Hello community, here is the log from the commit of package openssl checked in at Tue Jul 8 16:15:17 CEST 2008. -------- --- openssl/openssl.changes 2008-05-28 15:04:16.000000000 +0200 +++ openssl/openssl.changes 2008-06-27 17:21:06.000000000 +0200 @@ -1,0 +2,12 @@ +Tue Jun 24 09:09:04 CEST 2008 - mkoenig@suse.de + +- update to version 0.9.8h +- openssl does not ship CA root certificates anymore + keep certificates that SuSE is already shipping +- resolves bad array index (function has been removed) [bnc#356549] +- removed patches + openssl-0.9.8g-fix_dh_for_certain_moduli.patch + openssl-CVE-2008-0891.patch + openssl-CVE-2008-1672.patch + +------------------------------------------------------------------- Old: ---- Equifax-root1.pem ICP-Brasil.pem openssl-0.9.8g-fix_dh_for_certain_moduli.patch openssl-0.9.8g.tar.bz2 openssl-CVE-2008-0891.patch openssl-CVE-2008-1672.patch New: ---- certs.tar.bz2 openssl-0.9.8h.tar.bz2 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ openssl.spec ++++++ --- /var/tmp/diff_new_pack.W30381/_old 2008-07-08 16:14:45.000000000 +0200 +++ /var/tmp/diff_new_pack.W30381/_new 2008-07-08 16:14:45.000000000 +0200 @@ -1,5 +1,5 @@ # -# spec file for package openssl (Version 0.9.8g) +# spec file for package openssl (Version 0.9.8h) # # Copyright (c) 2008 SUSE LINUX Products GmbH, Nuernberg, Germany. # This file and all modifications and additions to the pristine @@ -19,14 +19,13 @@ Group: Productivity/Networking/Security Provides: ssl AutoReqProv: on -Version: 0.9.8g -Release: 46 +Version: 0.9.8h +Release: 1 Summary: Secure Sockets and Transport Layer Security Url: http://www.openssl.org/ Source: http://www.%{name}.org/source/%{name}-%{version}.tar.bz2 +Source1: certs.tar.bz2 Source10: README.SuSE -Source20: ICP-Brasil.pem -Source21: Equifax-root1.pem Patch0: openssl-0.9.8-sparc.dif Patch1: openssl-0.9.8-flags-priority.dif Patch2: non-exec-stack.diff @@ -37,9 +36,6 @@ #Patch10: openssl-0.9.7d-ICA_engine-jun142004.patch.bz2 Patch6: openssl-0.9.8a.ca-app-segfault.bug128655.dif Patch7: bswap.diff -Patch8: openssl-0.9.8g-fix_dh_for_certain_moduli.patch -Patch9: openssl-CVE-2008-0891.patch -Patch10: openssl-CVE-2008-1672.patch BuildRoot: %{_tmppath}/%{name}-%{version}-build %description @@ -199,12 +195,8 @@ #%patch10 -p1 %patch6 -p1 %patch7 -%patch8 -p1 -%patch9 -%patch10 cp -p %{S:10} . -cp -p %{S:20} certs/ -cp -p %{S:21} certs/ +tar xjf %{SOURCE1} # lib64 installation fixes for i in Makefile.org engines/Makefile; do sed -e "s+\(\$(INSTALL_PREFIX)\$(INSTALLTOP)\)/lib+\1/%_lib+g" \ @@ -407,6 +399,7 @@ %dir %{ssletcdir} %config (noreplace) %{ssletcdir}/openssl.cnf %attr(700,root,root) %{ssletcdir}/private +%{ssletcdir}/certs %dir %{_datadir}/ssl %{_datadir}/ssl/misc %{_bindir}/c_rehash @@ -417,6 +410,15 @@ %{ssletcdir}/certs %changelog +* Tue Jun 24 2008 mkoenig@suse.de +- update to version 0.9.8h +- openssl does not ship CA root certificates anymore + keep certificates that SuSE is already shipping +- resolves bad array index (function has been removed) [bnc#356549] +- removed patches + openssl-0.9.8g-fix_dh_for_certain_moduli.patch + openssl-CVE-2008-0891.patch + openssl-CVE-2008-1672.patch * Wed May 28 2008 mkoenig@suse.de - fix OpenSSL Server Name extension crash (CVE-2008-0891) and OpenSSL Omit Server Key Exchange message crash (CVE-2008-1672) ++++++ baselibs.conf ++++++ --- openssl/baselibs.conf 2008-05-26 18:39:34.000000000 +0200 +++ openssl/baselibs.conf 2008-07-08 15:41:11.871931000 +0200 @@ -1,3 +1,2 @@ -openssl libopenssl0_9_8 obsoletes "openssl-<targettype> <= <version>" ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Remember to have fun... --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse-commit+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-commit+help@opensuse.org