Showing 26 - 50 of 327

Files

OpenSSL Toolkit 1.1.1p: Posted Jun 21, 2022; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.; Changes: Fixed additional bugs in the c_rehash script which was not properly sanitizing shell metacharacters to prevent command injection.; tags | tool, encryption, protocol; systems | unix; advisories | CVE-2022-2068; SHA-256 | bf61b62aaa66c7c7639942a94de4c9ae8280c08f17d4eac2e44644d9fc8ace6f; Download | Favorite | View

OpenSSL Toolkit 3.0.3: Posted May 3, 2022; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide. The 3.x series is the current major version of OpenSSL.; Changes: Fixed a bug in the c_rehash script which was not properly sanitizing shell metacharacters to prevent command injection. Fixed a bug in the function OCSP_basic_verify that verifies the signer certificate on an OCSP response. Fixed a bug where the RC4-MD5 ciphersuite incorrectly used the AAD data as the MAC key. Fixed a bug in the OPENSSL_LH_flush() function that breaks reuse of the memory occupied by the removed hash table entries.; tags | tool, encryption, protocol; systems | unix; advisories | CVE-2022-1292, CVE-2022-1343, CVE-2022-1434, CVE-2022-1473; SHA-256 | ee0078adcef1de5f003c62c80cc96527721609c6f3bb42b7795df31f8b558c0b; Download | Favorite | View

OpenSSL Toolkit 1.1.1o: Posted May 3, 2022; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.; Changes: Fixed a bug in the c_rehash script which was not properly sanitizing shell metacharacters to prevent command injection.; tags | tool, encryption, protocol; systems | unix; advisories | CVE-2022-1292; SHA-256 | 9384a2b0570dd80358841464677115df785edb941c71211f75076d72fe6b438f; Download | Favorite | View

OpenSSL Toolkit 3.0.2: Posted Mar 16, 2022; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide. The 3.x series is the current major version of OpenSSL.; Changes: Fixed a bug in the BN_mod_sqrt() function that can cause it to loop forever for non-prime moduli. Added ciphersuites based on DHE_PSK (RFC 4279) and ECDHE_PSK (RFC 5489) to the list of ciphersuites providing Perfect Forward Secrecy as required by SECLEVEL greater than or equal to 3. Made the AES constant time code for no-asm configurations optional due to the resulting 95% performance degradation. Fixed PEM_write_bio_PKCS8PrivateKey() to make it possible to use empty passphrase strings. The negative return value handling of the certificate verification callback was reverted. The replacement is to set the verification retry state with the SSL_set_retry_verify() function.; tags | tool, encryption, protocol; systems | unix; SHA-256 | 98e91ccead4d4756ae3c9cde5e09191a8e586d9f4d50838e7ec09d6411dfdb63; Download | Favorite | View

OpenSSL Toolkit 1.1.1n: Posted Mar 16, 2022; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.; Changes: Fixed a bug in the BN_mod_sqrt() function that can cause it to loop forever for non-prime moduli. Added ciphersuites based on DHE_PSK (RFC 4279) and ECDHE_PSK (RFC 5489) to the list of ciphersuites providing Perfect Forward Secrecy as required by SECLEVEL greater than or equal to 3.; tags | tool, encryption, protocol; systems | unix; advisories | CVE-2022-0778; SHA-256 | 40dceb51a4f6a5275bde0e6bf20ef4b91bfc32ed57c0552e2e8e15463372b17a; Download | Favorite | View

OpenSSL Toolkit 1.1.1m: Posted Dec 15, 2021; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.; Changes: Made a change to avoid loading of a dynamic engine twice. Fixed building on Debian with kfreebsd kernels. Prioritized DANE TLSA issuer certs over peer certs. Fixed random API for MacOS prior to 10.12.; tags | tool, encryption, protocol; systems | unix; SHA-256 | f89199be8b23ca45fc7cb9f1d8d3ee67312318286ad030f5316aca6462db6c96; Download | Favorite | View

OpenSSL Toolkit 1.1.1l: Posted Aug 24, 2021; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.; Changes: Fixed an SM2 Decryption Buffer Overflow. Fixed various read buffer overruns processing ASN.1 strings.; tags | tool, encryption, protocol; systems | unix; advisories | CVE-2021-3711, CVE-2021-3712; SHA-256 | 0b7a3e5e59c34827fe0c3a74b7ec8baef302b98fa80088d7f9153aa16fa76bd1; Download | Favorite | View

OpenSSL Toolkit 1.1.1k: Posted Mar 25, 2021; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.; Changes: Fixed a problem with verifying a certificate chain when using the X509_V_FLAG_X509_STRICT flag. Fixed an issue where an OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client.; tags | tool, encryption, protocol; systems | unix; advisories | CVE-2021-3449, CVE-2021-3450; SHA-256 | 892a0875b9872acd04a9fde79b1f943075d5ea162415de3047c327df33fbaee5; Download | Favorite | View

