From mboxrd@z Thu Jan 1 00:00:00 1970 Delivery-date: Wed, 08 Feb 2023 09:01:48 +0100 Received: from metis.ext.pengutronix.de ([2001:67c:670:201:290:27ff:fe1d:cc33]) by lore.white.stw.pengutronix.de with esmtps (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.94.2) (envelope-from ) id 1pPfOn-000M4b-G9 for lore@lore.pengutronix.de; Wed, 08 Feb 2023 09:01:48 +0100 Received: from localhost ([127.0.0.1] helo=metis.ext.pengutronix.de) by metis.ext.pengutronix.de with esmtp (Exim 4.92) (envelope-from ) id 1pPfOl-00034A-Bg; Wed, 08 Feb 2023 09:01:47 +0100 Received: from mail-dbaeur03on2079.outbound.protection.outlook.com ([40.107.104.79] helo=EUR03-DBA-obe.outbound.protection.outlook.com) by metis.ext.pengutronix.de with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.92) (envelope-from ) id 1pPfOH-00033r-4X for ptxdist@pengutronix.de; Wed, 08 Feb 2023 09:01:18 +0100 ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=JMpARiOmbyFGk7BKBPEbfibrGuKUej2JqtC1Gzag2JJ53jPzxJ5Ba/HBNpiCSU2wmR9OSW2zxrzY3K+ZuBvC/BhuFgSOdWBHfp6KdUjJyOu4g3JwDE7MQRtBAUnBVWhFdFL4G+04ra2JYHCaG5nkcTKAMT//5b4yrNkBhyBzq3WPzS1Pv8mCuC7uyKmM15Uct8Lan5+eVeUVIGazqs3NjydDkjRrEYjbVhwyidMbJenEmqiRA+qEDg/TOGxL6PyPfZ9a3/GmXtfXisAohXDrSzMDFlhcQq3zx1REQbcMN3djG5/HalBUfflNqLE2Nk3sLbdkAgDyVphtmIcB/I747Q== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=2/LThdWEvPEqxXLBNrL9krOcQqGCKznoPlPgmbNGl7M=; b=Xl2xvAfJQanayZVtzGCD89fTKM1Yot/eooSJj2xB64NKF4lYlmeMBZXLwl9nAzxeY02rHwJSchasZ101+6uNzZRQDXCSONWKo6mT18rOG5Wjpo1CDV+atg7WdZdMin1wUteCihvfmAvE3lH8RQfAPOu5mpOfvxRGiQjohA6X1RlbZPDAms94w7j3bdj9n+45iFxtpuJlEEZBn9YDyvO+VKrwU1qN6PmqOJ1YJ0o6NWkjzf/cpIE9tUJJhA+2zcjJ+JOMEna+c5zsj6VGqw0XqKvDK2qiGPgLzF+xCTFkilr4FQEjXWX6LQJB8VcyZ2M9bLBn1Lvp0Dvl7y0E+lYt/w== ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=t2data.com; dmarc=pass action=none header.from=t2data.com; dkim=pass header.d=t2data.com; arc=none DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=t2datacom.onmicrosoft.com; s=selector1-t2datacom-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=2/LThdWEvPEqxXLBNrL9krOcQqGCKznoPlPgmbNGl7M=; b=P+ztObnPunBz+kFzTbFbx7+T4wHLFfbV9gC+aq+PWHjRWkg2J4LJMSNX2dQH/9WHjN4+4MrHSRpwbJ7r3Laov8ucgxIPG9YLIyZoJBNMs68L2z/otERK00tOgZVivjmdL9Q6VQLA6eZkWKg5YwAHR9j4c2hvKFIdRMe0blhl8mI= Authentication-Results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=t2data.com; Received: from DB9P251MB0618.EURP251.PROD.OUTLOOK.COM (2603:10a6:10:334::22) by PAXP251MB0423.EURP251.PROD.OUTLOOK.COM (2603:10a6:102:288::13) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6064.35; Wed, 