From owner-freebsd-stable@freebsd.org Tue Mar 8 12:46:02 2016 Return-Path: Delivered-To: freebsd-stable@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id DA05DAC7031 for ; Tue, 8 Mar 2016 12:46:02 +0000 (UTC) (envelope-from mike@sentex.net) Received: from mailman.ysv.freebsd.org (mailman.ysv.freebsd.org [IPv6:2001:1900:2254:206a::50:5]) by mx1.freebsd.org (Postfix) with ESMTP id C4500D60 for ; Tue, 8 Mar 2016 12:46:02 +0000 (UTC) (envelope-from mike@sentex.net) Received: by mailman.ysv.freebsd.org (Postfix) id BFD12AC7030; Tue, 8 Mar 2016 12:46:02 +0000 (UTC) Delivered-To: stable@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id BF6D4AC702F for ; Tue, 8 Mar 2016 12:46:02 +0000 (UTC) (envelope-from mike@sentex.net) Received: from smarthost2.sentex.ca (smarthost2.sentex.ca [IPv6:2607:f3e0:80:80::2]) (using TLSv1 with cipher DHE-RSA-CAMELLIA256-SHA (256/256 bits)) (Client CN "smarthost.sentex.ca", Issuer "smarthost.sentex.ca" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id 903FDD5F; Tue, 8 Mar 2016 12:46:02 +0000 (UTC) (envelope-from mike@sentex.net) Received: from lava.sentex.ca (lava.sentex.ca [IPv6:2607:f3e0:0:5::11]) by smarthost2.sentex.ca (8.15.2/8.15.2) with ESMTPS id u28Ck0vc074168 (version=TLSv1 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Tue, 8 Mar 2016 07:46:00 -0500 (EST) (envelope-from mike@sentex.net) Received: from [IPv6:2607:f3e0:0:4:5c30:ed1b:e203:c55c] ([IPv6:2607:f3e0:0:4:5c30:ed1b:e203:c55c]) by lava.sentex.ca (8.14.9/8.14.9) with ESMTP id u28Cjxgp029232; Tue, 8 Mar 2016 07:45:59 -0500 (EST) (envelope-from mike@sentex.net) Subject: Re: svn commit: r296462 - in stable/9: crypto/openssl/crypto/bio crypto/openssl/crypto/bn crypto/openssl/doc/apps crypto/openssl/ssl secure/usr.bin/openssl/man To: Xin LI , src-committers@freebsd.org, "stable@freebsd.org" References: <201603071618.u27GI736079901@repo.freebsd.org> From: Mike Tancsa Organization: Sentex Communications Message-ID: <56DEC973.5000106@sentex.net> Date: Tue, 8 Mar 2016 07:45:39 -0500 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:38.0) Gecko/20100101 Thunderbird/38.6.0 MIME-Version: 1.0 In-Reply-To: <201603071618.u27GI736079901@repo.freebsd.org> Content-Type: text/plain; charset=windows-1252 Content-Transfer-Encoding: 7bit X-Scanned-By: MIMEDefang 2.78 X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.21 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 08 Mar 2016 12:46:02 -0000 Hi, I tried on 2 separate boxes, and sshd segfaults when this rev is applied ---Mike On 3/7/2016 11:18 AM, Xin LI wrote: > Author: delphij > Date: Mon Mar 7 16:18:07 2016 > New Revision: 296462 > URL: https://svnweb.freebsd.org/changeset/base/296462 > > Log: > Fix multiple OpenSSL vulnerabilities as published in > OpenSSL advisory on 2016/03/01: > > constant-time MOD_EXP_CTIME_COPY_FROM_PREBUF. > [CVE-2016-0702, upstream d6482a8. 5ea08bd, d6d422e, > 8fc8f48 317be63 skipped intentionally as we are not > using the code on FreeBSD. Backport done by jkim@. > > Fix memory issues in BIO_*printf functions. > [CVE-2016-0799, upstream d889682, a801bf2]. > > Fix BN_hex2bn/BN_dec2bn NULL ptr/heap corruption. > [CVE-2016-0797, upstream 8f65132]. > > Disable SSLv2 in default negotiation and weak ciphers. > [CVE-2016-0800 "DROWN", upstream 56f1acf5]. Note that > support of SSLv2 is not removed in order to preserve > ABI compatibility, and application may still explicitly > ask for vulnerable protocol or ciphers. > > In collaboration with: jkim -- ------------------- Mike Tancsa, tel +1 519 651 3400 Sentex Communications, mike@sentex.net Providing Internet services since 1994 www.sentex.net Cambridge, Ontario Canada http://www.tancsa.com/