OpenSSL Toolkit 1.1.1j: Posted Feb 17, 2021; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.; Changes: Fixed a NULL pointer deref in the X509_issuer_and_serial_hash() function. Fixed the RSA_padding_check_SSLv23() function and the RSA_SSLV23_PADDING padding mode to correctly check for rollback attacks. Fixed an overflow in the EVP_CipherUpdate, EVP_EncryptUpdate and EVP_DecryptUpdate functions. Fixed SRP_Calc_client_key so that it runs in constant time.; tags | tool, encryption, protocol; systems | unix; advisories | CVE-2021-23840, CVE-2021-23841; SHA-256 | aaf2fcb575cdf6491b98ab4829abf78a3dec8402b8b81efc8f23c00d443981bf; Download | Favorite | View

OpenSSL Toolkit 1.1.1i: Posted Dec 8, 2020; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.; Changes: Fixed NULL pointer deref in the GENERAL_NAME_cmp function. Added support for Apple Silicon M1 Macs with the darwin64-arm64-cc target. A client-side call was changed. In 1.1.1h, an expired trusted (root) certificate was not anymore rejected when validating a certificate path. This check is restored in 1.1.1i.; tags | tool, encryption, protocol; systems | unix; advisories | CVE-2020-1971; SHA-256 | e8be6a35fe41d10603c3cc635e93289ed00bf34b79671a3a4de64fcee00d5242; Download | Favorite | View

OpenSSL Toolkit 1.1.1h: Posted Sep 22, 2020; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.; Changes: Certificates with explicit curve parameters are now disallowed in verification chains if the X509_V_FLAG_X509_STRICT flag is used. A few other updates as well.; tags | tool, encryption, protocol; systems | unix; SHA-256 | 5c9ca8774bd7b03e5784f26ae9e9e6d749c9da2438545077e6b3d755a06595d9; Download | Favorite | View

OpenSSL Toolkit 1.1.1g: Posted Apr 21, 2020; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.; Changes: Fixed segmentation fault in SSL_check_chain().; tags | tool, encryption, protocol; systems | unix; advisories | CVE-2020-1967; SHA-256 | ddb04774f1e32f0c49751e21b67216ac87852ceb056b75209af2443400636d46; Download | Favorite | View

OpenSSL Toolkit 1.1.1f: Posted Mar 31, 2020; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.; Changes: Reverted the change of EOF detection while reading in libssl to avoid regressions in applications depending on the current way of reporting the EOF. Revised BN_generate_prime_ex to not avoid factors 3..17863 in p-1 when primes for RSA keys are computed.; tags | tool, encryption, protocol; systems | unix; SHA-256 | 186c6bfe6ecfba7a5b48c47f8a1673d0f3b0e5ba2e25602dd23b629975da3f35; Download | Favorite | View

OpenSSL Toolkit 1.1.1e: Posted Mar 18, 2020; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.; Changes: It now properly detects EOF while reading in libssl. Fixed SSL_get_servername() behaviour. Various other updates and bug fixes.; tags | tool, encryption, protocol; systems | unix; SHA-256 | 694f61ac11cb51c9bf73f54e771ff6022b0327a43bbdfa1b2f19de1662a6dcbe; Download | Favorite | View

OpenSSL Toolkit 1.1.1d: Posted Sep 11, 2019; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.; Changes: Fixed a fork protection issue. Added a bypass mitigation. Various other updates.; tags | tool, encryption, protocol; systems | unix; advisories | CVE-2019-1547, CVE-2019-1549, CVE-2019-1552, CVE-2019-1563; SHA-256 | 1e3a91bc1f9dfce01af26026f856e064eab4c8ee0a8f457b5ae30b40b8b711f2; Download | Favorite | View

SSLsplit 0.5.5: Posted Aug 30, 2019; Site roe.ch; SSLsplit is a tool for man-in-the-middle attacks against SSL/TLS encrypted network connections. Connections are transparently intercepted through a network address translation engine and redirected to SSLsplit. SSLsplit terminates SSL/TLS and initiates a new SSL/TLS connection to the original destination address, while logging all data transmitted. SSLsplit is intended to be useful for network forensics and penetration testing.; Changes: Added -A option for specifying a default leaf certificate instead of generating it on the fly. Increased the default RSA leaf key size to 2048 bits and force an OpenSSL security level of 0 in order to maximize interoperability in the default configuration. Various other bug fixes and updates.; tags | tool, encryption; SHA-256 | ba0473fd01428439e0cf22fae80fdd26d08a0bcf85e17c82177cb0810b700faf; Download | Favorite | View

OpenSSL Toolkit 1.1.1c: Posted May 28, 2019; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.; Changes: Added build tests for C++. Enabled SHA3 pre-hashing for ECDSA and DSA. Various other updates.; tags | tool, encryption, protocol; systems | unix; SHA-256 | f6fb3079ad15076154eda9413fed42877d668e7069d9b87396d0804fdb3f4c90; Download | Favorite | View

