Subject: CVS commit: pkgsrc/security/openssl
From: Thomas Klausner
Date: 2025-02-11 22:27:36
Message id: 20250211212736.30093FBE0@cvs.NetBSD.org
Log Message:
openssl: update to 3.4.1.

### Major changes between OpenSSL 3.4.0 and OpenSSL 3.4.1 [11 Feb 2025]

OpenSSL 3.4.1 is a security patch release. The most severe CVE fixed in this
release is High.

This release incorporates the following bug fixes and mitigations:

  * Fixed RFC7250 handshakes with unauthenticated servers don't abort as expected.
    ([CVE-2024-12797])

  * Fixed timing side-channel in ECDSA signature computation.
    ([CVE-2024-13176])
Files:
RevisionActionfile
1.305modifypkgsrc/security/openssl/Makefile
1.178modifypkgsrc/security/openssl/distinfo