Next | Query returned 275 messages, browsing 1 to 10 | Previous

History of commit frequency

CVS Commit History:


   2022-06-28 13:38:00 by Thomas Klausner | Files touched by this commit (3952)
Log message:
*: recursive bump for perl 5.36
   2022-06-24 08:10:38 by Thomas Klausner | Files touched by this commit (2) | Package updated
Log message:
nss: update to 3.80.

Ok during freeze: gdt@

Changes:
   - Bug 1774720 - Fix SEC_ERROR_ALGORITHM_MISMATCH entry in SECerrs.h.
   - Bug 1617956 - Add support for asynchronous client auth hooks.
   - Bug 1497537 - nss-policy-check: make unknown keyword check optional.
   - Bug 1765383 - GatherBuffer: Reduced plaintext buffer allocations
   by allocating it on initialization. Replaced redundant code with
   assert. Debug builds: Added buffer freeing/allocation for each
   record.
   - Bug 1773022 - Mark 3.79 as an ESR release.
   - Bug 1764206 - Bump nssckbi version number for June.
   - Bug 1759815 - Remove Hellenic Academic 2011 Root.
   - Bug 1770267 - Add E-Tugra Roots.
   - Bug 1768970 - Add Certainly Roots.
   - Bug 1764392 - Add DigitCert Roots.
   - Bug 1759794 - Protect SFTKSlot needLogin with slotLock.
   - Bug 1366464 - Compare signature and signatureAlgorithm fields
   in legacy certificate verifier.
   - Bug 1771497 - Uninitialized value in cert_VerifyCertChainOld.
   - Bug 1771495 - Unchecked return code in sec_DecodeSigAlg.
   - Bug 1771498 - Uninitialized value in cert_ComputeCertType.
   - Bug 1760998 - Avoid data race on primary password change.
   - Bug 1769063 - Replace ppc64 dcbzl intrinisic.
   - Bug 1771036 - Allow LDFLAGS override in makefile builds.
   2022-05-31 22:30:10 by Thomas Klausner | Files touched by this commit (2) | Package updated
Log message:
nss: update to 3.79.

This release fixes memory safety violations that can occur when parsing CMS
data. We presume that with enough effort these memory safety violations are
exploitable.

Change:
   - Bug 205717 - Use PK11_GetSlotInfo instead of raw C_GetSlotInfo calls.
   - Bug 1766907 - Update mercurial in clang-format docker image.
   - Bug 1454072 - Use of uninitialized pointer in lg_init after alloc fail.
   - Bug 1769295 - selfserv and tstclnt should use PR_GetPrefLoopbackAddrInfo.
   - Bug 1753315 - Add SECMOD_LockedModuleHasRemovableSlots.
   - Bug 1387919 - Fix secasn1d parsing of indefinite SEQUENCE inside indefinite \ 
GROUP.
   - Bug 1765753 - Added RFC8422 compliant TLS <= 1.2 undefined/compressed \ 
ECPointFormat extension alerts.
   - Bug 1765753 - TLS 1.3 Server: Send protocol_version alert on unsupported \ 
ClientHello.legacy_version.
   - Bug 1764788 - Correct invalid record inner and outer content type alerts.
   - Bug 1757075 - NSS does not properly import or export pkcs12 files with \ 
large passwords and pkcs5v2 encoding.
   - Bug 1766978 - improve error handling after nssCKFWInstance_CreateObjectHandle.
   - Bug 1767590 - Initialize pointers passed to NSS_CMSDigestContext_FinishMultiple.
   - Bug 1769302 - NSS 3.79 should depend on NSPR 4.34
   2022-05-13 15:40:36 by Tobias Nygren | Files touched by this commit (2)
Log message:
nss: try to fix macOS/aarch64 to not detect as 32-bit
   2022-04-28 13:15:55 by Thomas Klausner | Files touched by this commit (2) | Package updated
Log message:
nss: update to 3.78.

Change:

- Bug 1755264 - Added TLS 1.3 zero-length inner plaintext checks
  and tests, zero-length record/fragment handling tests.
- Bug 1294978 - Reworked overlong record size checks and added
  TLS1.3 specific boundaries.
- Bug 1763120 - Add ECH Grease Support to tstclnt
- Bug 1765003 - Add a strict variant of moz::pkix::CheckCertHostname.
- Bug 1166338 - Change SSL_REUSE_SERVER_ECDHE_KEY default to false.
- Bug 1760813 - Make SEC_PKCS12EnableCipher succeed
- Bug 1762489 - Update zlib in NSS to 1.2.12.
   2022-04-18 21:12:27 by Adam Ciarcinski | Files touched by this commit (1798) | Package updated
Log message:
revbump for textproc/icu update
   2022-04-08 00:58:23 by Ryo ONODERA | Files touched by this commit (1)
Log message:
nss: Regenerate distinfo to follow recent changes
   2022-04-07 21:08:40 by Taylor R Campbell | Files touched by this commit (15)
Log message:
devel/nss: Patch ctype(3) abuse.
   2022-04-05 12:05:43 by Taylor R Campbell | Files touched by this commit (1)
Log message:
devel/nss: Fix cross-compilation.
   2022-03-31 20:10:52 by Thomas Klausner | Files touched by this commit (2) | Package updated
Log message:
nss: update to 3.77.

Changes:
   - Bug 1762244 - resolve mpitests build failure on Windows.
   - Bug 1761779 - Fix link to TLS page on wireshark wiki
   - Bug 1754890 - Add two D-TRUST 2020 root certificates.
   - Bug 1751298 - Add Telia Root CA v2 root certificate.
   - Bug 1751305 - Remove expired explicitly distrusted certificates from \ 
certdata.txt.
   - Bug 1005084 - support specific RSA-PSS parameters in mozilla::pkix
   - Bug 1753535 - Remove obsolete stateEnd check in SEC_ASN1DecoderUpdate.
   - Bug 1756271 - Remove token member from NSSSlot struct.
   - Bug 1602379 - Provide secure variants of mpp_pprime and mpp_make_prime.
   - Bug 1757279 - Support UTF-8 library path in the module spec string.
   - Bug 1396616 - Update nssUTF8_Length to RFC 3629 and fix buffer overrun.
   - Bug 1760827 - Add a CI Target for gcc-11.
   - Bug 1760828 - Change to makefiles for gcc-4.8.
   - Bug 1741688 - Update googletest to 1.11.0
   - Bug 1759525 - Add SetTls13GreaseEchSize to experimental API.
   - Bug 1755264 - TLS 1.3 Illegal legacy_version handling/alerts.
   - Bug 1755904 - Fix calculation of ECH HRR Transcript.
   - Bug 1758741 - Allow ld path to be set as environment variable.
   - Bug 1760653 - Ensure we don't read uninitialized memory in ssl gtests.
   - Bug 1758478 - Fix DataBuffer Move Assignment.
   - Bug 1552254 - internal_error alert on Certificate Request with sha1+ecdsa \ 
in TLS 1.3
   - Bug 1755092 - rework signature verification in mozilla::pkix

Next | Query returned 275 messages, browsing 1 to 10 | Previous