From mboxrd@z Thu Jan  1 00:00:00 1970
Delivery-date: Wed, 08 Feb 2023 10:38:49 +0100
Received: from metis.ext.pengutronix.de ([2001:67c:670:201:290:27ff:fe1d:cc33])
	by lore.white.stw.pengutronix.de with esmtps  (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
	(Exim 4.94.2)
	(envelope-from <ptxdist-bounces+lore=lore.pengutronix.de@pengutronix.de>)
	id 1pPguh-000QTS-2p
	for lore@lore.pengutronix.de; Wed, 08 Feb 2023 10:38:49 +0100
Received: from localhost ([127.0.0.1] helo=metis.ext.pengutronix.de)
	by metis.ext.pengutronix.de with esmtp (Exim 4.92)
	(envelope-from <ptxdist-bounces@pengutronix.de>)
	id 1pPgue-00036B-TN; Wed, 08 Feb 2023 10:38:48 +0100
Received: from h2.cmg2.smtp.forpsi.com ([81.2.195.189])
 by metis.ext.pengutronix.de with esmtps
 (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.92)
 (envelope-from <oss-lists@triops.cz>) id 1pPguB-000362-Cd
 for ptxdist@pengutronix.de; Wed, 08 Feb 2023 10:38:19 +0100
Received: from lenoch ([91.218.190.200]) by cmgsmtp with ESMTPSA
 id Pgu8p72z9v5uIPgu9pOMzg; Wed, 08 Feb 2023 10:38:17 +0100
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=triops.cz; s=f2019;
 t=1675849097; bh=XmjMbIZraEx5lmCBJi7CZa6P6FAWxEXW64UH2tT0LIE=;
 h=Date:From:To:Subject:Message-ID:MIME-Version:Content-Type;
 b=0w8+shapTqf/674qWEf0lw4OoP1zgLkNBQTaHqSxxWdIohZmNGXF+yMzy8OKIg7h3
 oIEjMHoZBF2IIuX0tlVrI5cMsDV1+zZNzfaFz3c+ngOXbTv1UzYTRyrXnNrkVSN4f1
 hnGoywt7NTKH2EKWnfgpqa60AA8nOHiT9HvYhMXiAkBe2QFsGrdQ7bDAI4cOQ/vPtU
 yA9gdEuC8yg4tVXaRvG0JV9sBTLJeXMW3UDrny/UEZtkDH/YVwaac98XepZVdXlm77
 lhN8YJwg4/XlhuawupxCteMCQs9jVOn06wocNlxqFbficcRN9Su2e77Bz+X7g5rlQh
 8CAAlhlk/lqkQ==
Date: Wed, 8 Feb 2023 10:38:16 +0100
From: Ladislav Michl <oss-lists@triops.cz>
To: ptxdist@pengutronix.de
Message-ID: <Y+NtiCUINXgjN3Se@lenoch>
References: <20230208080107.2504460-1-christian.melki@t2data.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <20230208080107.2504460-1-christian.melki@t2data.com>
X-CMAE-Envelope: MS4wfAKBjnwME5FhJCsu7vyev/nSRzob75kmBfAvPE254kqiIUQ0cqYpnW/1rB2QfaYRWBQjUu10GS2STMBmi8BMc1Pw8g/SpKmN6OMOLUQm2PDW/a3cZeF2
 05gAYdVTwYxVi5/2MZSdytGAuXbloIeQDEcgsSfGe2lJgOEB0/CWRokt
X-Spam-Checker-Version: SpamAssassin 3.4.2 (2018-09-13) on
 metis.ext.pengutronix.de
X-Spam-Level: 
X-Spam-Status: No, score=-2.2 required=4.0 tests=AWL,BAYES_00,DKIM_SIGNED,
 DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,RCVD_IN_MSPIKE_H2,SPF_HELO_NONE,
 SPF_NONE autolearn=ham autolearn_force=no version=3.4.2
Subject: Re: [ptxdist] [PATCH] openssl: Version bump. 1.1.1t -> 1.1.1s.
X-BeenThere: ptxdist@pengutronix.de
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: PTXdist Development Mailing List <ptxdist.pengutronix.de>
List-Unsubscribe: <http://metis.pengutronix.de/cgi-bin/mailman/options/ptxdist>, 
 <mailto:ptxdist-request@pengutronix.de?subject=unsubscribe>
List-Archive: <http://metis.pengutronix.de/cgi-bin/mailman/private/ptxdist/>
List-Post: <mailto:ptxdist@pengutronix.de>
List-Help: <mailto:ptxdist-request@pengutronix.de?subject=help>
List-Subscribe: <http://metis.pengutronix.de/cgi-bin/mailman/listinfo/ptxdist>, 
 <mailto:ptxdist-request@pengutronix.de?subject=subscribe>
Reply-To: ptxdist@pengutronix.de
Sender: "ptxdist" <ptxdist-bounces@pengutronix.de>
X-SA-Exim-Connect-IP: 127.0.0.1
X-SA-Exim-Mail-From: ptxdist-bounces@pengutronix.de
X-SA-Exim-Scanned: No (on metis.ext.pengutronix.de); SAEximRunCond expanded to false

Hi Christian!

On Wed, Feb 08, 2023 at 09:01:07AM +0100, Christian Melki wrote:
> Plug 4 CVEs.
> https://www.openssl.org/news/cl111.txt
> X.400 address type confusion in X.509 GeneralName (CVE-2023-0286)
> Use-after-free following BIO_new_NDEF (CVE-2023-0215)
> Double free after calling PEM_read_bio_ex (CVE-2022-4450)
> Timing Oracle in RSA Decryption (CVE-2022-4304)

seems bump text is reverted, should be 1.1.1s -> 1.1.1t...

	l.