[PR #1404] [MERGED] chore(deps): bump openssl from 0.10.71 to 0.10.72 #1386

New Issue

Closed

opened 2026-01-05 14:55:06 +01:00 by adam · 0 comments

adam commented 2026-01-05 14:55:06 +01:00

Owner

Copy Link

📋 Pull Request Information

Original PR: https://github.com/LGUG2Z/komorebi/pull/1404
Author: @dependabot[bot]
Created: 4/4/2025
Status: ✅ Merged
Merged: 4/5/2025
Merged by: @LGUG2Z

Base: master ← Head: dependabot/cargo/openssl-0.10.72

---

📝 Commits (1)

• 3732061 chore(deps): bump openssl from 0.10.71 to 0.10.72

📊 Changes

1 file changed (+4 additions, -4 deletions)

View changed files

📝 Cargo.lock (+4 -4)

📄 Description

Bumps openssl from 0.10.71 to 0.10.72.

Release notes

Sourced from openssl's releases.

openssl-v0.10.72

What's Changed

• make set_rsa_oaep_md visible to boringssl config by @​frncs-rss in sfackler/rust-openssl#2372
• Fix typo in openssl-sys build script by @​rushilmehra in sfackler/rust-openssl#2375
• Unify the two BoringSSL codepaths a bit and simplify init by @​davidben in sfackler/rust-openssl#2377
• pkey_ctx: Fix link to the corresponding OpenSSL function by @​Jakuje in sfackler/rust-openssl#2378
• fix test on MSRV by @​alex in sfackler/rust-openssl#2383
• Add support for AWS-LC to openssl and openssl-sys crates by @​skmcgrail in sfackler/rust-openssl#1805
• Enable additional capabilities for AWS-LC by @​skmcgrail in sfackler/rust-openssl#2386
• Use --experimental with bindgen-cli with aws-lc build by @​skmcgrail in sfackler/rust-openssl#2389
• Fixed two UAFs and bumped versions for release by @​alex in sfackler/rust-openssl#2390

New Contributors

• @​Jakuje made their first contribution in sfackler/rust-openssl#2378
• @​skmcgrail made their first contribution in sfackler/rust-openssl#1805

Full Changelog: https://github.com/sfackler/rust-openssl/compare/openssl-v0.10.71...openssl-v0.10.72

Commits

• 87085bd Merge pull request #2390 from alex/uaf-fix
• d1a12e2 Fixed two UAFs and bumped versions for release
• 7c7b2e6 Merge pull request #2389 from skmcgrail/aws-lc-follow-up
• 34a477b Use --experimental with bindgen-cli with aws-lc build
• d4bf071 Merge pull request #2386 from skmcgrail/aws-lc-follow-up
• a86bf67 Remove comment
• 705dbfb Fix test
• e0df413 Skip final call for LibreSSL 4.1.0 for CCM mode
• 2f1164b Enable additional capabilities for AWS-LC
• dde9ffb Merge pull request #1805 from skmcgrail/aws-lc-support-final
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  You can disable automated security fix PRs for this repo from the Security Alerts page.