OpenSSL Toolkit 1.1.1b: Posted Feb 28, 2019; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.; Changes: Added SCA hardening for modular field inversion in EC_GROUP through a new dedicated field_inv() pointer in EC_METHOD. Changed the info callback signals for the start and end of a post-handshake message exchange in TLSv1.3. Various other updates.; tags | tool, encryption, protocol; systems | unix; SHA-256 | 5c557b023230413dfb0756f3137a13e6d726838ccd1430888ad15bfb2b43ea4b; Download | Favorite | View

OpenSSL Toolkit 1.1.1a: Posted Nov 21, 2018; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.; Changes: Fixed a timing vulnerability in DSA signature generation and another in ECDSA signature generation. Added EVP_PKEY_ECDH_KDF_X9_63 and ecdh_KDF_X9_63() as replacements for the EVP_PKEY_ECDH_KDF_X9_62 KDF type and ECDH_KDF_X9_62(). Various other updates.; tags | tool, encryption, protocol; systems | unix; advisories | CVE-2018-0734, CVE-2018-0735; SHA-256 | fc20130f8b7cbd2fb918b2f14e2f429e109c31ddd0fb38fc5d71d9ffed3f9f41; Download | Favorite | View

SSLsplit 0.5.4: Posted Oct 31, 2018; Site roe.ch; SSLsplit is a tool for man-in-the-middle attacks against SSL/TLS encrypted network connections. Connections are transparently intercepted through a network address translation engine and redirected to SSLsplit. SSLsplit terminates SSL/TLS and initiates a new SSL/TLS connection to the original destination address, while logging all data transmitted. SSLsplit is intended to be useful for network forensics and penetration testing.; Changes: This release includes work sponsored by HackerOne. Added PCAP content log modes and a packet mirroring content log mode. Added XNU headers for macOS High Sierra 10.13.1 to 10.13.6. Various other updates.; tags | tool, encryption; SHA-256 | 336c54c4578a2f2bd9d8bae153f31499156037515fa07d5fa7d5373f4c1378c2; Download | Favorite | View

OpenSSL Toolkit 1.1.1: Posted Sep 11, 2018; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.; Changes: Added a new ClientHello callback. Added SM2 base algorithm support. Various other updates.; tags | tool, encryption, protocol; systems | unix; SHA-256 | 2836875a0f89c03d0fdf483941512613a50cfb421d6fd94b9f41d7279d586a3d; Download | Favorite | View

OpenSSL Toolkit 1.1.0i: Posted Aug 17, 2018; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.; Changes: Addressed a client denial of service due to a large DH parameter addressed. Cache timing vulnerability fixed. Various other updates and fixes.; tags | tool, encryption, protocol; systems | unix; advisories | CVE-2018-0732, CVE-2018-0737; SHA-256 | ebbfc844a8c8cc0ea5dc10b86c9ce97f401837f3fa08c17b2cdadc118253cf99; Download | Favorite | View

SSLsplit 0.5.3: Posted Jul 21, 2018; Site roe.ch; SSLsplit is a tool for man-in-the-middle attacks against SSL/TLS encrypted network connections. Connections are transparently intercepted through a network address translation engine and redirected to SSLsplit. SSLsplit terminates SSL/TLS and initiates a new SSL/TLS connection to the original destination address, while logging all data transmitted. SSLsplit is intended to be useful for network forensics and penetration testing.; Changes: Added -a and -b for initial basic client certificate support. Signing using SHA-256 instead of SHA-1 when key type of server and key type of used CA certificate differ. Various other updates.; tags | tool, encryption; SHA-256 | 6c4cbc42cd7fb023fed75b82a436d8c1c4beaeb317a2ef41c00403684e0885dd; Download | Favorite | View

OpenSSL Toolkit 1.1.0h: Posted Mar 29, 2018; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.; Changes: Addressed an issue where constructed ASN.1 types with a recursive definition could exceed the stack. Also address was an incorrect CRYPTO_memcmp on HP-UX PA-RISC amongst other issues.; tags | tool, encryption, protocol; systems | unix; advisories | CVE-2018-0733, CVE-2018-0739; SHA-256 | 5835626cde9e99656585fc7aaa2302a73a7e1340bf8c14fd635a62c66802a517; Download | Favorite | View

OpenSSL Toolkit 1.0.2o: Posted Mar 29, 2018; Site openssl.org; OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.; Changes: Addressed an issue where constructed ASN.1 types with a recursive definition could exceed the stack.; tags | tool, encryption, protocol; systems | unix; advisories | CVE-2018-0739; SHA-256 | ec3f5c9714ba0fd45cb4e087301eb1336c317e0d20b575a125050470e8089e4d; Download | Favorite | View

Page 2 of 14 Back 1 2 3 4 5 Next

Top Authors In Last 30 Days

Red Hat 240 files
indoushka 173 files
Jay Turla 150 files
Ubuntu 78 files
h00die 54 files
juan vazquez 43 files
sinn3r 41 files
H D Moore 31 files
Karn Ganeshen 23 files
Pedro Ribeiro 22 files

Files

Top Authors In Last 30 Days

Recent News