[OE-core] [rocko][PATCH v3 3/4] openssl: Upgrade 1.1.0f -> 1.1.0g
Koen Kooi
koen at dominion.thruhere.net
Thu Dec 21 19:39:32 UTC 2017
> Op 19 dec. 2017, om 22:26 heeft Stefan Agner <stefan at agner.ch> het volgende geschreven:
>
> From: Stefan Agner <stefan.agner at toradex.com>
>
> Deals with two CVEs:
> * bn_sqrx8x_internal carry bug on x86_64 (CVE-2017-3736)
> * Malformed X.509 IPAddressFamily could cause OOB read (CVE-2017-3735)
>
> Signed-off-by: Stefan Agner <stefan.agner at toradex.com>
> Acked-by: Otavio Salvador <otavio at ossystems.com.br>
Tested-by: Koen Kooi <koen at dominion.thruhere.net>
> ---
> .../openssl/{openssl_1.1.0f.bb => openssl_1.1.0g.bb} | 4 ++--
> 1 file changed, 2 insertions(+), 2 deletions(-)
> rename meta/recipes-connectivity/openssl/{openssl_1.1.0f.bb => openssl_1.1.0g.bb} (96%)
>
> diff --git a/meta/recipes-connectivity/openssl/openssl_1.1.0f.bb b/meta/recipes-connectivity/openssl/openssl_1.1.0g.bb
> similarity index 96%
> rename from meta/recipes-connectivity/openssl/openssl_1.1.0f.bb
> rename to meta/recipes-connectivity/openssl/openssl_1.1.0g.bb
> index 711a95985a..5f3e9a9dfa 100644
> --- a/meta/recipes-connectivity/openssl/openssl_1.1.0f.bb
> +++ b/meta/recipes-connectivity/openssl/openssl_1.1.0g.bb
> @@ -10,8 +10,8 @@ LIC_FILES_CHKSUM = "file://LICENSE;md5=cae6da10f4ffd9703214776d2aabce32"
>
> BBCLASSEXTEND = "native nativesdk"
>
> -SRC_URI[md5sum] = "7b521dea79ab159e8ec879d2333369fa"
> -SRC_URI[sha256sum] = "12f746f3f2493b2f39da7ecf63d7ee19c6ac9ec6a4fcd8c229da8a522cb12765"
> +SRC_URI[md5sum] = "ba5f1b8b835b88cadbce9b35ed9531a6"
> +SRC_URI[sha256sum] = "de4d501267da39310905cb6dc8c6121f7a2cad45a7707f76df828fe1b85073af"
>
> SRC_URI = "http://www.openssl.org/source/openssl-${PV}.tar.gz \
> file://run-ptest \
> --
> 2.13.6
>
> --
> _______________________________________________
> Openembedded-core mailing list
> Openembedded-core at lists.openembedded.org
> http://lists.openembedded.org/mailman/listinfo/openembedded-core
>
More information about the Openembedded-core
mailing list