openssl-libs-3.0.8-2.fc38 RPM for x86_64

From Fedora 38 for x86_64 / o

OpenSSL is a toolkit for supporting cryptography. The openssl-libs
package contains the libraries that are used by various applications which
support cryptographic algorithms and protocols.

Provides

• openssl-libs
• config(openssl-libs)
• libcrypto.so.3()(64bit)
• libcrypto.so.3(OPENSSL_3.0.0)(64bit)
• libcrypto.so.3(OPENSSL_3.0.1)(64bit)
• libcrypto.so.3(OPENSSL_3.0.3)(64bit)
• libcrypto.so.3(OPENSSL_3.0.8)(64bit)
• libssl.so.3()(64bit)
• libssl.so.3(OPENSSL_3.0.0)(64bit)
• openssl-libs(x86-64)

Requires

• ca-certificates >= 2008-5
• config(openssl-libs) = 1:3.0.8-2.fc38
• crypto-policies >= 20180730
• libc.so.6()(64bit)
• libc.so.6(GLIBC_2.14)(64bit)
• libc.so.6(GLIBC_2.15)(64bit)
• libc.so.6(GLIBC_2.16)(64bit)
• libc.so.6(GLIBC_2.17)(64bit)
• libc.so.6(GLIBC_2.2.5)(64bit)
• libc.so.6(GLIBC_2.25)(64bit)
• libc.so.6(GLIBC_2.3)(64bit)
• libc.so.6(GLIBC_2.3.4)(64bit)
• libc.so.6(GLIBC_2.33)(64bit)
• libc.so.6(GLIBC_2.34)(64bit)
• libc.so.6(GLIBC_2.4)(64bit)
• libc.so.6(GLIBC_2.7)(64bit)
• libcrypto.so.3()(64bit)
• libcrypto.so.3(OPENSSL_3.0.0)(64bit)
• libcrypto.so.3(OPENSSL_3.0.1)(64bit)
• libcrypto.so.3(OPENSSL_3.0.3)(64bit)
• libz.so.1()(64bit)
• rpmlib(CompressedFileNames) <= 3.0.4-1
• rpmlib(FileDigests) <= 4.6.0-1
• rpmlib(PayloadFilesHavePrefix) <= 4.0-1
• rpmlib(PayloadIsZstd) <= 5.4.18-1
• rtld(GNU_HASH)