---

_{🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.}

## 📋 Pull Request Information **Original PR:** https://github.com/LGUG2Z/komorebi/pull/1404 **Author:** [@dependabot[bot]](https://github.com/apps/dependabot) **Created:** 4/4/2025 **Status:** ✅ Merged **Merged:** 4/5/2025 **Merged by:** [@LGUG2Z](https://github.com/LGUG2Z) **Base:** `master` ← **Head:** `dependabot/cargo/openssl-0.10.72` --- ### 📝 Commits (1) - [`3732061`](https://github.com/LGUG2Z/komorebi/commit/373206140f051ffa29b9bf2d97ea964b677b22f5) chore(deps): bump openssl from 0.10.71 to 0.10.72 ### 📊 Changes **1 file changed** (+4 additions, -4 deletions) <details> <summary>View changed files</summary> 📝 `Cargo.lock` (+4 -4) </details> ### 📄 Description Bumps [openssl](https://github.com/sfackler/rust-openssl) from 0.10.71 to 0.10.72. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/sfackler/rust-openssl/releases">openssl's releases</a>.</em></p> <blockquote> <h2>openssl-v0.10.72</h2> <h2>What's Changed</h2> <ul> <li>make set_rsa_oaep_md visible to boringssl config by <a href="https://github.com/frncs-rss"><code>@​frncs-rss</code></a> in <a href="https://redirect.github.com/sfackler/rust-openssl/pull/2372">sfackler/rust-openssl#2372</a></li> <li>Fix typo in openssl-sys build script by <a href="https://github.com/rushilmehra"><code>@​rushilmehra</code></a> in <a href="https://redirect.github.com/sfackler/rust-openssl/pull/2375">sfackler/rust-openssl#2375</a></li> <li>Unify the two BoringSSL codepaths a bit and simplify init by <a href="https://github.com/davidben"><code>@​davidben</code></a> in <a href="https://redirect.github.com/sfackler/rust-openssl/pull/2377">sfackler/rust-openssl#2377</a></li> <li>pkey_ctx: Fix link to the corresponding OpenSSL function by <a href="https://github.com/Jakuje"><code>@​Jakuje</code></a> in <a href="https://redirect.github.com/sfackler/rust-openssl/pull/2378">sfackler/rust-openssl#2378</a></li> <li>fix test on MSRV by <a href="https://github.com/alex"><code>@​alex</code></a> in <a href="https://redirect.github.com/sfackler/rust-openssl/pull/2383">sfackler/rust-openssl#2383</a></li> <li>Add support for AWS-LC to openssl and openssl-sys crates by <a href="https://github.com/skmcgrail"><code>@​skmcgrail</code></a> in <a href="https://redirect.github.com/sfackler/rust-openssl/pull/1805">sfackler/rust-openssl#1805</a></li> <li>Enable additional capabilities for AWS-LC by <a href="https://github.com/skmcgrail"><code>@​skmcgrail</code></a> in <a href="https://redirect.github.com/sfackler/rust-openssl/pull/2386">sfackler/rust-openssl#2386</a></li> <li>Use --experimental with bindgen-cli with aws-lc build by <a href="https://github.com/skmcgrail"><code>@​skmcgrail</code></a> in <a href="https://redirect.github.com/sfackler/rust-openssl/pull/2389">sfackler/rust-openssl#2389</a></li> <li>Fixed two UAFs and bumped versions for release by <a href="https://github.com/alex"><code>@​alex</code></a> in <a href="https://redirect.github.com/sfackler/rust-openssl/pull/2390">sfackler/rust-openssl#2390</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/Jakuje"><code>@​Jakuje</code></a> made their first contribution in <a href="https://redirect.github.com/sfackler/rust-openssl/pull/2378">sfackler/rust-openssl#2378</a></li> <li><a href="https://github.com/skmcgrail"><code>@​skmcgrail</code></a> made their first contribution in <a href="https://redirect.github.com/sfackler/rust-openssl/pull/1805">sfackler/rust-openssl#1805</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/sfackler/rust-openssl/compare/openssl-v0.10.71...openssl-v0.10.72">https://github.com/sfackler/rust-openssl/compare/openssl-v0.10.71...openssl-v0.10.72</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/sfackler/rust-openssl/commit/87085bd67896b7f92e6de35d081f607a334beae4"><code>87085bd</code></a> Merge pull request <a href="https://redirect.github.com/sfackler/rust-openssl/issues/2390">#2390</a> from alex/uaf-fix</li> <li><a href="https://github.com/sfackler/rust-openssl/commit/d1a12e21573e95727b2e38b8b65273cb389be7e4"><code>d1a12e2</code></a> Fixed two UAFs and bumped versions for release</li> <li><a href="https://github.com/sfackler/rust-openssl/commit/7c7b2e6c9f95e77e56ab37af70b16de75beff387"><code>7c7b2e6</code></a> Merge pull request <a href="https://redirect.github.com/sfackler/rust-openssl/issues/2389">#2389</a> from skmcgrail/aws-lc-follow-up</li> <li><a href="https://github.com/sfackler/rust-openssl/commit/34a477bff20cbe43492915338d3c12597430c345"><code>34a477b</code></a> Use --experimental with bindgen-cli with aws-lc build</li> <li><a href="https://github.com/sfackler/rust-openssl/commit/d4bf0710640e4725b8b237968040aef3e5f4ab9a"><code>d4bf071</code></a> Merge pull request <a href="https://redirect.github.com/sfackler/rust-openssl/issues/2386">#2386</a> from skmcgrail/aws-lc-follow-up</li> <li><a href="https://github.com/sfackler/rust-openssl/commit/a86bf670c4cba3ee5531838b52419356791d966e"><code>a86bf67</code></a> Remove comment</li> <li><a href="https://github.com/sfackler/rust-openssl/commit/705dbfb2ee3f2d7151ff313d840bf558435d4379"><code>705dbfb</code></a> Fix test</li> <li><a href="https://github.com/sfackler/rust-openssl/commit/e0df413d46a89303c42e15bf7d4566193b242466"><code>e0df413</code></a> Skip final call for LibreSSL 4.1.0 for CCM mode</li> <li><a href="https://github.com/sfackler/rust-openssl/commit/2f1164b5e838d3665dd10a9fac19e22174289ea3"><code>2f1164b</code></a> Enable additional capabilities for AWS-LC</li> <li><a href="https://github.com/sfackler/rust-openssl/commit/dde9ffb36071249ff98474eec853fd830aea44f5"><code>dde9ffb</code></a> Merge pull request <a href="https://redirect.github.com/sfackler/rust-openssl/issues/1805">#1805</a> from skmcgrail/aws-lc-support-final</li> <li>Additional commits viewable in <a href="https://github.com/sfackler/rust-openssl/compare/openssl-v0.10.71...openssl-v0.10.72">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/LGUG2Z/komorebi/network/alerts). </details> --- _{🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.}

