[Midnightbsd-cvs] src [7551] stable/0.7: MidnightBSD 0.7.7-RELEASE

[laffer1 at midnightbsd.org]

Revision: 7551
          http://svnweb.midnightbsd.org/src/?rev=7551
Author:   laffer1
Date:     2016-05-05 04:09:14 -0400 (Thu, 05 May 2016)
Log Message:
-----------
MidnightBSD 0.7.7-RELEASE

Modified Paths:
--------------
    stable/0.7/UPDATING
    stable/0.7/sys/conf/newvers.sh

Modified: stable/0.7/UPDATING
===================================================================
--- stable/0.7/UPDATING	2016-05-05 08:05:44 UTC (rev 7550)
+++ stable/0.7/UPDATING	2016-05-05 08:09:14 UTC (rev 7551)
@@ -1,5 +1,27 @@
 Updating Information for MidnightBSD users.
 
+20160505:
+	MidnightBSD 0.7.7 RELEASE
+
+	OpenSSL security patch
+
+	The padding check in AES-NI CBC MAC was rewritten to be in constant time
+	by making sure that always the same bytes are read and compared against
+	either the MAC or padding bytes. But it no longer checked that there was
+	enough data to have both the MAC and padding bytes. [CVE-2016-2107]
+
+	An overflow can occur in the EVP_EncodeUpdate() function which is used for
+	Base64 encoding of binary data. [CVE-2016-2105]
+
+	An overflow can occur in the EVP_EncryptUpdate() function, however it is
+	believed that there can be no overflows in internal code due to this problem.
+	[CVE-2016-2106]
+
+	When ASN.1 data is read from a BIO using functions such as d2i_CMS_bio()
+	a short invalid encoding can casuse allocation of large amounts of memory
+	potentially consuming excessive resources or exhausting memory.
+	[CVE-2016-2109]
+
 20160317:
 	MidnightBSD 0.7.6 RELEASE
 

Modified: stable/0.7/sys/conf/newvers.sh
===================================================================
--- stable/0.7/sys/conf/newvers.sh	2016-05-05 08:05:44 UTC (rev 7550)
+++ stable/0.7/sys/conf/newvers.sh	2016-05-05 08:09:14 UTC (rev 7551)
@@ -32,7 +32,7 @@
 # $MidnightBSD$
 
 TYPE="MidnightBSD"
-REVISION="0.7.6"
+REVISION="0.7.7"
 RELEASE="${REVISION}"
 VERSION="${TYPE} ${RELEASE}"
 SYSDIR=$(dirname $0)/..