#acl PaulHowarth:read,write,admin,revert,delete All:read

=== Saturday 15th February 2020 ===

==== Fedora Project ====

 * Updated `perl-IO-Socket-SSL` to 2.067 in F-32 and Rawhide:
  * Fix memory leak on incomplete handshake ([[https://github.com/noxxi/p5-io-socket-ssl/issues/92|GH#92]])
  * Add support for `SSL_MODE_RELEASE_BUFFERS` via `SSL_mode_release_buffers`; this can decrease memory usage at the costs of more allocations ([[CPAN:129463|CPAN RT#129463]])
  * More detailed error messages when loading of certificate file failed ([[https://github.com/noxxi/p5-io-socket-ssl/issues/89|GH#89]])
  * Fix for i`p_in_cn == 6` in `verify_hostname` scheme ([[CPAN:131384|CPAN RT#131384]])
  * Deal with new `MODE_AUTO_RETRY` default in OpenSSL 1.1.1
  * Fix warning when no ecdh support is available
  * Documentation update regarding use of `select` and TLS 1.3
  * Various fixes in documentation ([[https://github.com/noxxi/p5-io-socket-ssl/pull/81|GH#81]], [[https://github.com/noxxi/p5-io-socket-ssl/pull/87|GH#87]], [[https://github.com/noxxi/p5-io-socket-ssl/pull/90|GH#90]], [[https://github.com/noxxi/p5-io-socket-ssl/pull/91|GH#91]])
  * Stability fix for `t/core.t`

==== Local Packages ====

 * Branched F-32 repository from the development branch
 * Updated `libxml2` (2.9.10) to fix memory leak in `xmlSchemaValidateStream` ([[CVE:2019-20388|CVE-2019-20388]]) and to fix infinite loop in `xmlStringLenDecodeEntities` ([[CVE:2020-7595|CVE-2020-7595]])
 * Updated `perl-IO-Socket-SSL` to 2.067 as per the Fedora version

----