Script 'mail_helper' called by obssrc
Hello community,
here is the log from the commit of package libressl for openSUSE:Factory
checked in at 2021-08-26 23:15:17
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/libressl (Old)
and /work/SRC/openSUSE:Factory/.libressl.new.1899 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "libressl"
Thu Aug 26 23:15:17 2021 rev:58 rq:914401 version:3.3.4
Changes:
--------
--- /work/SRC/openSUSE:Factory/libressl/libressl.changes 2021-05-05
20:40:13.838857110 +0200
+++ /work/SRC/openSUSE:Factory/.libressl.new.1899/libressl.changes
2021-08-26 23:16:35.988184113 +0200
@@ -1,0 +2,7 @@
+Thu Aug 26 10:25:07 UTC 2021 - Jan Engelhardt <jeng...@inai.de>
+
+- Update to release 3.3.4
+ * In LibreSSL, printing a certificate could result in a crash in
+ X509_CERT_AUX_print(). This was fixed.
+
+-------------------------------------------------------------------
Old:
----
libressl-3.3.3.tar.gz
libressl-3.3.3.tar.gz.asc
New:
----
libressl-3.3.4.tar.gz
libressl-3.3.4.tar.gz.asc
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ libressl.spec ++++++
--- /var/tmp/diff_new_pack.2wK6Tp/_old 2021-08-26 23:16:36.480183697 +0200
+++ /var/tmp/diff_new_pack.2wK6Tp/_new 2021-08-26 23:16:36.484183694 +0200
@@ -17,7 +17,7 @@
Name: libressl
-Version: 3.3.3
+Version: 3.3.4
Release: 0
Summary: An SSL/TLS protocol implementation
License: OpenSSL
++++++ libressl-3.3.3.tar.gz -> libressl-3.3.4.tar.gz ++++++
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/libressl-3.3.3/CMakeLists.txt
new/libressl-3.3.4/CMakeLists.txt
--- old/libressl-3.3.3/CMakeLists.txt 2021-05-01 16:18:39.000000000 +0200
+++ new/libressl-3.3.4/CMakeLists.txt 2021-08-23 16:48:48.000000000 +0200
@@ -298,6 +298,7 @@
elseif(CMAKE_SYSTEM_NAME STREQUAL "SunOS" AND
"${CMAKE_SYSTEM_PROCESSOR}" STREQUAL "i386")
set(HOST_ASM_ELF_X86_64 true)
endif()
+ add_definitions(-DHAVE_GNU_STACK)
elseif(APPLE AND "${CMAKE_SYSTEM_PROCESSOR}" STREQUAL "x86_64")
set(HOST_ASM_MACOSX_X86_64 true)
elseif(MSVC AND ("${CMAKE_GENERATOR}" MATCHES "Win64" OR
"${CMAKE_GENERATOR_PLATFORM}" STREQUAL "x64"))
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/libressl-3.3.3/ChangeLog new/libressl-3.3.4/ChangeLog
--- old/libressl-3.3.3/ChangeLog 2021-05-02 03:15:19.000000000 +0200
+++ new/libressl-3.3.4/ChangeLog 2021-08-23 16:48:48.000000000 +0200
@@ -28,6 +28,16 @@
LibreSSL Portable Release Notes:
+3.3.4 - Security fix
+
+ * In LibreSSL, printing a certificate can result in a crash in
+ X509_CERT_AUX_print().
+ From Ingo Schwarze
+
+ * Ensure GNU-stack is set on ELF platforms when building with CMake to
+ enable non-executable stack annotations for the GNU toolchain.
+ From Tobias Heider
+
3.3.3 - Stable release
* This is the first stable release from the 3.3.x series.
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/libressl-3.3.3/VERSION new/libressl-3.3.4/VERSION
--- old/libressl-3.3.3/VERSION 2021-05-02 03:15:49.000000000 +0200
+++ new/libressl-3.3.4/VERSION 2021-08-23 16:48:55.000000000 +0200
@@ -1,2 +1,2 @@
-3.3.3
+3.3.4
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/libressl-3.3.3/configure new/libressl-3.3.4/configure
--- old/libressl-3.3.3/configure 2021-05-02 03:16:37.000000000 +0200
+++ new/libressl-3.3.4/configure 2021-08-23 16:49:43.000000000 +0200
@@ -1,6 +1,6 @@
#! /bin/sh
# Guess values for system-dependent variables and create Makefiles.
-# Generated by GNU Autoconf 2.69 for libressl 3.3.3.
+# Generated by GNU Autoconf 2.69 for libressl 3.3.4.
