On Thu, Aug 07, 2014 at 02:41:01PM +0200, Bernhard Walle wrote: > Fixes CVE-2014-3508. > Thanks, applied. I've regenerated the patches (no real changes). I've attached the script I use for this in case anyone is interested. Btw, if you run git send-email with '-M' then the patch is smaller and much better to read. Michael > Signed-off-by: Bernhard Walle > --- > patches/openssl-1.0.1h/0001-ca.patch | 31 ---- > patches/openssl-1.0.1h/0002-debian-targets.patch | 80 --------- > patches/openssl-1.0.1h/0003-engines-path.patch | 92 ---------- > patches/openssl-1.0.1h/0004-no-rpath.patch | 24 --- > patches/openssl-1.0.1h/0005-no-symbolic.patch | 24 --- > patches/openssl-1.0.1h/0006-pic.patch | 189 --------------------- > patches/openssl-1.0.1h/0007-valgrind.patch | 31 ---- > patches/openssl-1.0.1h/0008-rehash-crt.patch | 44 ----- > patches/openssl-1.0.1h/0009-shared-lib-ext.patch | 25 --- > patches/openssl-1.0.1h/0010-stddef.patch | 23 --- > patches/openssl-1.0.1h/0011-block_diginotar.patch | 66 ------- > .../0012-block_digicert_malaysia.patch | 30 ---- > .../0013-Change-default-bit-size-and-digest.patch | 131 -------------- > .../openssl-1.0.1h/0014-openssl_fix_for_x32.patch | 50 ------ > patches/openssl-1.0.1h/series | 17 -- > patches/openssl-1.0.1i/0001-ca.patch | 31 ++++ > patches/openssl-1.0.1i/0002-debian-targets.patch | 80 +++++++++ > patches/openssl-1.0.1i/0003-engines-path.patch | 92 ++++++++++ > patches/openssl-1.0.1i/0004-no-rpath.patch | 24 +++ > patches/openssl-1.0.1i/0005-no-symbolic.patch | 24 +++ > patches/openssl-1.0.1i/0006-pic.patch | 189 +++++++++++++++++++++ > patches/openssl-1.0.1i/0007-valgrind.patch | 31 ++++ > patches/openssl-1.0.1i/0008-rehash-crt.patch | 44 +++++ > patches/openssl-1.0.1i/0009-shared-lib-ext.patch | 25 +++ > patches/openssl-1.0.1i/0010-stddef.patch | 23 +++ > patches/openssl-1.0.1i/0011-block_diginotar.patch | 66 +++++++ > .../0012-block_digicert_malaysia.patch | 30 ++++ > .../0013-Change-default-bit-size-and-digest.patch | 131 ++++++++++++++ > .../openssl-1.0.1i/0014-openssl_fix_for_x32.patch | 50 ++++++ > patches/openssl-1.0.1i/series | 17 ++ > rules/openssl.make | 4 +- > 31 files changed, 859 insertions(+), 859 deletions(-) > delete mode 100644 patches/openssl-1.0.1h/0001-ca.patch > delete mode 100644 patches/openssl-1.0.1h/0002-debian-targets.patch > delete mode 100644 patches/openssl-1.0.1h/0003-engines-path.patch > delete mode 100644 patches/openssl-1.0.1h/0004-no-rpath.patch > delete mode 100644 patches/openssl-1.0.1h/0005-no-symbolic.patch > delete mode 100644 patches/openssl-1.0.1h/0006-pic.patch > delete mode 100644 patches/openssl-1.0.1h/0007-valgrind.patch > delete mode 100644 patches/openssl-1.0.1h/0008-rehash-crt.patch > delete mode 100644 patches/openssl-1.0.1h/0009-shared-lib-ext.patch > delete mode 100644 patches/openssl-1.0.1h/0010-stddef.patch > delete mode 100644 patches/openssl-1.0.1h/0011-block_diginotar.patch > delete mode 100644 patches/openssl-1.0.1h/0012-block_digicert_malaysia.patch > delete mode 100644 patches/openssl-1.0.1h/0013-Change-default-bit-size-and-digest.patch > delete mode 100644 patches/openssl-1.0.1h/0014-openssl_fix_for_x32.patch > delete mode 100644 patches/openssl-1.0.1h/series > create mode 100644 patches/openssl-1.0.1i/0001-ca.patch > create mode 100644 patches/openssl-1.0.1i/0002-debian-targets.patch > create mode 100644 patches/openssl-1.0.1i/0003-engines-path.patch > create mode 100644 patches/openssl-1.0.1i/0004-no-rpath.patch > create mode 100644 patches/openssl-1.0.1i/0005-no-symbolic.patch > create mode 100644 patches/openssl-1.0.1i/0006-pic.patch > create mode 100644 patches/openssl-1.0.1i/0007-valgrind.patch > create mode 100644 patches/openssl-1.0.1i/0008-rehash-crt.patch > create mode 100644 patches/openssl-1.0.1i/0009-shared-lib-ext.patch > create mode 100644 patches/openssl-1.0.1i/0010-stddef.patch > create mode 100644 patches/openssl-1.0.1i/0011-block_diginotar.patch > create mode 100644 patches/openssl-1.0.1i/0012-block_digicert_malaysia.patch > create mode 100644 patches/openssl-1.0.1i/0013-Change-default-bit-size-and-digest.patch > create mode 100644 patches/openssl-1.0.1i/0014-openssl_fix_for_x32.patch > create mode 100644 patches/openssl-1.0.1i/series -- Pengutronix e.K. | | Industrial Linux Solutions | http://www.pengutronix.de/ | Peiner Str. 6-8, 31137 Hildesheim, Germany | Phone: +49-5121-206917-0 | Amtsgericht Hildesheim, HRA 2686 | Fax: +49-5121-206917-5555 |