From a415596b95083ed8e7e3b130e971b8227134a4a0 Mon Sep 17 00:00:00 2001 From: Andy Postnikov Date: Sat, 31 Mar 2018 23:24:30 +0300 Subject: main/openssl: security upgrade to 1.0.2o CVE-2017-3738, CVE-2018-0739, CVE-2018-0733 --- main/openssl/APKBUILD | 34 ++++++---------------------------- 1 file changed, 6 insertions(+), 28 deletions(-) diff --git a/main/openssl/APKBUILD b/main/openssl/APKBUILD index 09ffe842600..bab037e41bb 100644 --- a/main/openssl/APKBUILD +++ b/main/openssl/APKBUILD @@ -1,6 +1,6 @@ # Maintainer: Timo Teras pkgname=openssl -pkgver=1.0.2n +pkgver=1.0.2o pkgrel=0 pkgdesc="Toolkit for SSL v2/v3 and TLS v1" url="http://openssl.org" @@ -64,6 +64,10 @@ source="http://www.openssl.org/source/${pkgname}-${pkgver}.tar.gz # 1.0.2n-r0: # - CVE-2017-3737 # - CVE-2017-3738 +# 1.0.2o-r0: +# - CVE-2017-3738 +# - CVE-2018-0733 +# - CVE-2018-0739 _builddir="$srcdir"/$pkgname-$pkgver @@ -149,33 +153,7 @@ libssl() { done } -md5sums="13bdc1b1d1ff39b6fd42a255e74676a4 openssl-1.0.2n.tar.gz -67bdfe450143a41042d2c318003e963a 0002-busybox-basename.patch -84c03f201f55ca7fbfde364cfdfc9cf4 0003-use-termios.patch -9bb9dffdd871eeccc945494771302cc3 0004-fix-default-ca-path-for-apps.patch -ed6e779e9799aeb7e029929a5719e631 0005-fix-parallel-build.patch -5a5753f52b9f54f769f1ad915d0119bd 0006-add-ircv3-tls-3.1-extension-support-to-s_client.patch -106b2c7590d49a28c782cf3f5d623543 0007-reimplement-c_rehash-in-C.patch -7a2f9c883ecdfca3087062df4a68150a 0008-maintain-abi-compat-with-no-freelist-and-regular-bui.patch -28e89dd715fc4ed85e747bd7306f2970 0009-no-rpath.patch -742ee13d88b13414248f329a09f9a92d 0010-ssl-env-zlib.patch -25091afb907de2b504f8bad6bf70002c 1001-crypto-hmac-support-EVP_MD_CTX_FLAG_ONESHOT-and-set-.patch -aa16c89b283faf0fe546e3f897279c44 1002-backport-changes-from-upstream-padlock-module.patch -57cca845e22c178c3b317010be56edf0 1003-engines-e_padlock-implement-sha1-sha224-sha256-accel.patch" -sha256sums="370babb75f278c39e0c50e8c4e7493bc0f18db6867478341a832a982fd15a8fe openssl-1.0.2n.tar.gz -b449fb998b5f60a3a1779ac2f432b2c7f08ae52fc6dfa98bca37d735f863d400 0002-busybox-basename.patch -c3e6a9710726dac72e3eeffd78961d3bae67a480f6bde7890e066547da25cdfd 0003-use-termios.patch -1f022ccab9b2e5850f32d2ac75cb617c8ce7b803a4548ce71e82776fe5b15b67 0004-fix-default-ca-path-for-apps.patch -aa1fed25880313bd77fe06fc8a42ac65e02ac944eb4052480de2abbde7867380 0005-fix-parallel-build.patch -9baecc8024bd5004ef045c6c53537f7453029c1e273874ce639834145564ca6d 0006-add-ircv3-tls-3.1-extension-support-to-s_client.patch -c934b5d1a2cb58b5235da2dfee423f0f66bb83e1d479f511b444751899637c37 0007-reimplement-c_rehash-in-C.patch -1030f885dc76f352854a7a95d73e68cfd1479c5f9ee198d6afef6b0755ee1c81 0008-maintain-abi-compat-with-no-freelist-and-regular-bui.patch -6b7ac5c9db430d9d3e8aaf87e0e95aa8a0ef460517d6563cca24014d4d890fbc 0009-no-rpath.patch -fa2e3101ca7c6daed7ea063860d586424be7590b1cec4302bc2beee1a3c6039f 0010-ssl-env-zlib.patch -2eddcb7ab342285cb637ce6b6be143cca835f449f35dd9bb8c7b9167ba2117a7 1001-crypto-hmac-support-EVP_MD_CTX_FLAG_ONESHOT-and-set-.patch -aee88a24622ce9d71e38deeb874e58435dcf8ff5690f56194f0e4a00fb09b260 1002-backport-changes-from-upstream-padlock-module.patch -c10b8aaf56a4f4f79ca195fc587e0bb533f643e777d7a3e6fb0350399a6060ea 1003-engines-e_padlock-implement-sha1-sha224-sha256-accel.patch" -sha512sums="144bf0d6aa27b4af01df0b7b734c39962649e1711554247d42e05e14d8945742b18745aefdba162e2dfc762b941fd7d3b2d5dc6a781ae4ba10a6f5a3cadb0687 openssl-1.0.2n.tar.gz +sha512sums="8a2c93657c85143e76785bb32ee836908c31a6f5f8db993fa9777acba6079e630cdddd03edbad65d1587199fc13a1507789eacf038b56eb99139c2091d9df7fd openssl-1.0.2o.tar.gz 2244f46cb18e6b98f075051dd2446c47f7590abccd108fbab707f168a20cad8d32220d704635973f09e3b2879f523be5160f1ffbc12ab3900f8a8891dc855c5c 0002-busybox-basename.patch 58e42058a0c8086c49d681b1e226da39a8cf8cb88c51cf739dec2ff12e1bb5d7208ac5033264b186d58e9bdfe992fe9ddb95701d01caf1824396b2cefe30c0a4 0003-use-termios.patch c67472879a31b5dbdd313892df6d37e7c93e8c0237d406c30d50b1016c2618ead3c13277f5dc723ef1ceed092d36e3c15a9777daa844f59b9fa2b0a4f04fd9ae 0004-fix-default-ca-path-for-apps.patch -- cgit v1.2.3