#
#
# Copyright (C) 1992-1996, 1998-2012 Free Software Foundation, Inc.
@@ -587,8 +587,8 @@
# Identity of this package.
PACKAGE_NAME='libressl'
PACKAGE_TARNAME='libressl'
-PACKAGE_VERSION='3.3.3'
-PACKAGE_STRING='libressl 3.3.3'
+PACKAGE_VERSION='3.3.4'
+PACKAGE_STRING='libressl 3.3.4'
PACKAGE_BUGREPORT=''
PACKAGE_URL=''
@@ -1452,7 +1452,7 @@
# Omit some internal or obsolete options to make the list less imposing.
# This message is too long to be a string in the A/UX 3.1 sh.
cat <<_ACEOF
-\`configure' configures libressl 3.3.3 to adapt to many kinds of systems.
+\`configure' configures libressl 3.3.4 to adapt to many kinds of systems.
Usage: $0 [OPTION]... [VAR=VALUE]...
@@ -1523,7 +1523,7 @@
if test -n "$ac_init_help"; then
case $ac_init_help in
- short | recursive ) echo "Configuration of libressl 3.3.3:";;
+ short | recursive ) echo "Configuration of libressl 3.3.4:";;
esac
cat <<\_ACEOF
@@ -1641,7 +1641,7 @@
test -n "$ac_init_help" && exit $ac_status
if $ac_init_version; then
cat <<\_ACEOF
-libressl configure 3.3.3
+libressl configure 3.3.4
generated by GNU Autoconf 2.69
Copyright (C) 2012 Free Software Foundation, Inc.
@@ -2189,7 +2189,7 @@
This file contains any messages produced by compilers while
running configure, to aid debugging if configure makes a mistake.
-It was created by libressl $as_me 3.3.3, which was
+It was created by libressl $as_me 3.3.4, which was
generated by GNU Autoconf 2.69. Invocation command line was
$ $0 $@
@@ -3125,7 +3125,7 @@
# Define the identity of the package.
PACKAGE='libressl'
- VERSION='3.3.3'
+ VERSION='3.3.4'
cat >>confdefs.h <<_ACEOF
@@ -14945,7 +14945,7 @@
# report actual input values of CONFIG_FILES etc. instead of their
# values after options handling.
ac_log="
-This file was extended by libressl $as_me 3.3.3, which was
+This file was extended by libressl $as_me 3.3.4, which was
generated by GNU Autoconf 2.69. Invocation command line was
CONFIG_FILES = $CONFIG_FILES
@@ -15002,7 +15002,7 @@
cat >>$CONFIG_STATUS <<_ACEOF || ac_write_fail=1
ac_cs_config="`$as_echo "$ac_configure_args" | sed 's/^ //;
s/[\\""\`\$]/\\\\&/g'`"
ac_cs_version="\\
-libressl config.status 3.3.3
+libressl config.status 3.3.4
configured by $0, generated by GNU Autoconf 2.69,
with options \\"\$ac_cs_config\\"
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/libressl-3.3.3/crypto/asn1/t_x509a.c
new/libressl-3.3.4/crypto/asn1/t_x509a.c
--- old/libressl-3.3.3/crypto/asn1/t_x509a.c 2017-11-14 17:25:15.000000000
+0100
+++ new/libressl-3.3.4/crypto/asn1/t_x509a.c 2021-08-23 16:48:53.000000000
+0200
@@ -1,4 +1,4 @@
-/* $OpenBSD: t_x509a.c,v 1.8 2014/07/11 08:44:47 jsing Exp $ */
+/* $OpenBSD: t_x509a.c,v 1.8.16.1 2021/08/20 19:54:59 benno Exp $ */
/* Written by Dr Stephen N Henson (st...@openssl.org) for the OpenSSL
* project 1999.
*/
@@ -105,8 +105,8 @@
} else
BIO_printf(out, "%*sNo Rejected Uses.\n", indent, "");
if (aux->alias)
- BIO_printf(out, "%*sAlias: %s\n", indent, "",
- aux->alias->data);
+ BIO_printf(out, "%*sAlias: %.*s\n", indent, "",
+ aux->alias->length, aux->alias->data);
if (aux->keyid) {
BIO_printf(out, "%*sKey Id: ", indent, "");
for (i = 0; i < aux->keyid->length; i++)
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/libressl-3.3.3/include/openssl/opensslv.h
new/libressl-3.3.4/include/openssl/opensslv.h
--- old/libressl-3.3.3/include/openssl/opensslv.h 2021-05-02
03:15:19.000000000 +0200
+++ new/libressl-3.3.4/include/openssl/opensslv.h 2021-08-23
16:48:48.000000000 +0200
@@ -3,9 +3,9 @@
#define HEADER_OPENSSLV_H
/* These will change with each release of LibreSSL-portable */
-#define LIBRESSL_VERSION_NUMBER 0x3030300fL
+#define LIBRESSL_VERSION_NUMBER 0x3030400fL
/* ^ Patch starts here */
-#define LIBRESSL_VERSION_TEXT "LibreSSL 3.3.3"
+#define LIBRESSL_VERSION_TEXT "LibreSSL 3.3.4"
/* These will never change */
#define OPENSSL_VERSION_NUMBER 0x20000000L
