Re: [ptxdist] [APPLIED] openssl: Version bump. 1.1.1s -> 1.1.1t.

Wed, 08 Feb 2023 03:51:09 -0800 

Thanks, applied as 89f1032149d39b2f5ac41649f1441120b14891f3.

Michael

[sent from post-receive hook]

On Wed, 08 Feb 2023 12:50:07 +0100, Christian Melki 
<christian.me...@t2data.com> wrote:
> Plug 4 CVEs.
> https://www.openssl.org/news/cl111.txt
> X.400 address type confusion in X.509 GeneralName (CVE-2023-0286)
> Use-after-free following BIO_new_NDEF (CVE-2023-0215)
> Double free after calling PEM_read_bio_ex (CVE-2022-4450)
> Timing Oracle in RSA Decryption (CVE-2022-4304)
> 
> * Forward patchset. Applies cleanly.
> 
> Signed-off-by: Christian Melki <christian.me...@t2data.com>
> Message-Id: <20230208080107.2504460-1-christian.me...@t2data.com>
> Signed-off-by: Michael Olbrich <m.olbr...@pengutronix.de>
> 
> diff --git a/patches/openssl-1.1.1s/0001-debian-targets.patch 
> b/patches/openssl-1.1.1t/0001-debian-targets.patch
> similarity index 100%
> rename from patches/openssl-1.1.1s/0001-debian-targets.patch
> rename to patches/openssl-1.1.1t/0001-debian-targets.patch
> diff --git a/patches/openssl-1.1.1s/0002-pic.patch 
> b/patches/openssl-1.1.1t/0002-pic.patch
> similarity index 100%
> rename from patches/openssl-1.1.1s/0002-pic.patch
> rename to patches/openssl-1.1.1t/0002-pic.patch
> diff --git 
> a/patches/openssl-1.1.1s/0003-Set-systemwide-default-settings-for-libssl-users.patch
>  
> b/patches/openssl-1.1.1t/0003-Set-systemwide-default-settings-for-libssl-users.patch
> similarity index 100%
> rename from 
> patches/openssl-1.1.1s/0003-Set-systemwide-default-settings-for-libssl-users.patch
> rename to 
> patches/openssl-1.1.1t/0003-Set-systemwide-default-settings-for-libssl-users.patch
> diff --git a/patches/openssl-1.1.1s/series b/patches/openssl-1.1.1t/series
> similarity index 100%
> rename from patches/openssl-1.1.1s/series
> rename to patches/openssl-1.1.1t/series
> diff --git a/rules/openssl.make b/rules/openssl.make
> index 86f2e081c2f6..67600ab204ec 100644
> --- a/rules/openssl.make
> +++ b/rules/openssl.make
> @@ -17,9 +17,9 @@ PACKAGES-$(PTXCONF_OPENSSL) += openssl
>  # Paths and names
>  #
>  OPENSSL_BASE := 1.1.1
> -OPENSSL_BUGFIX       := s
> +OPENSSL_BUGFIX       := t
>  OPENSSL_VERSION      := $(OPENSSL_BASE)$(OPENSSL_BUGFIX)
> -OPENSSL_MD5  := 077f69d357758c7d6ef686f813e16f30
> +OPENSSL_MD5  := 1cfee919e0eac6be62c88c5ae8bcd91e
>  OPENSSL              := openssl-$(OPENSSL_VERSION)
>  OPENSSL_SUFFIX       := tar.gz
>  OPENSSL_URL  := \

Reply via email to