diff options
| author | Timo Teräs <timo.teras@iki.fi> | 2016-05-03 15:21:05 +0000 |
|---|---|---|
| committer | Timo Teräs <timo.teras@iki.fi> | 2016-05-04 07:18:34 +0000 |
| commit | 28a712123e9703a5ef6d5a90cece7f954421b5ad (patch) | |
| tree | 0a1ba1ce6e5a8a019c90b878beb92cbd8fb984cc /main/openssl | |
| parent | 5155a47a19807b8d8da0993612485c0160b2150f (diff) | |
| download | aports-28a712123e9703a5ef6d5a90cece7f954421b5ad.tar.bz2 aports-28a712123e9703a5ef6d5a90cece7f954421b5ad.tar.xz | |
main/openssl: security upgrade to 1.0.2h
CVE-2016-2107 Prevent padding oracle in AES-NI CBC MAC check
CVE-2016-2105 Fix EVP_EncodeUpdate overflow
CVE-2016-2106 Fix EVP_EncryptUpdate overflow
CVE-2016-2109 Prevent ASN.1 BIO excessive memory allocation
CVE-2016-2176 EBCDIC overread
(cherry picked from commit d56992fd195711735c37dc2df063592a230b5909)
Diffstat (limited to 'main/openssl')
| -rw-r--r-- | main/openssl/APKBUILD | 10 |
1 files changed, 5 insertions, 5 deletions
diff --git a/main/openssl/APKBUILD b/main/openssl/APKBUILD index 4d2d7b77a8..4dc7129f96 100644 --- a/main/openssl/APKBUILD +++ b/main/openssl/APKBUILD @@ -1,6 +1,6 @@ # Maintainer: Timo Teras <timo.teras@iki.fi> pkgname=openssl -pkgver=1.0.2g +pkgver=1.0.2h pkgrel=0 pkgdesc="Toolkit for SSL v2/v3 and TLS v1" url="http://openssl.org" @@ -73,7 +73,7 @@ build() { --libdir=lib \ --openssldir=/etc/ssl \ shared zlib enable-montasm enable-md2 $_optflags \ - enable-ssl2 enable-weak-ssl-ciphers \ + enable-ssl2 \ -DOPENSSL_NO_BUF_FREELISTS \ $CPPFLAGS $CFLAGS $LDFLAGS -Wa,--noexecstack \ || return 1 @@ -118,7 +118,7 @@ libssl() { done } -md5sums="f3c710c045cdee5fd114feb69feba7aa openssl-1.0.2g.tar.gz +md5sums="9392e65072ce4b614c1392eefc1f23d0 openssl-1.0.2h.tar.gz ca4b7eea03af14012ca2d4e7c092db23 0001-fix-manpages.patch 67bdfe450143a41042d2c318003e963a 0002-busybox-basename.patch 84c03f201f55ca7fbfde364cfdfc9cf4 0003-use-termios.patch @@ -133,7 +133,7 @@ ed6e779e9799aeb7e029929a5719e631 0005-fix-parallel-build.patch aa16c89b283faf0fe546e3f897279c44 1002-backport-changes-from-upstream-padlock-module.patch 57cca845e22c178c3b317010be56edf0 1003-engines-e_padlock-implement-sha1-sha224-sha256-accel.patch 2ac874d1249f5f68d8c7cd58d157d29a 1004-crypto-engine-autoload-padlock-dynamic-engine.patch" -sha256sums="b784b1b3907ce39abf4098702dade6365522a253ad1552e267a9a0e89594aa33 openssl-1.0.2g.tar.gz +sha256sums="1d4007e53aad94a5b2002fe045ee7bb0b3d98f1a47f8b2bc851dcd1c74332919 openssl-1.0.2h.tar.gz d9c8d3b53a237e88bb333739e9a09d25e9fe647c4bc36acff74c7d49ce56484b 0001-fix-manpages.patch b449fb998b5f60a3a1779ac2f432b2c7f08ae52fc6dfa98bca37d735f863d400 0002-busybox-basename.patch c3e6a9710726dac72e3eeffd78961d3bae67a480f6bde7890e066547da25cdfd 0003-use-termios.patch @@ -148,7 +148,7 @@ fa2e3101ca7c6daed7ea063860d586424be7590b1cec4302bc2beee1a3c6039f 0010-ssl-env-z aee88a24622ce9d71e38deeb874e58435dcf8ff5690f56194f0e4a00fb09b260 1002-backport-changes-from-upstream-padlock-module.patch c10b8aaf56a4f4f79ca195fc587e0bb533f643e777d7a3e6fb0350399a6060ea 1003-engines-e_padlock-implement-sha1-sha224-sha256-accel.patch 2f7c850af078a3ae71b2dd38d5d0b3964ea4262e52673e36ff33498cc6223e6c 1004-crypto-engine-autoload-padlock-dynamic-engine.patch" -sha512sums="4d96b6c8a232203483d6e8bee81da01ba10977bfbac92f25304a36dec9ea584b7ef917bc45e097cc7dbe681d71a4570d649c22244c178393ae91fab48323f735 openssl-1.0.2g.tar.gz +sha512sums="780601f6f3f32f42b6d7bbc4c593db39a3575f9db80294a10a68b2b0bb79448d9bd529ca700b9977354cbdfc65887c76af0aa7b90d3ee421f74ab53e6f15c303 openssl-1.0.2h.tar.gz 80589e386fe57470818757a182f444a79050e1f19683650268d551d8aa436902b3bf565bb7a2aa8464013e50229c8bed5bb89fbd8387469cdfdcd3941eb3e5db 0001-fix-manpages.patch 2244f46cb18e6b98f075051dd2446c47f7590abccd108fbab707f168a20cad8d32220d704635973f09e3b2879f523be5160f1ffbc12ab3900f8a8891dc855c5c 0002-busybox-basename.patch 58e42058a0c8086c49d681b1e226da39a8cf8cb88c51cf739dec2ff12e1bb5d7208ac5033264b186d58e9bdfe992fe9ddb95701d01caf1824396b2cefe30c0a4 0003-use-termios.patch |