openssl: Import OpenSSL 3.0.16This release incorporates the following bug fixes and mitigations:- [CVE-2024-13176](https://www.openssl.org/news/vulnerabilities.html#CVE-2024-13176- [CVE-2024-9143
openssl: Import OpenSSL 3.0.16This release incorporates the following bug fixes and mitigations:- [CVE-2024-13176](https://www.openssl.org/news/vulnerabilities.html#CVE-2024-13176- [CVE-2024-9143](https://www.openssl.org/news/vulnerabilities.html#CVE-2024-9143)Release notes can be found at:https://openssl-library.org/news/openssl-3.0-notes/index.htmlApproved by: soSecurity: FreeBSD-EN-25:07.opensslDifferential Revision: https://reviews.freebsd.org/D49296Differential Revision: https://reviews.freebsd.org/D49297(cherry picked from commit 0d0c8621fd181e507f0fb50ffcca606faf66a8c2)(cherry picked from commit cb29db243bd09d16604435639ae43ef7af0ea254)(cherry picked from commit d2a55e6a9348bb55038dbc6b727ab041085f22db)(cherry picked from commit 0d61082e3c64a43f52ec5f1bf3d85671d97d9514)
show more ...
OpenSSL: Vendor import of OpenSSL 3.0.13 * Fixed PKCS12 Decoding crashes ([CVE-2024-0727]) * Fixed Excessive time spent checking invalid RSA public keys ([CVE-2023-6237]) * Fixed POLY1305 MAC
OpenSSL: Vendor import of OpenSSL 3.0.13 * Fixed PKCS12 Decoding crashes ([CVE-2024-0727]) * Fixed Excessive time spent checking invalid RSA public keys ([CVE-2023-6237]) * Fixed POLY1305 MAC implementation corrupting vector registers on PowerPC CPUs which support PowerISA 2.07 ([CVE-2023-6129]) * Fix excessive time spent in DH check / generation with large Q parameter value ([CVE-2023-5678])Release notes can be found at https://www.openssl.org/news/openssl-3.0-notes.html.Approved by: emasteMerge commit '9dd13e84fa8eca8f3462bd55485aa3da8c37f54a'(cherry picked from commit e0c4386e7e71d93b0edc0c8fa156263fc4a8b0b6)