8 Feb 2023 08:01:14 +0000 Received: from DB9P251MB0618.EURP251.PROD.OUTLOOK.COM ([fe80::d8cf:bdbe:3526:aa50]) by DB9P251MB0618.EURP251.PROD.OUTLOOK.COM ([fe80::d8cf:bdbe:3526:aa50%5]) with mapi id 15.20.6064.034; Wed, 8 Feb 2023 08:01:14 +0000 From: Christian Melki To: ptxdist@pengutronix.de Date: Wed, 8 Feb 2023 09:01:07 +0100 Message-Id: <20230208080107.2504460-1-christian.melki@t2data.com> X-Mailer: git-send-email 2.34.1 Content-Transfer-Encoding: 8bit Content-Type: text/plain X-ClientProxiedBy: GV3P280CA0040.SWEP280.PROD.OUTLOOK.COM (2603:10a6:150:9::14) To DB9P251MB0618.EURP251.PROD.OUTLOOK.COM (2603:10a6:10:334::22) MIME-Version: 1.0 X-MS-PublicTrafficType: Email X-MS-TrafficTypeDiagnostic: DB9P251MB0618:EE_|PAXP251MB0423:EE_ X-MS-Office365-Filtering-Correlation-Id: 695e879d-1184-4362-7e55-08db09aaa651 X-MS-Exchange-SenderADCheck: 1 X-MS-Exchange-AntiSpam-Relay: 0 X-Microsoft-Antispam: BCL:0; X-Microsoft-Antispam-Message-Info: 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 X-Forefront-Antispam-Report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:DB9P251MB0618.EURP251.PROD.OUTLOOK.COM; PTR:; CAT:NONE; SFS:(13230025)(366004)(39830400003)(396003)(376002)(136003)(346002)(451199018)(5660300002)(41300700001)(86362001)(8936002)(2616005)(36756003)(966005)(1076003)(6486002)(478600001)(52116002)(6512007)(6506007)(26005)(6666004)(186003)(316002)(66476007)(8676002)(66946007)(6916009)(38100700002)(66556008)(83380400001)(38350700002)(2906002)(44832011); DIR:OUT; SFP:1101; X-MS-Exchange-AntiSpam-MessageData-ChunkCount: 1 X-MS-Exchange-AntiSpam-MessageData-0: =?us-ascii?Q?mgYOrZA989JOPcdEi4RHMIW6kjVRLQnJVrtEOz5N/i84/yAqE9GOYGWbAKHj?= =?us-ascii?Q?m07PXyP3PnoEzNRCsUoHlE/rLVW9jp7hngkTq413nyS/7zER/4MgaQsveFlI?= =?us-ascii?Q?NX65vHldp97Aewqz9ziEQxVORhQCNWhLWaqpPGlUoMX5VtjseR+qnDLSiCWv?= =?us-ascii?Q?5hc5pPbvj07Ly1AFmk2Fb94cuHcPz/pg9IHWCe7U6rCkeU0ugAD2t1Lq5wOn?= =?us-ascii?Q?LNR+6r+fD0WsCFeI3X2m4XSCsxGBKZcTEDlpSaG4FF9g6btA+2OKgfBcru79?= =?us-ascii?Q?1nxzvD25rSCIba4sxSmu/Tb5jvIejw7EC6CUEXAXhQ0y4wme7YVOcfghtjB7?= =?us-ascii?Q?NFbW7tl+2Wp9WFDLWk6pfVWK9oacz6TWXvOQddwuZACgOMNZNSjfEBGAwddU?= =?us-ascii?Q?woxKY/ZiHS2Fq11siTsraQWyY5rvypzawDhicqNPG+vcm+lOtHpeXtT5SiJV?= =?us-ascii?Q?x6RMvlw95qJfunrjHF6eD/+5YpXKQK+eLaTuvXx2EMOBkcZP88Yk9m/qKPns?= =?us-ascii?Q?KNXiFQrupNheFae+65GMZRNDvmiiFmIXqK0/Br+0WnUW8/Ebia3auTiqp50w?= =?us-ascii?Q?gx9Ai646lClX3QhFsGGaCmDiUjSxYkxlJQXJZKhYX/zejJcL1McWXtdXC/8M?= =?us-ascii?Q?mXC/tCKI7Qc9CewoUg5gquNZEbSU9uD1LsOg+vUDmDWXhY34lF+bzWafP9dw?= =?us-ascii?Q?cHCIHo8ZSdKcjvB5GynkaxVxIvIzk07oXsqF87evsgO+ABW+0REUpxxaEyJ0?