License

ASL 2.0

Changelog

* Tue Mar 21 2023 Sahana Prasad <sahana@redhat.com> - 1:3.0.8-2
  - Upload new upstream sources without manually hobbling them.
  - Remove the hobbling script as it is redundant. It is now allowed to ship
    the sources of patented EC curves, however it is still made unavailable to use
    by compiling with the 'no-ec2m' Configure option. The additional forbidden
    curves such as P-160, P-192, wap-tls curves are manually removed by updating
    0011-Remove-EC-curves.patch.
  - Enable Brainpool curves.
  - Apply the changes to ec_curve.c and  ectest.c as a new patch
    0010-Add-changes-to-ectest-and-eccurve.patch instead of replacing them.
  - Modify 0011-Remove-EC-curves.patch to allow Brainpool curves.
  - Modify 0011-Remove-EC-curves.patch to allow code under macro OPENSSL_NO_EC2M.
    Resolves: rhbz#2130618, rhbz#2141672
* Thu Feb 09 2023 Dmitry Belyavskiy <dbelyavs@redhat.com> - 1:3.0.8-1
  - Rebase to upstream version 3.0.8
    Resolves: CVE-2022-4203
    Resolves: CVE-2022-4304
    Resolves: CVE-2022-4450
    Resolves: CVE-2023-0215
    Resolves: CVE-2023-0216
    Resolves: CVE-2023-0217
    Resolves: CVE-2023-0286
    Resolves: CVE-2023-0401
* Thu Jan 19 2023 Fedora Release Engineering <releng@fedoraproject.org> - 1:3.0.7-4
  - Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild
* Thu Jan 05 2023 Dmitry Belyavskiy <dbelyavs@redhat.com> - 1:3.0.7-3
  - Backport implicit rejection for RSA PKCS#1 v1.5 encryption
    Resolves: rhbz#2153470
* Thu Jan 05 2023 Dmitry Belyavskiy <dbelyavs@redhat.com> - 1:3.0.7-2
  - Refactor embedded mac verification in FIPS module
    Resolves: rhbz#2156045
* Fri Dec 23 2022 Dmitry Belyavskiy <dbelyavs@redhat.com> - 1:3.0.7-1
  - Rebase to upstream version 3.0.7
  - C99 compatibility in downstream-only 0032-Force-fips.patch
    Resolves: rhbz#2152504
  - Adjusting include for the FIPS_mode macro
    Resolves: rhbz#2083876
* Wed Nov 16 2022 Simo sorce <simo@redhat.com> - 1:3.0.5-7
  - Backport patches to fix external providers compatibility issues
* Tue Nov 01 2022 Dmitry Belyavskiy <dbelyavs@redhat.com> - 1:3.0.5-6
  - CVE-2022-3602: X.509 Email Address Buffer Overflow
  - CVE-2022-3786: X.509 Email Address Buffer Overflow
    Resolves: CVE-2022-3602
    Resolves: CVE-2022-3786
* Mon Sep 12 2022 Dmitry Belyavskiy <dbelyavs@redhat.com> - 1:3.0.5-5
  - Update patches to make ELN build happy
    Resolves: rhbz#2123755
* Fri Sep 09 2022 Clemens Lang <cllang@redhat.com> - 1:3.0.5-4
  - Fix AES-GCM on Power 8 CPUs
    Resolves: rhbz#2124845
* Thu Sep 01 2022 Dmitry Belyavskiy <dbelyavs@redhat.com> - 1:3.0.5-3
  - Sync patches with RHEL
    Related: rhbz#2123755
* Fri Jul 22 2022 Fedora Release Engineering <releng@fedoraproject.org> - 1:3.0.5-2
  - Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
* Tue Jul 05 2022 Clemens Lang <cllang@redhat.com> - 1:3.0.5-1
  - Rebase to upstream version 3.0.5
    Related: rhbz#2099972, CVE-2022-2097
* Wed Jun 01 2022 Dmitry Belyavskiy <dbelyavs@redhat.com> - 1:3.0.3-1
  - Rebase to upstream version 3.0.3
* Thu Apr 28 2022 Clemens Lang <cllang@redhat.com> - 1:3.0.2-5
  - Instrument with USDT probes related to SHA-1 deprecation
* Wed Apr 27 2022 Clemens Lang <cllang@redhat.com> - 1:3.0.2-4
  - Support rsa_pkcs1_md5_sha1 in TLS 1.0/1.1 with rh-allow-sha1-signatures = yes
    to restore TLS 1.0 and 1.1 support in LEGACY crypto-policy.
    Related: rhbz#2069239
* Tue Apr 26 2022 Alexander Sosedkin <asosedkin@redhat.com> - 1:3.0.2-4
  - Instrument with USDT probes related to SHA-1 deprecation
* Wed Apr 20 2022 Clemens Lang <cllang@redhat.com> - 1:3.0.2-3
  - Disable SHA-1 by default in ELN using the patches from CentOS
  - Fix a FIXME in the openssl.cnf(5) manpage
* Thu Apr 07 2022 Clemens Lang <cllang@redhat.com> - 1:3.0.2-2
  - Silence a few rpmlint false positives.
* Thu Apr 07 2022 Clemens Lang <cllang@redhat.com> - 1:3.0.2-2
  - Allow disabling SHA1 signature creation and verification.
    Set rh-allow-sha1-signatures = no to disable.
    Allow SHA1 in TLS in SECLEVEL 1 if rh-allow-sha1-signatures = yes. This will
    support SHA1 in TLS in the LEGACY crypto-policy.
    Resolves: rhbz#2070977
    Related: rhbz#2031742, rhbz#2062640
* Fri Mar 18 2022 Dmitry Belyavskiy <dbelyavs@redhat.com> - 1:3.0.2-1
  - Rebase to upstream version 3.0.2
* Thu Jan 20 2022 Fedora Release Engineering <releng@fedoraproject.org> - 1:3.0.0-2
  - Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
* Thu Sep 09 2021 Sahana Prasad <sahana@redhat.com> - 1:3.0.0-1
  - Rebase to upstream version 3.0.0

Files

/etc/pki/tls
/etc/pki/tls/certs
/etc/pki/tls/ct_log_list.cnf
/etc/pki/tls/misc
/etc/pki/tls/openssl.cnf
/etc/pki/tls/private
/usr/lib/.build-id
/usr/lib/.build-id/17
/usr/lib/.build-id/17/09fc60fe122c9d916345b95e43233ba7cdb8b7
/usr/lib/.build-id/39
/usr/lib/.build-id/39/6fa4a0112ad3c6f50d628d5e7301a8da47b557
/usr/lib/.build-id/53
/usr/lib/.build-id/53/69c13f5803e81db610970b72b0bb1fb156eb33
/usr/lib/.build-id/6a
/usr/lib/.build-id/6a/629cf7255ed9a19e2fc5a0c0b8d3435cfc966c
/usr/lib/.build-id/77
/usr/lib/.build-id/77/4917dc5019ed6e0c655dbef69dc754cd73d13e
/usr/lib/.build-id/80
/usr/lib/.build-id/80/c84dd245e77d75cf51548f0bed054b0825f436
/usr/lib/.build-id/97
/usr/lib/.build-id/97/49ee144c981952b4d1bef913891fb3bbf2c58f
/usr/lib/.build-id/f7
/usr/lib/.build-id/f7/62bb3d54ccc26f5182b558e1dfde142d778f73
/usr/lib64/engines-3
/usr/lib64/engines-3/afalg.so
/usr/lib64/engines-3/capi.so
/usr/lib64/engines-3/loader_attic.so
/usr/lib64/engines-3/padlock.so
/usr/lib64/libcrypto.so.3
/usr/lib64/libcrypto.so.3.0.8
/usr/lib64/libssl.so.3
/usr/lib64/libssl.so.3.0.8
/usr/lib64/ossl-modules
/usr/lib64/ossl-modules/fips.so
/usr/lib64/ossl-modules/legacy.so
/usr/share/licenses/openssl-libs
/usr/share/licenses/openssl-libs/LICENSE.txt

Generated by rpm2html 1.8.1

Fabrice Bellet, Tue Apr 9 22:26:30 2024