apps/CA.pl.in | 2 2 + 0 - 0 !
1 file changed, 2 insertions(+)

---

config | 4 2 + 2 - 0 !
1 file changed, 2 insertions(+), 2 deletions(-)

---

Configure | 45 45 + 0 - 0 !
1 file changed, 45 insertions(+)

---

Configure | 2 1 + 1 - 0 !
Makefile.org | 2 1 + 1 - 0 !
engines/Makefile | 10 5 + 5 - 0 !
3 files changed, 7 insertions(+), 7 deletions(-)

---

crypto/perlasm/x86_64-xlate.pl | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

---

Makefile.org | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

---

Makefile.org | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

---

Makefile.org | 7 4 + 3 - 0 !
1 file changed, 4 insertions(+), 3 deletions(-)

---

Makefile.shared | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

---

Makefile.shared | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

---

crypto/Makefile | 4 2 + 2 - 0 !
crypto/aes/asm/aes-586.pl | 13 10 + 3 - 0 !
crypto/des/asm/desboth.pl | 17 14 + 3 - 0 !
crypto/md5/Makefile | 3 2 + 1 - 0 !
crypto/perlasm/cbc.pl | 24 20 + 4 - 0 !
crypto/perlasm/x86_64-xlate.pl | 2 1 + 1 - 0 !
crypto/perlasm/x86unix.pl | 33 33 + 0 - 0 !
crypto/rc4/Makefile | 2 1 + 1 - 0 !
crypto/rc4/asm/rc4-x86_64.pl | 8 8 + 0 - 0 !
crypto/x86_64cpuid.pl | 4 4 + 0 - 0 !
10 files changed, 95 insertions(+), 15 deletions(-)

---

Makefile.org | 9 6 + 3 - 0 !
1 file changed, 6 insertions(+), 3 deletions(-)

---

crypto/rand/md_rand.c | 2 2 + 0 - 0 !
1 file changed, 2 insertions(+)

---

Configure | 3 3 + 0 - 0 !
1 file changed, 3 insertions(+)

---

tools/c_rehash.in | 12 9 + 3 - 0 !
1 file changed, 9 insertions(+), 3 deletions(-)

---

doc/apps/c_rehash.pod | 55 55 + 0 - 0 !
1 file changed, 55 insertions(+)

---

Configure | 3 2 + 1 - 0 !
1 file changed, 2 insertions(+), 1 deletion(-)

---

crypto/sha/sha.h | 1 1 + 0 - 0 !
1 file changed, 1 insertion(+)

---

Configure | 2 2 + 0 - 0 !
engines/openssl.ld | 5 5 + 0 - 0 !
openssl.ld | 5 5 + 0 - 0 !
3 files changed, 12 insertions(+)