= =?us-ascii?Q?HXBBrklsk9HUlteKrAvR6meDuxqhkdZIH+vBVLnuXZ6zSEIF1F+bseZa2F42?= =?us-ascii?Q?Kh1zXt0yWA6jA9Q+lu8/tQZq8HP+YwMTPvJNuwr4rMuY86zbZFtLttQLtcl5?= =?us-ascii?Q?puo+sKhP5NVsmq26qQFLOH02+5XNZ/l+vd06SoUH6HBaWDftiXrU19J6lakO?= =?us-ascii?Q?/4QI0ZjdN8G3TticuHAKQ8GQ6O5HRcU8GrXYS2ixXCe6BmFcRyK2+A7b/PUO?= =?us-ascii?Q?c9ympmB5AlCdPfttjq+JlZ77j+1w7T/xkw6Qx92f95RER6uF42VKaLhoMsEs?= =?us-ascii?Q?slZxFmNvAsLPMSbr+9V3wJ+JqrrMX693o7FIUIBKyV4x2b8nnNodsSUgZ12N?= =?us-ascii?Q?H/MiaEsBABee5j4wzkxTQvtX0rr52oYsGGLjJ4pZ2jXeTBcAnWD6QLuacITQ?= =?us-ascii?Q?yoSK1+xIAdtA9GSFX8vZHgumJtsVakiKeNBIit6XxPRQ4hWKRoF81Wn6EUtW?= =?us-ascii?Q?RwVrsFJQJb4mYGG0bf+U5qmtiM1ZiE/iQH9E6k44JnuAnk/rfBpVzThNtdXd?= =?us-ascii?Q?G2ij4AmYXc98vRR//ixgZyMCxwgLd9SQdm8SxPw+enqOJ2e4D/0rCtof+7eT?= =?us-ascii?Q?01lsW2G+VQDddXLHyOqZLEvSqmKBILaPK7syN5GMgg4/Ky+oDtflBAZT00Ev?= =?us-ascii?Q?jiIoYAsY7VBsLgjZONQCTvCeI+NjePXUGZaOQWW4/vEYU4LGrDp8DOJa1ECK?= =?us-ascii?Q?o+EzN+KMQoREOgZ6y/khjfD5wh6A6nokJD/ILcORd5ksfV0BTqzBPudK5KFh?= =?us-ascii?Q?1mw/HiQda5X/uj3MxWrhfDlC5d5mzPL/waZ1e+fZtd7MPCEFGlGHB7dLDdUy?= =?us-ascii?Q?LQ=3D=3D?= X-OriginatorOrg: t2data.com X-MS-Exchange-CrossTenant-Network-Message-Id: 695e879d-1184-4362-7e55-08db09aaa651 X-MS-Exchange-CrossTenant-AuthSource: DB9P251MB0618.EURP251.PROD.OUTLOOK.COM X-MS-Exchange-CrossTenant-AuthAs: Internal X-MS-Exchange-CrossTenant-OriginalArrivalTime: 08 Feb 2023 08:01:14.3755 (UTC) X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted X-MS-Exchange-CrossTenant-Id: 27928da5-aacd-4ba1-9566-c748a6863e6c X-MS-Exchange-CrossTenant-MailboxType: HOSTED X-MS-Exchange-CrossTenant-UserPrincipalName: YazR6rWW0xaMM+6Nqwdkb2FOa9dNfHZZerhZZUuJMRp6Gdrs01zy3sx/RpPMVWKnpE0UfLU/nK4NbRE7qeFJVpa6FCthLZKhJxUljeALcX0= X-MS-Exchange-Transport-CrossTenantHeadersStamped: PAXP251MB0423 X-Spam-Checker-Version: SpamAssassin 3.4.2 (2018-09-13) on metis.ext.pengutronix.de X-Spam-Level: X-Spam-Status: No, score=-2.0 required=4.0 tests=AWL,BAYES_00,DKIM_SIGNED, DKIM_VALID,RCVD_IN_DNSWL_NONE,RCVD_IN_MSPIKE_H2,SPF_HELO_NONE,SPF_PASS autolearn=ham autolearn_force=no version=3.4.2 Subject: [ptxdist] [PATCH] openssl: Version bump. 1.1.1t -> 1.1.1s. X-BeenThere: ptxdist@pengutronix.de X-Mailman-Version: 2.1.29 Precedence: list List-Id: PTXdist Development Mailing List List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Reply-To: ptxdist@pengutronix.de Sender: "ptxdist" X-SA-Exim-Connect-IP: 127.0.0.1 X-SA-Exim-Mail-From: ptxdist-bounces@pengutronix.de X-SA-Exim-Scanned: No (on metis.ext.pengutronix.de); SAEximRunCond