Mercurial Mercurial > upstream > oracle > userland-gate / file revision
summary | shortlog | changelog | graph | tags | bookmarks | branches | files | changeset | file | latest | revisions | annotate | diff | comparison | raw | help
Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
components/elinks/patches/init-openssl.patch
author Peter Schow <peter.schow@oracle.com>
Tue, 10 Mar 2015 09:04:36 -0700
branchs11-update
changeset 3954 7e6addf418e2
parent 3590 1b75635bc6a3
permissions -rw-r--r--
19622198 Update tmux to 1.9 20647910 tmux should ship its source manual page instead of a preformatted one

Disable SSLv2 and SSLv3 in elinks to "mitigate POODLE vulnerability".

This change will be passed upstream.

--- elinks-0.11.7/src/network/ssl/ssl.c.orig	2014-12-17 12:23:16.239844159 -0800
+++ elinks-0.11.7/src/network/ssl/ssl.c	2015-01-06 05:41:07.668610655 -0800
@@ -58,6 +58,7 @@
 	SSLeay_add_ssl_algorithms();
 	context = SSL_CTX_new(SSLv23_client_method());
 	SSL_CTX_set_options(context, SSL_OP_ALL);
+	SSL_CTX_set_options(context, SSL_OP_NO_SSLv2 | SSL_OP_NO_SSLv3);
 	SSL_CTX_set_default_verify_paths(context);
 }
upstream/oracle/userland-gate