---

Configure | 2 1 + 1 - 0 !
Netware/do_tests.pl | 2 1 + 1 - 0 !
VMS/VMSify-conf.pl | 2 1 + 1 - 0 !
apps/progs.pl | 2 1 + 1 - 0 !
crypto/aes/asm/aes-586.pl | 2 1 + 1 - 0 !
crypto/aes/asm/aes-x86_64.pl | 2 1 + 1 - 0 !
crypto/asn1/charmap.pl | 2 1 + 1 - 0 !
crypto/bf/asm/bf-586.pl | 2 1 + 1 - 0 !
crypto/bf/asm/bf-686.pl | 2 1 + 1 - 0 !
crypto/bn/asm/bn-586.pl | 2 1 + 1 - 0 !
crypto/bn/asm/co-586.pl | 2 1 + 1 - 0 !
crypto/bn/asm/mo-586.pl | 2 1 + 1 - 0 !
crypto/bn/asm/ppc.pl | 2 1 + 1 - 0 !
crypto/bn/asm/x86.pl | 2 1 + 1 - 0 !
crypto/bn/asm/x86/add.pl | 2 1 + 1 - 0 !
crypto/bn/asm/x86/comba.pl | 2 1 + 1 - 0 !
crypto/bn/asm/x86/div.pl | 2 1 + 1 - 0 !
crypto/bn/asm/x86/mul.pl | 2 1 + 1 - 0 !
crypto/bn/asm/x86/mul_add.pl | 2 1 + 1 - 0 !
crypto/bn/asm/x86/sqr.pl | 2 1 + 1 - 0 !
crypto/bn/asm/x86/sub.pl | 2 1 + 1 - 0 !
crypto/bn/asm/x86_64-mont.pl | 2 1 + 1 - 0 !
crypto/bn/bn_prime.pl | 2 1 + 1 - 0 !
crypto/cast/asm/cast-586.pl | 2 1 + 1 - 0 !
crypto/conf/keysets.pl | 2 1 + 1 - 0 !
crypto/des/asm/crypt586.pl | 2 1 + 1 - 0 !
crypto/des/asm/des-586.pl | 2 1 + 1 - 0 !
crypto/des/asm/des686.pl | 2 1 + 1 - 0 !
crypto/des/asm/desboth.pl | 2 1 + 1 - 0 !
crypto/lhash/num.pl | 2 1 + 1 - 0 !
crypto/md5/asm/md5-586.pl | 2 1 + 1 - 0 !
crypto/md5/asm/md5-x86_64.pl | 2 1 + 1 - 0 !
crypto/objects/obj_dat.pl | 2 1 + 1 - 0 !
crypto/objects/objects.pl | 2 1 + 1 - 0 !
crypto/perlasm/cbc.pl | 2 1 + 1 - 0 !
crypto/perlasm/x86_64-xlate.pl | 2 1 + 1 - 0 !
crypto/perlasm/x86asm.pl | 2 1 + 1 - 0 !
crypto/perlasm/x86ms.pl | 2 1 + 1 - 0 !
crypto/perlasm/x86nasm.pl | 2 1 + 1 - 0 !
crypto/perlasm/x86unix.pl | 2 1 + 1 - 0 !
crypto/rc4/asm/rc4-586.pl | 2 1 + 1 - 0 !
crypto/rc4/asm/rc4-x86_64.pl | 2 1 + 1 - 0 !
crypto/rc5/asm/rc5-586.pl | 2 1 + 1 - 0 !
crypto/ripemd/asm/rmd-586.pl | 2 1 + 1 - 0 !
crypto/sha/asm/sha1-586.pl | 2 1 + 1 - 0 !
crypto/sha/asm/sha1-ia64.pl | 2 1 + 1 - 0 !
crypto/sha/asm/sha1-x86_64.pl | 2 1 + 1 - 0 !
crypto/sha/asm/sha512-ia64.pl | 2 1 + 1 - 0 !
crypto/sha/asm/sha512-sse2.pl | 2 1 + 1 - 0 !
crypto/sha/asm/sha512-x86_64.pl | 2 1 + 1 - 0 !
crypto/x86_64cpuid.pl | 2 1 + 1 - 0 !
crypto/x86cpuid.pl | 2 1 + 1 - 0 !
demos/b64.pl | 2 1 + 1 - 0 !
demos/tunala/configure.in | 2 1 + 1 - 0 !
fips/fipsalgtest.pl | 2 1 + 1 - 0 !
fips/mkfipsscr.pl | 2 1 + 1 - 0 !
ms/cmp.pl | 2 1 + 1 - 0 !
ms/segrenam.pl | 2 1 + 1 - 0 !
ms/uplink.pl | 2 1 + 1 - 0 !
os2/backwardify.pl | 2 1 + 1 - 0 !
test/cms-examples.pl | 2 1 + 1 - 0 !
test/cms-test.pl | 2 1 + 1 - 0 !
times/091/mips-rel.pl | 2 1 + 1 - 0 !
util/add_cr.pl | 2 1 + 1 - 0 !
util/arx.pl | 2 1 + 1 - 0 !
util/ck_errf.pl | 2 1 + 1 - 0 !
util/clean-depend.pl | 2 1 + 1 - 0 !
util/copy.pl | 2 1 + 1 - 0 !
util/deleof.pl | 2 1 + 1 - 0 !
util/dirname.pl | 2 1 + 1 - 0 !
util/err-ins.pl | 2 1 + 1 - 0 !
util/files.pl | 2 1 + 1 - 0 !
util/mk1mf.pl | 2 1 + 1 - 0 !
util/mkdef.pl | 2 1 + 1 - 0 !
util/mkdir-p.pl | 2 1 + 1 - 0 !
util/mkerr.pl | 2 1 + 1 - 0 !
util/mkfiles.pl | 2 1 + 1 - 0 !
util/mklink.pl | 2 1 + 1 - 0 !
util/mksdef.pl | 2 1 + 1 - 0 !
util/mkstack.pl | 2 1 + 1 - 0 !
util/perlpath.pl | 2 1 + 1 - 0 !
util/pl/BC-32.pl | 2 1 + 1 - 0 !
util/pl/Mingw32.pl | 2 1 + 1 - 0 !
util/pl/OS2-EMX.pl | 2 1 + 1 - 0 !
util/pl/VC-32.pl | 2 1 + 1 - 0 !
util/pl/linux.pl | 2 1 + 1 - 0 !
util/pl/netware.pl | 2 1 + 1 - 0 !
util/pl/ultrix.pl | 2 1 + 1 - 0 !
util/pl/unix.pl | 2 1 + 1 - 0 !
util/pod2man.pl | 2 1 + 1 - 0 !
util/selftest.pl | 2 1 + 1 - 0 !
util/sp-diff.pl | 2 1 + 1 - 0 !
util/src-dep.pl | 2 1 + 1 - 0 !
util/tab_num.pl | 2 1 + 1 - 0 !
94 files changed, 94 insertions(+), 94 deletions(-)

