openssl

Description:full-strength general purpose cryptography library (including SSL and TLS)
License: openssl
Homepage:http://www.openssl.org/
Location:Portage
Legend:
  • + - stable
  • ~ - unstable
  • M - hardmask
alpha amd64 arm hppa ia64 m68k mips ppc ppc64 s390 sh sparc x86
1.1.0g-r2 diff ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~
1.0.2n diff ~ ~ ~ + + ~ ~ + + ~ ~ ~ +
1.0.2m diff + + + + + ~ ~ + + ~ ~ + +
1.0.2l-r1 diff ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~
1.0.2l diff + + + + + ~ ~ + + ~ ~ + +
1.0.2k diff + + + + + + ~ + + + + + +
0.9.8z_p8 ~ + ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ +

USE flags

  • abi_mips_n32 - 64-bit (32-bit pointer) libraries
  • abi_mips_n64 - 64-bit libraries
  • abi_mips_o32 - 32-bit libraries
  • abi_ppc_32 - 32-bit (ppc) libraries
  • abi_ppc_64 - 64-bit (ppc64) libraries
  • abi_s390_32 - 32-bit (s390) libraries
  • abi_s390_64 - 64-bit (s390x) libraries
  • abi_x86_32 - 32-bit (x86) libraries
  • abi_x86_64 - 64-bit (amd64) libraries
  • abi_x86_x32 - x32 ABI libraries
  • asm - Support assembly hand optimized crypto functions (i.e. faster run time)
  • bindist - Disable/Restrict EC algorithms (as they seem to be patented) -- note: changes the ABI
  • cpu_flags_x86_sse2 - Use the SSE2 instruction set
  • elibc_musl - ELIBC setting for systems that use the musl C library
  • gmp - Add support for dev-libs/gmp (GNU MP library)
  • kerberos - Add kerberos support
  • rfc3779 - Enable support for RFC 3779 (X.509 Extensions for IP Addresses and AS Identifiers)
  • sctp - Support for Stream Control Transmission Protocol
  • sse2 - Use the SSE2 instruction set
  • sslv2 - Support for the old/insecure SSLv2 protocol -- note: not required for TLS/https
  • sslv3 - Support for the old/insecure SSLv3 protocol -- note: not required for TLS/https
  • static-libs - Build static versions of dynamic libraries as well
  • test - Workaround to pull in packages needed to run with FEATURES=test. Portage-2.1.2 handles this internally, so don't set it in make.conf/package.use anymore
  • tls-heartbeat - Enable the Heartbeat Extension in TLS and DTLS
  • vanilla - Do not add extra patches which change default behaviour; DO NOT USE THIS ON A GLOBAL SCALE as the severity of the meaning changes drastically
  • zlib - Add support for zlib (de)compression

Security Advisory

Date Severity Title
10 months normal OpenSSL: Multiple vulnerabilities
about 1 year normal OpenSSL: Multiple vulnerabilities
over 1 year normal OpenSSL: Multiple vulnerabilities
almost 2 years normal OpenSSL: Multiple vulnerabilities
over 2 years normal OpenSSL: Alternate chains certificate forgery
over 2 years normal OpenSSL: Multiple vulnerabilities
over 2 years normal OpenSSL: Multiple vulnerabilities
almost 3 years normal OpenSSL: Multiple vulnerabilities
over 3 years high OpenSSL: Multiple vulnerabilities
over 3 years normal OpenSSL: Information Disclosure
almost 4 years normal OpenSSL: Denial of Service
about 4 years low OpenSSL: Multiple Vulnerabilities
almost 6 years normal OpenSSL: Multiple vulnerabilities
about 6 years high OpenSSL: Multiple vulnerabilities
about 8 years normal OpenSSL: Multiple vulnerabilities
over 8 years normal OpenSSL: Denial of Service
almost 9 years normal OpenSSL: Certificate validation error
over 9 years normal OpenSSL: Denial of Service
about 10 years high OpenSSL: Remote execution of arbitrary code
about 10 years high OpenSSL: Multiple vulnerabilities
about 11 years high OpenSSL: Multiple vulnerabilities
over 11 years normal OpenSSL, AMD64 x86 emulation base libraries: RSA signature forgery
about 12 years low OpenSSL: SSL 2.0 protocol rollback
about 13 years normal OpenSSL, Groff: Insecure tempfile handling
over 13 years normal Multiple OpenSSL Vulnerabilities

Also available in: Atom

Thank you!