rpms / rhnlib

Clone
Source Code
GIT

Blame SOURCES/rhnlib-2.5.65-7-el7-to-rhnlib-2.5.65-8-el7.patch

c4 c5 c5-plus c6 c6-plus c7 c7-alt c7-beta c8-beta-stream-1.0 c8-stream-1.0
  1.   c7-beta
  2.   SOURCES
  3.   rhnlib-2.5.65-7-el7-to-rhnlib-2.5.65-8-el7.patch
Blob History Raw
48e10a 
diff --git a/rhn/SSL.py b/rhn/SSL.py
48e10a 
index c3d338868f..5ffadf5858 100644
48e10a 
--- a/rhn/SSL.py
48e10a 
+++ b/rhn/SSL.py
48e10a 
@@ -85,6 +85,8 @@ class SSLSocket:
48e10a 
         self._check_closed()
48e10a 
         # Get a context
48e10a 
         self._ctx = SSL.Context(self._ssl_method)
48e10a 
+        self._ctx.set_options(SSL.OP_NO_SSLv2)
48e10a 
+        self._ctx.set_options(SSL.OP_NO_SSLv3)
48e10a 
         if self._trusted_certs:
48e10a 
             # We have been supplied with trusted CA certs
48e10a 
             for f in self._trusted_certs:
48e10a 
diff --git a/rhnlib.spec b/rhnlib.spec
48e10a 
index 64d5224123..281156930a 100644
48e10a 
--- a/rhnlib.spec
48e10a 
+++ b/rhnlib.spec
48e10a 
@@ -5,7 +5,7 @@ Name: rhnlib
48e10a 
 URL:     https://github.com/spacewalkproject/spacewalk
48e10a 
 Source0: https://github.com/spacewalkproject/spacewalk/archive/%{name}-%{version}.tar.gz
48e10a 
 Version: 2.5.65
48e10a 
-Release: 7%{?dist}
48e10a 
+Release: 8%{?dist}
48e10a
48e10a 
 Group: Development/Libraries
48e10a 
 License: GPLv2
48e10a 
@@ -59,6 +59,10 @@ rm -rf $RPM_BUILD_ROOT
48e10a 
 %{python_sitelib}/*
48e10a
48e10a 
 %changelog
48e10a 
+* Fri Jul 27 2018 Tomas Kasparek <tkasparek@redhat.com> 2.5.65-8
48e10a 
+- Resolves: #1608425 - forbid old SSL versions during negotiation
48e10a 
+  (tkasparek@redhat.com)
48e10a 
+
48e10a 
 * Thu Oct 19 2017 Tomas Kasparek <tkasparek@redhat.com> 2.5.65-7
48e10a 
 - Resolves: #1503953 - upstream project has migrated to github
48e10a 
   (tkasparek@redhat.com)

Powered by Pagure 5.14.1

SSH Hostkey/Fingerprint | Documentation