 change the perl path's to /usr/bin/perl

This is the result of running:
perl util/perlpath.pl /usr/bin

ssl/s3_clnt.c | 1 1 + 0 - 0 !
1 file changed, 1 insertion(+)

---

ssl/t1_lib.c | 18 14 + 4 - 0 !
1 file changed, 14 insertions(+), 4 deletions(-)

---

doc/ssl/SSL_CTX_set_options.pod | 13 1 + 12 - 0 !
ssl/s3_clnt.c | 3 3 + 0 - 0 !
ssl/s3_srvr.c | 5 5 + 0 - 0 !
3 files changed, 9 insertions(+), 12 deletions(-)

---

ssl/t1_lib.c | 8 7 + 1 - 0 !
1 file changed, 7 insertions(+), 1 deletion(-)

---

crypto/x509/x509_vfy.c | 27 27 + 0 - 0 !
1 file changed, 27 insertions(+)

 make x509_verify_cert indicate that any certificate whose
 name contains "DigiNotar" is revoked.

crypto/x509/x509_vfy.c | 7 4 + 3 - 0 !
1 file changed, 4 insertions(+), 3 deletions(-)

 make x509_verify_cert indicate that any certificate whose
 name contains "Digicert Sdn. Bhd." (from Malaysia) is revoked.

crypto/ecdsa/ecs_ossl.c | 8 8 + 0 - 0 !
1 file changed, 8 insertions(+)

 fix cve-2011-1945, timing attacks against ecdhe_ecdsa makes
 it easier to determine private keys.

ssl/s3_lib.c | 6 6 + 0 - 0 !
ssl/s3_srvr.c | 22 15 + 7 - 0 !
2 files changed, 21 insertions(+), 7 deletions(-)

 fix ssl memory handling for (ec)dh ciphersuites, in
 particular for multi-threaded use of ECDH.

ssl/d1_pkt.c | 25 16 + 9 - 0 !
1 file changed, 16 insertions(+), 9 deletions(-)

---

crypto/x509v3/pcy_map.c | 10 6 + 4 - 0 !
crypto/x509v3/pcy_tree.c | 5 4 + 1 - 0 !
2 files changed, 10 insertions(+), 5 deletions(-)

---

ssl/s3_srvr.c | 9 9 + 0 - 0 !
ssl/ssl.h | 2 2 + 0 - 0 !
ssl/ssl3.h | 11 11 + 0 - 0 !
ssl/ssl_err.c | 4 3 + 1 - 0 !
4 files changed, 25 insertions(+), 1 deletion(-)

---

ssl/s3_enc.c | 3 3 + 0 - 0 !
1 file changed, 3 insertions(+)

---

crypto/x509v3/v3_addr.c | 74 47 + 27 - 0 !
1 file changed, 47 insertions(+), 27 deletions(-)

---

ssl/d1_both.c | 15 13 + 2 - 0 !
1 file changed, 13 insertions(+), 2 deletions(-)

---

ssl/d1_pkt.c | 17 7 + 10 - 0 !
1 file changed, 7 insertions(+), 10 deletions(-)

---

apps/cms.c | 4 4 + 0 - 0 !
crypto/cms/cms.h | 1 1 + 0 - 0 !
crypto/cms/cms_enc.c | 60 46 + 14 - 0 !
crypto/cms/cms_env.c | 12 10 + 2 - 0 !
crypto/cms/cms_lcl.h | 2 2 + 0 - 0 !
crypto/cms/cms_smime.c | 37 33 + 4 - 0 !
crypto/pkcs7/pk7_doit.c | 73 53 + 20 - 0 !
crypto/pkcs7/pk7_smime.c | 19 17 + 2 - 0 !
8 files changed, 166 insertions(+), 42 deletions(-)

---

crypto/asn1/asn_mime.c | 5 5 + 0 - 0 !
1 file changed, 5 insertions(+)

---

crypto/asn1/a_d2i_fp.c | 54 40 + 14 - 0 !
crypto/buffer/buffer.c | 17 17 + 0 - 0 !
crypto/mem.c | 4 4 + 0 - 0 !
3 files changed, 61 insertions(+), 14 deletions(-)

