Hello community, here is the log from the commit of package openssl checked in at Tue Oct 16 18:23:26 CEST 2007. -------- --- openssl/openssl.changes 2007-10-01 16:10:09.000000000 +0200 +++ /mounts/work_src_done/STABLE/openssl/openssl.changes 2007-10-15 15:18:27.000000000 +0200 @@ -1,0 +2,13 @@ +Mon Oct 15 11:17:14 CEST 2007 - mkoenig@suse.de + +- update to version 0.9.8f: + * fixes CVE-2007-3108, CVE-2007-5135, CVE-2007-4995 +- patches merged upstream: + openssl-0.9.8-key_length.patch + openssl-CVE-2007-3108-bug296511 + openssl-CVE-2007-5135.patch + openssl-gcc42.patch + openssl-gcc42_b.patch + openssl-s390-config.diff + +------------------------------------------------------------------- Old: ---- openssl-0.9.8e.tar.bz2 openssl-0.9.8-key_length.patch openssl-CVE-2007-3108-bug296511.diff openssl-CVE-2007-5135.patch openssl-gcc42_b.patch openssl-gcc42.patch openssl-s390-config.diff New: ---- openssl-0.9.8f.tar.bz2 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ openssl.spec ++++++ --- /var/tmp/diff_new_pack.wg6798/_old 2007-10-16 18:23:15.000000000 +0200 +++ /var/tmp/diff_new_pack.wg6798/_new 2007-10-16 18:23:15.000000000 +0200 @@ -1,5 +1,5 @@ # -# spec file for package openssl (Version 0.9.8e) +# spec file for package openssl (Version 0.9.8f) # # Copyright (c) 2007 SUSE LINUX Products GmbH, Nuernberg, Germany. # This file and all modifications and additions to the pristine @@ -18,8 +18,8 @@ Group: Productivity/Networking/Security Provides: ssl AutoReqProv: on -Version: 0.9.8e -Release: 47 +Version: 0.9.8f +Release: 1 Summary: Secure Sockets and Transport Layer Security Url: http://www.openssl.org/ Source: http://www.%{name}.org/source/%{name}-%{version}.tar.bz2 @@ -29,21 +29,14 @@ Patch0: openssl-0.9.8-sparc.dif Patch1: openssl-0.9.8-flags-priority.dif Patch2: non-exec-stack.diff -Patch4: openssl-CVE-2007-3108-bug296511.diff -Patch7: openssl-0.9.7f-ppc64.diff -Patch8: openssl-hppa-config.diff -Patch9: openssl-0.9.6g-alpha.diff +Patch3: openssl-0.9.7f-ppc64.diff +Patch4: openssl-hppa-config.diff +Patch5: openssl-0.9.6g-alpha.diff # http://www-124.ibm.com/developerworks/projects/libica/ #Patch10: openssl-0.9.7d-ICA_engine-jun142004.patch.bz2 -Patch11: openssl-s390-config.diff -Patch20: openssl-0.9.8a.ca-app-segfault.bug128655.dif -Patch21: bswap.diff -Patch22: openssl-0.9.8-key_length.patch -Patch23: openssl-gcc42.patch -Patch24: openssl-gcc42_b.patch -Patch25: openssl-CVE-2007-5135.patch +Patch6: openssl-0.9.8a.ca-app-segfault.bug128655.dif +Patch7: bswap.diff BuildRoot: %{_tmppath}/%{name}-%{version}-build -Requires: libopenssl0_9_8 %description The OpenSSL Project is a collaborative effort to develop a robust, @@ -192,18 +185,12 @@ %patch -p1 %patch1 -p1 %patch2 +%patch3 -p1 %patch4 -%patch7 -p1 -%patch8 -%patch9 -p1 +%patch5 -p1 #%patch10 -p1 -%patch11 -%patch20 -p1 -%patch21 -%patch22 -p1 -%patch23 -%patch24 -%patch25 -p1 +%patch6 -p1 +%patch7 cp -p %{S:10} . cp -p %{S:20} certs/ cp -p %{S:21} certs/ @@ -418,6 +405,16 @@ %defattr(-, root, root) %{ssletcdir}/certs %changelog +* Mon Oct 15 2007 - mkoenig@suse.de +- update to version 0.9.8f: + * fixes CVE-2007-3108, CVE-2007-5135, CVE-2007-4995 +- patches merged upstream: + openssl-0.9.8-key_length.patch + openssl-CVE-2007-3108-bug296511 + openssl-CVE-2007-5135.patch + openssl-gcc42.patch + openssl-gcc42_b.patch + openssl-s390-config.diff * Mon Oct 01 2007 - mkoenig@suse.de - fix buffer overflow CVE-2007-5135 [#329208] * Wed Sep 05 2007 - mkoenig@suse.de ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Remember to have fun... --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse-commit+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-commit+help@opensuse.org