expanded to false Plug 4 CVEs. https://www.openssl.org/news/cl111.txt X.400 address type confusion in X.509 GeneralName (CVE-2023-0286) Use-after-free following BIO_new_NDEF (CVE-2023-0215) Double free after calling PEM_read_bio_ex (CVE-2022-4450) Timing Oracle in RSA Decryption (CVE-2022-4304) * Forward patchset. Applies cleanly. Signed-off-by: Christian Melki --- .../0001-debian-targets.patch | 0 patches/{openssl-1.1.1s => openssl-1.1.1t}/0002-pic.patch | 0 ...003-Set-systemwide-default-settings-for-libssl-users.patch | 0 patches/{openssl-1.1.1s => openssl-1.1.1t}/series | 0 rules/openssl.make | 4 ++-- 5 files changed, 2 insertions(+), 2 deletions(-) rename patches/{openssl-1.1.1s => openssl-1.1.1t}/0001-debian-targets.patch (100%) rename patches/{openssl-1.1.1s => openssl-1.1.1t}/0002-pic.patch (100%) rename patches/{openssl-1.1.1s => openssl-1.1.1t}/0003-Set-systemwide-default-settings-for-libssl-users.patch (100%) rename patches/{openssl-1.1.1s => openssl-1.1.1t}/series (100%) diff --git a/patches/openssl-1.1.1s/0001-debian-targets.patch b/patches/openssl-1.1.1t/0001-debian-targets.patch similarity index 100% rename from patches/openssl-1.1.1s/0001-debian-targets.patch rename to patches/openssl-1.1.1t/0001-debian-targets.patch diff --git a/patches/openssl-1.1.1s/0002-pic.patch b/patches/openssl-1.1.1t/0002-pic.patch similarity index 100% rename from patches/openssl-1.1.1s/0002-pic.patch rename to patches/openssl-1.1.1t/0002-pic.patch diff --git a/patches/openssl-1.1.1s/0003-Set-systemwide-default-settings-for-libssl-users.patch b/patches/openssl-1.1.1t/0003-Set-systemwide-default-settings-for-libssl-users.patch similarity index 100% rename from patches/openssl-1.1.1s/0003-Set-systemwide-default-settings-for-libssl-users.patch rename to patches/openssl-1.1.1t/0003-Set-systemwide-default-settings-for-libssl-users.patch diff --git a/patches/openssl-1.1.1s/series b/patches/openssl-1.1.1t/series similarity index 100% rename from patches/openssl-1.1.1s/series rename to patches/openssl-1.1.1t/series diff --git a/rules/openssl.make b/rules/openssl.make index 86f2e081c..67600ab20 100644 --- a/rules/openssl.make +++ b/rules/openssl.make @@ -17,9 +17,9 @@ PACKAGES-$(PTXCONF_OPENSSL) += openssl # Paths and names # OPENSSL_BASE := 1.1.1 -OPENSSL_BUGFIX := s +OPENSSL_BUGFIX := t OPENSSL_VERSION := $(OPENSSL_BASE)$(OPENSSL_BUGFIX) -OPENSSL_MD5 := 077f69d357758c7d6ef686f813e16f30 +OPENSSL_MD5 := 1cfee919e0eac6be62c88c5ae8bcd91e OPENSSL := openssl-$(OPENSSL_VERSION) OPENSSL_SUFFIX := tar.gz OPENSSL_URL := \ -- 2.34.1