---

crypto/buffer/buffer.c | 10 10 + 0 - 0 !
1 file changed, 10 insertions(+)

---

ssl/d1_enc.c | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

---

crypto/cryptlib.c | 16 16 + 0 - 0 !
crypto/crypto.h | 7 7 + 0 - 0 !
crypto/o_init.c | 14 14 + 0 - 0 !
crypto/rsa/rsa_oaep.c | 2 1 + 1 - 0 !
ssl/Makefile | 4 2 + 2 - 0 !
ssl/d1_enc.c | 63 21 + 42 - 0 !
ssl/d1_pkt.c | 85 53 + 32 - 0 !
ssl/s2_clnt.c | 2 1 + 1 - 0 !
ssl/s2_pkt.c | 3 1 + 2 - 0 !
ssl/s3_both.c | 2 1 + 1 - 0 !
ssl/s3_cbc.c | 783 783 + 0 - 0 !
ssl/s3_enc.c | 122 80 + 42 - 0 !
ssl/s3_pkt.c | 98 52 + 46 - 0 !
ssl/ssl_locl.h | 37 37 + 0 - 0 !
ssl/t1_enc.c | 155 74 + 81 - 0 !
ssl/t1_lib.c | 2 1 + 1 - 0 !
test/testssl | 17 17 + 0 - 0 !
util/libeay.num | 1 1 + 0 - 0 !
18 files changed, 1162 insertions(+), 251 deletions(-)

 fix cve-2013-0169.patch

crypto/asn1/a_verify.c | 6 6 + 0 - 0 !
crypto/ocsp/ocsp_vfy.c | 9 6 + 3 - 0 !
2 files changed, 12 insertions(+), 3 deletions(-)

 cve-2013-0166

    Don't try and verify signatures if key is NULL (CVE-2013-0166)
    Add additional check to catch this in ASN1_item_verify too.

crypto/bn/bn.h | 11 11 + 0 - 0 !
crypto/bn/bn_lib.c | 52 52 + 0 - 0 !
crypto/ec/ec2_mult.c | 27 16 + 11 - 0 !
3 files changed, 79 insertions(+), 11 deletions(-)

---

ssl/d1_both.c | 9 9 + 0 - 0 !
1 file changed, 9 insertions(+)

---

ssl/d1_both.c | 4 2 + 2 - 0 !
1 file changed, 2 insertions(+), 2 deletions(-)

---

ssl/s3_clnt.c | 7 7 + 0 - 0 !
1 file changed, 7 insertions(+)

---

ssl/s3_clnt.c | 3 3 + 0 - 0 !
ssl/s3_pkt.c | 11 10 + 1 - 0 !
ssl/s3_srvr.c | 2 2 + 0 - 0 !
ssl/ssl3.h | 1 1 + 0 - 0 !
4 files changed, 16 insertions(+), 1 deletion(-)

---

ssl/ssl_ciph.c | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 disable zlib compression by default

This fixes CVE-2012-4929 (CRiME).

ssl/d1_both.c | 6 2 + 4 - 0 !
1 file changed, 2 insertions(+), 4 deletions(-)

 [patch 01/10] avoid double free when processing dtls packets.
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

The |item| variable, in both of these cases, may contain a pointer to a
|pitem| structure within |s->d1->buffered_messages|. It was being freed
in the error case while still being in |buffered_messages|. When the
error later caused the |SSL*| to be destroyed, the item would be double
freed.

Thanks to Wah-Teh Chang for spotting that the fix in 1632ef74 was
inconsistent with the other error paths (but correct).

Fixes CVE-2014-3505

ssl/d1_both.c | 3 2 + 1 - 0 !
1 file changed, 2 insertions(+), 1 deletion(-)

 [patch 02/10] added comment for the frag->reassembly == null case as
 per feedback from Emilia
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

ssl/d1_both.c | 29 16 + 13 - 0 !
1 file changed, 16 insertions(+), 13 deletions(-)

 [patch 03/10] fix dtls handshake message size checks.
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

In |dtls1_reassemble_fragment|, the value of
|msg_hdr->frag_off+frag_len| was being checked against the maximum
handshake message size, but then |msg_len| bytes were allocated for the
fragment buffer. This means that so long as the fragment was within the
allowed size, the pending handshake message could consume 16MB + 2MB
(for the reassembly bitmap). Approx 10 outstanding handshake messages
are allowed, meaning that an attacker could consume ~180MB per DTLS
connection.

In the non-fragmented path (in |dtls1_process_out_of_seq_message|), no
check was applied.

