main/libressl: fix CVE-2017-8301

1 files changed, 10 insertions, 3 deletions

diff --git a/main/libressl/APKBUILD b/main/libressl/APKBUILD
index 0ae101abbc..94129859b4 100644
--- a/main/libressl/APKBUILD
+++ b/main/libressl/APKBUILD
@@ -1,10 +1,15 @@
 # Contributor: Sören Tempel <soeren+alpine@soeren-tempel.net>
 # Contributor: Orion <systmkor@gmail.com>
 # Maintainer: Orion <systmkor@gmail.com>
+#
+# secfixes:
+#   2.5.3-r1:
+#     - CVE-2017-8301
+#
 pkgname=libressl
 pkgver=2.5.3
 _namever=${pkgname}${pkgver%.*}
-pkgrel=0
+pkgrel=1
 pkgdesc="Version of the TLS/crypto stack forked from OpenSSL"
 url="http://www.libressl.org/"
 arch="all"
@@ -16,7 +21,8 @@ makedepends="$makedepends_host"
 replaces="openssl"
 subpackages="$pkgname-dbg $_namever-libcrypto:_libs $_namever-libssl:_libs
 	$_namever-libtls:_libs $pkgname-dev $pkgname-doc"
-source="http://ftp.openbsd.org/pub/OpenBSD/LibreSSL/$pkgname-$pkgver.tar.gz"
+source="http://ftp.openbsd.org/pub/OpenBSD/LibreSSL/$pkgname-$pkgver.tar.gz
+	fix-CVE-2017-8301.patch"
 builddir="$srcdir/$pkgname-$pkgver"
 
 build() {
@@ -57,4 +63,5 @@ _libs() {
 	done
 }
 
-sha512sums="e5ba2abb8a0835a025d2777d9c0e8e95813777af8167e322d8e5ae20485c32b628ced77141b156fd3619b65a5afae1a5bc90a7252166a9a54f7e3d23388b3bd0  libressl-2.5.3.tar.gz"
+sha512sums="e5ba2abb8a0835a025d2777d9c0e8e95813777af8167e322d8e5ae20485c32b628ced77141b156fd3619b65a5afae1a5bc90a7252166a9a54f7e3d23388b3bd0  libressl-2.5.3.tar.gz
+cc4da197c9ba0c80f45f0141e3ec80bbce5dcd4f815a3b55e26dc7fc5930f15078907a1ed1ac79e852966b1d63f48b09d9c98a766211dee88c42fc06477f862f  fix-CVE-2017-8301.patch"