Update to 5.03:
Version 5.03, 2014.08.07, urgency: HIGH:
* Security bugfixes
- OpenSSL DLLs updated to version 1.0.1i.
See https://www.openssl.org/news/secadv_20140806.txt
* New features
- FIPS autoconfiguration cleanup.
- FIPS canister updated to version 2.0.6.
- Improved SNI diagnostic logging.
* Bugfixes
- Compilation fixes for old versions of OpenSSL.
- Fixed whitespace handling in the stunnel.init script.
Version 5.02, 2014.06.09, urgency: HIGH:
* Security bugfixes
- OpenSSL DLLs updated to version 1.0.1h.
See https://www.openssl.org/news/secadv_20140605.txt
* New features
- Major rewrite of the protocol.c interface: it is now possible to add
protocol negotiations at multiple connection phases, protocols can
individually decide whether the remote connection will be
established before or after SSL/TLS is negotiated.
- Heap memory blocks are wiped before release. This only works for
block allocated by stunnel, and not by OpenSSL or other libraries.
- The safe_memcmp() function implemented with execution time not
dependent on the compared data.
- Updated the stunnel.conf and stunnel.init templates.
- Added a client-mode example to the manual.
* Bugfixes
- Fixed "failover = rr" broken since version 5.00.
- Fixed "taskbar = no" broken since version 5.00.
- Compilation fix for missing SSL_OP_MSIE_SSLV2_RSA_PADDING option.
(wiz)
diff -r1.91 -r1.92 pkgsrc/security/stunnel/Makefile| @@ -1,17 +1,16 @@ | @@ -1,17 +1,16 @@ | |||
| 1 | # $NetBSD: Makefile,v 1.91 2014/05/29 23:37:26 wiz Exp $ | 1 | # $NetBSD: Makefile,v 1.92 2014/08/10 14:54:12 wiz Exp $ | |
| 2 | 2 | |||
| 3 | DISTNAME= stunnel-5.01 | 3 | DISTNAME= stunnel-5.03 | |
| 4 | PKGREVISION= 1 | |||
| 5 | CATEGORIES= security | 4 | CATEGORIES= security | |
| 6 | MASTER_SITES= http://www.stunnel.org/downloads/ | 5 | MASTER_SITES= http://www.stunnel.org/downloads/ | |
| 7 | 6 | |||
| 8 | MAINTAINER= jym@NetBSD.org | 7 | MAINTAINER= jym@NetBSD.org | |
| 9 | HOMEPAGE= http://www.stunnel.org/ | 8 | HOMEPAGE= http://www.stunnel.org/ | |
| 10 | COMMENT= Universal SSL tunnel | 9 | COMMENT= Universal SSL tunnel | |
| 11 | LICENSE= gnu-gpl-v2 | 10 | LICENSE= gnu-gpl-v2 | |
| 12 | 11 | |||
| 13 | BUILD_DEFS+= VARBASE | 12 | BUILD_DEFS+= VARBASE | |
| 14 | USE_LIBTOOL= yes | 13 | USE_LIBTOOL= yes | |
| 15 | GNU_CONFIGURE= yes | 14 | GNU_CONFIGURE= yes | |
| 16 | CONFIGURE_ARGS+= --localstatedir=${VARBASE} | 15 | CONFIGURE_ARGS+= --localstatedir=${VARBASE} | |
| 17 | CONFIGURE_ARGS+= --sysconfdir=${PKG_SYSCONFDIR} | 16 | CONFIGURE_ARGS+= --sysconfdir=${PKG_SYSCONFDIR} |
| @@ -1,7 +1,7 @@ | @@ -1,7 +1,7 @@ | |||
| 1 | $NetBSD: distinfo,v 1.40 2014/04/29 13:47:45 ryoon Exp $ | 1 | $NetBSD: distinfo,v 1.41 2014/08/10 14:54:12 wiz Exp $ | |
| 2 | 2 | |||
| 3 | SHA1 (stunnel-5.01.tar.gz) = e974c2b7854c2de989b8b161be598cf2222a8a1a | 3 | SHA1 (stunnel-5.03.tar.gz) = aebdf0b3b6db5afeb42c30093ab78c1a8df5e12a | |
| 4 | RMD160 (stunnel-5.01.tar.gz) = 7762a3b48b29c4b3fea46824bae0aeadb1193a6b | 4 | RMD160 (stunnel-5.03.tar.gz) = 221945e5b2e67dcdb880a56d760e7a26048d323a | |
| 5 | Size (stunnel-5.01.tar.gz) = 587962 bytes | 5 | Size (stunnel-5.03.tar.gz) = 590778 bytes | |
| 6 | SHA1 (patch-aa) = 0e57d4fa383dad7891795073d1f6b5075715b346 | 6 | SHA1 (patch-aa) = 0e57d4fa383dad7891795073d1f6b5075715b346 | |
| 7 | SHA1 (patch-ac) = 63e80322e68efc7e6c5f0bab92e7260178a25109 | 7 | SHA1 (patch-ac) = 63e80322e68efc7e6c5f0bab92e7260178a25109 |