Fixes CVE-2014-3506

Wholly based on patch by Adam Langley with one minor amendment.

ssl/d1_both.c | 22 19 + 3 - 0 !
1 file changed, 19 insertions(+), 3 deletions(-)

 [patch 04/10] fix memory leak from zero-length dtls fragments.
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

The |pqueue_insert| function can fail if one attempts to insert a
duplicate sequence number. When handling a fragment of an out of
sequence message, |dtls1_process_out_of_seq_message| would not call
|dtls1_reassemble_fragment| if the fragment's length was zero. It would
then allocate a fresh fragment and attempt to insert it, but ignore the
return value, leaking the fragment.

This allows an attacker to exhaust the memory of a DTLS peer.

Fixes CVE-2014-3507

ssl/d1_both.c | 4 3 + 1 - 0 !
1 file changed, 3 insertions(+), 1 deletion(-)

 [patch 05/10] fix return code for truncated dtls fragment.
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Previously, a truncated DTLS fragment in
|dtls1_process_out_of_seq_message| would cause *ok to be cleared, but
the return value would still be the number of bytes read. This would
cause |dtls1_get_message| not to consider it an error and it would
continue processing as normal until the calling function noticed that
*ok was zero.

I can't see an exploit here because |dtls1_get_message| uses
|s->init_num| as the length, which will always be zero from what I can
see.

ssl/d1_both.c | 4 3 + 1 - 0 !
1 file changed, 3 insertions(+), 1 deletion(-)

 [patch 06/10] applying same fix as in
 dtls1_process_out_of_seq_message. A truncated DTLS fragment would cause *ok
 to be clear, but the return value would still be the number of bytes read.
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Problem identified by Emilia Ksper, based on previous issue/patch by Adam
Langley.

ssl/d1_both.c | 8 4 + 4 - 0 !
1 file changed, 4 insertions(+), 4 deletions(-)

 [patch 07/10] remove some duplicate dtls code.
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

In |dtls1_process_out_of_seq_message|, we know that
|frag_len| <= |msg_hdr->msg_len| so the later tests for |frag_len <
msg_hdr->msg_len| can be more clearly written as |frag_len !=
msg_hdr->msg_len|, since that's the only remaining case.

ssl/s23_srvr.c | 30 23 + 7 - 0 !
1 file changed, 23 insertions(+), 7 deletions(-)

 [patch 08/10] fix protocol downgrade bug in case of fragmented
 packets
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

CVE-2014-3511

ssl/d1_clnt.c | 16 14 + 2 - 0 !
ssl/s3_clnt.c | 7 7 + 0 - 0 !
2 files changed, 21 insertions(+), 2 deletions(-)

 [patch 09/10] fix dtls anonymous ec(dh) denial of service

CVE-2014-3510

crypto/asn1/a_object.c | 30 21 + 9 - 0 !
crypto/objects/obj_dat.c | 16 9 + 7 - 0 !
2 files changed, 30 insertions(+), 16 deletions(-)

 [patch 10/10] fix oid handling:

- Upon parsing, reject OIDs with invalid base-128 encoding.
- Always NUL-terminate the destination buffer in OBJ_obj2txt printing function.

CVE-2014-3508

apps/s_client.c | 10 10 + 0 - 0 !
crypto/err/openssl.ec | 1 1 + 0 - 0 !
doc/apps/s_client.pod | 10 7 + 3 - 0 !
doc/ssl/SSL_CTX_set_mode.pod | 6 6 + 0 - 0 !
ssl/d1_lib.c | 10 10 + 0 - 0 !
ssl/dtls1.h | 3 2 + 1 - 0 !
ssl/s23_srvr.c | 3 3 + 0 - 0 !
ssl/s2_lib.c | 4 3 + 1 - 0 !
ssl/s3_enc.c | 1 1 + 0 - 0 !
ssl/s3_lib.c | 24 24 + 0 - 0 !
ssl/ssl.h | 9 9 + 0 - 0 !
ssl/ssl3.h | 7 6 + 1 - 0 !
ssl/ssl_err.c | 2 2 + 0 - 0 !
ssl/ssl_lib.c | 61 47 + 14 - 0 !
ssl/t1_enc.c | 2 1 + 1 - 0 !
ssl/tls1.h | 5 2 + 3 - 0 !
16 files changed, 134 insertions(+), 24 deletions(-)

---

ssl/s23_clnt.c | 9 7 + 2 - 0 !
ssl/s23_srvr.c | 15 9 + 6 - 0 !
util/mk1mf.pl | 6 0 + 6 - 0 !
3 files changed, 16 insertions(+), 14 deletions(-)

---