{"affected":[{"ecosystem_specific":{"binaries":[{"stunnel":"5.57-3.5.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Server Applications 15 SP2","name":"stunnel","purl":"pkg:rpm/suse/stunnel&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Server%20Applications%2015%20SP2"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"5.57-3.5.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for stunnel fixes the following issues:\n\nSecurity issue fixed:\n\n- The 'redirect' option was fixed to properly handle 'verifyChain = yes' (bsc#1177580).\n\nNon-security issues fixed:\n\n- Fix startup problem of the stunnel daemon (bsc#1178533)\n\n- update to 5.57:\n  * Security bugfixes\n  * New features\n    - New securityLevel configuration file option.\n    - Support for modern PostgreSQL clients\n    - TLS 1.3 configuration updated for better compatibility.\n  * Bugfixes\n    - Fixed a transfer() loop bug.\n    - Fixed memory leaks on configuration reloading errors.\n    - DH/ECDH initialization restored for client sections.\n    - Delay startup with systemd until network is online.\n    - A number of testing framework fixes and improvements.\n\n- update to 5.56:\n  - Various text files converted to Markdown format.\n  - Support for realpath(3) implementations incompatible\n    with POSIX.1-2008, such as 4.4BSD or Solaris.\n  - Support for engines without PRNG seeding methods (thx to\n    Petr Mikhalitsyn).\n  - Retry unsuccessful port binding on configuration\n    file reload.\n  - Thread safety fixes in SSL_SESSION object handling.\n  - Terminate clients on exit in the FORK threading model.\n\n- Fixup stunnel.conf handling:\n  * Remove old static openSUSE provided stunnel.conf.\n  * Use upstream stunnel.conf and tailor it for openSUSE using sed.\n  * Don't show README.openSUSE when installing.\n\n- enable /etc/stunnel/conf.d\n- re-enable openssl.cnf\n","id":"SUSE-SU-2021:0194-1","modified":"2021-01-22T12:31:09Z","published":"2021-01-22T12:31:09Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2021/suse-su-20210194-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1177580"},{"type":"REPORT","url":"https://bugzilla.suse.com/1178533"}],"related":[],"summary":"Security update for stunnel","upstream":[]}