04:00
openssl.cnf Merge OpenSSL 3.0.9 2023-06-23 18:53:36 -04:00
passwd.c openssl: Import OpenSSL 3.0.16 2025-03-25 14:07:59 -07:00
pca-cert.srl
pca-key.pem Update OpenSSL to 1.1.1. 2018-09-13 20:40:51 +00:00
pca-req.pem Update OpenSSL to 1.1.1. 2018-09-13 20:40:51 +00:00
pkcs7.c Merge OpenSSL 3.0.9 2023-06-23 18:53:36 -04:00
pkcs8.c Merge OpenSSL 3.0.9 2023-06-23 18:53:36 -04:00
pkcs12.c openssl: Import OpenSSL 3.0.16 2025-03-25 14:07:59 -07:00
pkey.c Merge OpenSSL 3.0.9 2023-06-23 18:53:36 -04:00
pkeyparam.c Merge OpenSSL 3.0.9 2023-06-23 18:53:36 -04:00
pkeyutl.c openssl: Import OpenSSL 3.0.16 2025-03-25 14:07:59 -07:00
prime.c Merge OpenSSL 3.0.9 2023-06-23 18:53:36 -04:00
privkey.pem Update OpenSSL to 1.1.1. 2018-09-13 20:40:51 +00:00
progs.c Merge OpenSSL 3.0.9 2023-06-23 18:53:36 -04:00
progs.h Merge OpenSSL 3.0.9 2023-06-23 18:53:36 -04:00
progs.pl Merge OpenSSL 3.0.9 2023-06-23 18:53:36 -04:00
rand.c Merge OpenSSL 3.0.9 2023-06-23 18:53:36 -04:00
rehash.c openssl: Import OpenSSL 3.0.16 2025-03-25 14:07:59 -07:00
req.c Update to OpenSSL 3.0.14 2024-06-29 13:29:18 -07:00
req.pem
rsa.c Merge OpenSSL 3.0.9 2023-06-23 18:53:36 -04:00
rsa8192.pem Merge OpenSSL 1.1.1h. 2020-09-22 16:18:31 +00:00
rsautl.c Merge OpenSSL 3.0.9 2023-06-23 18:53:36 -04:00
s512-key.pem
s512-req.pem
s1024key.pem
s1024req.pem
s_client.c openssl: Fix multiple vulnerabilities 2026-01-28 07:35:43 +01:00
s_server.c OpenSSL: Vendor import of OpenSSL 3.0.13 2024-02-05 08:06:08 -08:00
s_time.c Merge OpenSSL 3.0.9 2023-06-23 18:53:36 -04:00
server.pem Merge OpenSSL 1.1.1e. 2020-03-18 02:13:12 +00:00
server.srl
server2.pem Merge OpenSSL 1.0.1c. 2012-07-12 19:30:53 +00:00
sess_id.c Merge OpenSSL 3.0.9 2023-06-23 18:53:36 -04:00
smime.c openssl: Import OpenSSL 3.0.16 2025-03-25 14:07:59 -07:00
speed.c openssl: Import OpenSSL 3.0.16 2025-03-25 14:07:59 -07:00
spkac.c Merge OpenSSL 3.0.9 2023-06-23 18:53:36 -04:00
srp.c Merge OpenSSL 3.0.9 2023-06-23 18:53:36 -04:00
storeutl.c Merge OpenSSL 3.0.9 2023-06-23 18:53:36 -04:00
testCA.pem
testdsa.h Merge OpenSSL 3.0.9 2023-06-23 18:53:36 -04:00
testrsa.h Merge OpenSSL 3.0.9 2023-06-23 18:53:36 -04:00
timeouts.h Merge OpenSSL 3.0.9 2023-06-23 18:53:36 -04:00
ts.c Update to OpenSSL 3.0.14 2024-06-29 13:29:18 -07:00
tsget.in Merge OpenSSL 3.0.9 2023-06-23 18:53:36 -04:00
verify.c Merge OpenSSL 3.0.9 2023-06-23 18:53:36 -04:00
version.c Merge OpenSSL 3.0.9 2023-06-23 18:53:36 -04:00
vms_decc_init.c OpenSSL: Vendor import of OpenSSL 3.0.13 2024-02-05 08:06:08 -08:00
x509.c Merge OpenSSL 3.0.9 2023-06-23 18:53:36 -04:00