rpms / rhnlib

Clone
Source Code
GIT

Blame SOURCES/rhnlib-2.5.65-7-el7-to-rhnlib-2.5.65-8-el7.patch

c4 c5 c5-plus c6 c6-plus c7 c7-alt c7-beta c8-beta-stream-1.0 c8-stream-1.0
  1.   c7-alt
  2.   SOURCES
  3.   rhnlib-2.5.65-7-el7-to-rhnlib-2.5.65-8-el7.patch
Blob History Raw
f4b68f 
diff --git a/rhn/SSL.py b/rhn/SSL.py
f4b68f 
index c3d338868f..5ffadf5858 100644
f4b68f 
--- a/rhn/SSL.py
f4b68f 
+++ b/rhn/SSL.py
f4b68f 
@@ -85,6 +85,8 @@ class SSLSocket:
f4b68f 
         self._check_closed()
f4b68f 
         # Get a context
f4b68f 
         self._ctx = SSL.Context(self._ssl_method)
f4b68f 
+        self._ctx.set_options(SSL.OP_NO_SSLv2)
f4b68f 
+        self._ctx.set_options(SSL.OP_NO_SSLv3)
f4b68f 
         if self._trusted_certs:
f4b68f 
             # We have been supplied with trusted CA certs
f4b68f 
             for f in self._trusted_certs:
f4b68f 
diff --git a/rhnlib.spec b/rhnlib.spec
f4b68f 
index 64d5224123..281156930a 100644
f4b68f 
--- a/rhnlib.spec
f4b68f 
+++ b/rhnlib.spec
f4b68f 
@@ -5,7 +5,7 @@ Name: rhnlib
f4b68f 
 URL:     https://github.com/spacewalkproject/spacewalk
f4b68f 
 Source0: https://github.com/spacewalkproject/spacewalk/archive/%{name}-%{version}.tar.gz
f4b68f 
 Version: 2.5.65
f4b68f 
-Release: 7%{?dist}
f4b68f 
+Release: 8%{?dist}
f4b68f
f4b68f 
 Group: Development/Libraries
f4b68f 
 License: GPLv2
f4b68f 
@@ -59,6 +59,10 @@ rm -rf $RPM_BUILD_ROOT
f4b68f 
 %{python_sitelib}/*
f4b68f
f4b68f 
 %changelog
f4b68f 
+* Fri Jul 27 2018 Tomas Kasparek <tkasparek@redhat.com> 2.5.65-8
f4b68f 
+- Resolves: #1608425 - forbid old SSL versions during negotiation
f4b68f 
+  (tkasparek@redhat.com)
f4b68f 
+
f4b68f 
 * Thu Oct 19 2017 Tomas Kasparek <tkasparek@redhat.com> 2.5.65-7
f4b68f 
 - Resolves: #1503953 - upstream project has migrated to github
f4b68f 
   (tkasparek@redhat.com)

Powered by Pagure 5.14.1

SSH Hostkey/Fingerprint | Documentation