adam added the pull-request label 2026-01-05 14:55:06 +01:00

adam closed this issue 2026-01-05 14:55:06 +01:00

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

master

gh-pages

dependabot/cargo/reqwest-0.13.1

dependabot/github_actions/actions/upload-artifact-6

dependabot/github_actions/actions/download-artifact-7

feature/stack-force-disable-transparency

feature/multi-monitor-scrolling

feature/scrolling-without-fallback

feature/nirily

feature/floating-over-monocle

feature/break-monocle-on-ws-move

feature/komorebi-shortcuts

feature/drop-empty-containers

feature/custom-themes

feature/spawn-loc

more-dep-inj-wip

feature/icon-fallbacks

feature/locked-containers

feature/testable-monitor-reconciliator

feature/more-monitor-vibes

feature/monitors-and-vibes

feature/fix-test

feature/devperf

feature/reaper-redux

feature/rust-2024

feature/egui-0.31

feature/workspace-layers

feature/windows-rs-0-62

feature/windows-rs-0-59

feature/monitor-serial-number-ids

update-deps

feature/icul

feat(wm)/reset-initial-workspace-rules

feature/floating-permaborders

feature/tacky2

feature/mff-cursor-top-left

feature/tacky-borders

feature/monitor-idx-in-direction-redux

feature/aarch64

feature/reduce-notifications

feature/bar-native-positioning

feature/floating-applications

prep/v0.1.29

feature/komorebi-status-bar

feature/display-index-extension

feature/azin

feature/animated-move

ignore-old-events

fix/ahk-arg-list

monitor-prealloc

docs/v0.1.26-fixes

feature/komorebi-gui

feature/monocle-changes

feature/stackbar-manager

feature/undraw-unfocused-on-stackbar-move

feature/monitor-madness

feature/cmd-thread

feature/alt-tab-knowledge

feature/close-vs-destroy

feature/workspace-reconciliator

feature/border-manager

feature/komoborders

feature/focus-on-raise

feature/egui

feature/polyform

feature/windows-rs-0-56

feature/fix-cross-monitor-regression

feature/border-style-config

feature/stackbar

feature/composite-rules

feature/notopmost

docs/v0.1.22

raggi/dont-move-due-to-unrelated-window

feature/komorebi-client

master-after-678-with-config-changes

master-after-678

fix/skip-ser-if-none-only

docs/v0.1.21

feature/mkdocs

hotfix/logfile

animate-window-move

feature/foreground-lock-timeout

feature/static-config

fix/monitor-idx-in-direction-with-height-checks

feature/manage-override-float-rules

fix/multiple-tcp-connections

fix/unreal-engine

feature/dpi-awareness

feature/komokana

feature/bar

feature/unfailing-window-serialization

feature/remove-titlebars

feature/expand-windows-api

v0.1.39

nightly

v0.1.38

v0.1.37

v0.1.36

v0.1.35

v0.1.34

v0.1.33

v0.1.32

v0.1.31

v0.1.30

v0.1.29

v0.1.28

v0.1.27

v0.1.26

v0.1.25

v0.1.24

v0.1.23

v0.1.22

v0.1.21

v0.1.20

v0.1.19

v0.1.18

v0.1.17

v0.1.16

v0.1.15

v0.1.14

v0.1.13

v0.1.12

v0.1.11

v0.1.10

v0.1.9

v0.1.8

v0.1.7

v0.1.6

v0.1.5

v0.1.4

v0.1.3

v0.1.2

v0.1.1

v0.1.0

Labels

Clear labels

0.1.36

apps-behaving-badly

bug

bug

cannot-reproduce

documentation

enhancement

github_actions

i-am-stuck

i-will-definitely-work-on-this

i-will-not-work-on-this

i-will-probably-work-on-this

komorebi

komorebi-bar

komorebic

performance

pull-request

Mirrored from GitHub Pull Request

translation

No Label pull-request

Milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

adam

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: starred/komorebi#1386