OpenSSL Toolkit 3.0.6
- OpenSSL Toolkit 3.0.6
- Posted Oct 11, 2022
- Site openssl.org
-
OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide. The 3.x series is the current major version of OpenSSL.
- Changes: OpenSSL supports creating a custom cipher via the legacy EVP_CIPHER_meth_new() function and associated function calls. This function was deprecated in OpenSSL 3.0 and application authors are instead encouraged to use the new provider mechanism in order to implement custom ciphers. Fixed LLVM vs Apple LLVM version numbering confusion that caused build failures on MacOS 10.11. Fixed the linux-mips64 Configure target which was missing the SIXTY_FOUR_BIT bn_ops flag. This was causing heap corruption on that platform. Fixed handling of a ticket key callback that returns 0 in TLSv1.3 to not send a ticket. Fixed detection of ktls support in cross-compile environment on Linux. Fixed some regressions and test failures when running the 3.0.0 FIPS provider against 3.0.x. Fixed SSL_pending() and SSL_has_pending() with DTLS which were failing to report correct results in some cases. Fixed UWP builds by defining VirtualLock. Fixed EC ASM flag passing. Flags for ASM implementations of EC curves were only passed to the FIPS provider and not to the default or legacy provider. Various other fixes and updates.
- systems | unix
- advisories | CVE-2022-3358
- SHA-256 |
e4a10a2986945e3f1a1f2ebd68ac780449a1773b96b6a174fdf650d6bc9611f1 - Download | Favorite | View
Gloss