From 3bc177eec53248b296e13654003f278c65ddc413 Mon Sep 17 00:00:00 2001 From: Michael Tremer Date: Thu, 22 Sep 2016 12:02:32 +0100 Subject: [PATCH] openssl: Update to 1.0.2i https://www.openssl.org/news/openssl-1.0.2-notes.html This release fixes various security flaws: * OCSP Status Request extension unbounded memory growth (CVE-2016-6304) * SWEET32 Mitigation (CVE-2016-2183) * OOB write in MDC2_Update() (CVE-2016-6303) * Malformed SHA512 ticket DoS (CVE-2016-6302) * OOB write in BN_bn2dec() (CVE-2016-2182) * OOB read in TS_OBJ_print_bio() (CVE-2016-2180) * Pointer arithmetic undefined behaviour (CVE-2016-2177) * Constant time flag not preserved in DSA signing (CVE-2016-2178) * DTLS buffered message DoS (CVE-2016-2179) * DTLS replay protection DoS (CVE-2016-2181) * Certificate message OOB reads (CVE-2016-6306) Signed-off-by: Michael Tremer --- config/rootfiles/core/105/filelists/openssl | 1 + lfs/openssl | 4 ++-- 2 files changed, 3 insertions(+), 2 deletions(-) create mode 120000 config/rootfiles/core/105/filelists/openssl diff --git a/config/rootfiles/core/105/filelists/openssl b/config/rootfiles/core/105/filelists/openssl new file mode 120000 index 0000000000..e011a9266c --- /dev/null +++ b/config/rootfiles/core/105/filelists/openssl @@ -0,0 +1 @@ +../../../common/openssl \ No newline at end of file diff --git a/lfs/openssl b/lfs/openssl index 0a0b2cffda..d0ed4d30b1 100644 --- a/lfs/openssl +++ b/lfs/openssl @@ -24,7 +24,7 @@ include Config -VER = 1.0.2h +VER = 1.0.2i THISAPP = openssl-$(VER) DL_FILE = $(THISAPP).tar.gz @@ -87,7 +87,7 @@ objects = $(DL_FILE) $(DL_FILE) = $(DL_FROM)/$(DL_FILE) -$(DL_FILE)_MD5 = 9392e65072ce4b614c1392eefc1f23d0 +$(DL_FILE)_MD5 = 678374e63f8df456a697d3e5e5a931fb install : $(TARGET) -- 2.39.2