rpms / rhnlib

Clone
Source Code
GIT

Blame SOURCES/rhnlib-2.8.6-4-el8-to-rhnlib-2.8.6-5-el8.patch

c4 c5 c5-plus c6 c6-plus c7 c7-alt c7-beta c8-beta-stream-1.0 c8-stream-1.0
  1.   c8-beta-stream-1.0
  2.   SOURCES
  3.   rhnlib-2.8.6-4-el8-to-rhnlib-2.8.6-5-el8.patch
Blob History Raw
6489f9 
diff --git a/rhn/SSL.py b/rhn/SSL.py
6489f9 
index f8a85bc..9b3c83b 100644
6489f9 
--- a/rhn/SSL.py
6489f9 
+++ b/rhn/SSL.py
6489f9 
@@ -89,6 +89,8 @@ class SSLSocket:
6489f9 
         self._check_closed()
6489f9 
         # Get a context
6489f9 
         self._ctx = SSL.Context(self._ssl_method)
6489f9 
+        self._ctx.set_options(SSL.OP_NO_SSLv2)
6489f9 
+        self._ctx.set_options(SSL.OP_NO_SSLv3)
6489f9 
         if self._trusted_certs:
6489f9 
             # We have been supplied with trusted CA certs
6489f9 
             for f in self._trusted_certs:
6489f9 
diff --git a/rhnlib.spec b/rhnlib.spec
6489f9 
index 1581072..1d197e9 100644
6489f9 
--- a/rhnlib.spec
6489f9 
+++ b/rhnlib.spec
6489f9 
@@ -7,7 +7,7 @@
6489f9 
 Summary: Python libraries for the Spacewalk project
6489f9 
 Name: rhnlib
6489f9 
 Version: 2.8.6
6489f9 
-Release: 4%{?dist}
6489f9 
+Release: 5%{?dist}
6489f9 
 URL:     https://github.com/spacewalkproject/spacewalk
6489f9 
 Source0: https://github.com/spacewalkproject/spacewalk/archive/%{name}-%{version}.tar.gz
6489f9
6489f9 
@@ -74,6 +74,10 @@ make -f Makefile.rhnlib
6489f9 
 %endif
6489f9
6489f9 
 %changelog
6489f9 
+* Fri Nov 02 2018 Tomas Kasparek <tkasparek@redhat.com> 2.8.6-5
6489f9 
+- Resolves: #1643415 - forbid old SSL versions during negotiation
6489f9 
+  (tkasparek@redhat.com)
6489f9 
+
6489f9 
 * Tue Apr 17 2018 Tomas Kasparek <tkasparek@redhat.com> 2.8.6-4
6489f9 
 - don't package python2 files for rhnlib (tkasparek@redhat.com)
6489f9 
 - be compliant with new packaging guidelines when requiring python2 packages

Powered by Pagure 5.14.1

SSH Hostkey/Fingerprint | Documentation