[arch-commits] Commit in freeradius/trunk (PKGBUILD openssl-cve.patch)
Christian Hesse
eworm at archlinux.org
Thu Dec 6 12:48:19 UTC 2018
Date: Thursday, December 6, 2018 @ 12:48:19
Author: eworm
Revision: 411716
upgpkg: freeradius 3.0.17-7
fix openssl CVE detection
Modified:
freeradius/trunk/PKGBUILD
freeradius/trunk/openssl-cve.patch
-------------------+
PKGBUILD | 12 ++++++------
openssl-cve.patch | 13 +++++++++++--
2 files changed, 17 insertions(+), 8 deletions(-)
Modified: PKGBUILD
===================================================================
--- PKGBUILD 2018-12-06 12:36:32 UTC (rev 411715)
+++ PKGBUILD 2018-12-06 12:48:19 UTC (rev 411716)
@@ -4,7 +4,7 @@
pkgname=freeradius
pkgver=3.0.17
-pkgrel=6
+pkgrel=7
pkgdesc='The premier open source RADIUS server'
arch=('x86_64')
url="https://freeradius.org/"
@@ -23,12 +23,12 @@
'freeradius-sysusers.conf'
'freeradius-tmpfiles.conf'
'freeradius.service')
-sha512sums=('f4510d8e77eb7c72a21fbfad851f13460ff4b5a35f0b7bea6102076ceb71188a63b277fb7e4fcd9c3033b396b63e1bf0e455cc03608d7ab1380d1662407cb399'
+sha256sums=('3f03404b6e4a4f410e1f15ea2ababfec7f8a7ae8a49836d8a0c137436d913b96'
'SKIP'
- '77908c2f9e7bd526711f6057c827a0fd969dd2c9269df7a88d494112cc68c7f3ceb0fcde3d3c6358a14e4980505c57284787c8981e52856c7fc858d46a95a3dc'
- '890005b2129174568a3bf0e8963b683ab15550198b9478cc766c3ddcfd5167296cfce221c7592be354fe7dfe08e82484f826e55fd59b6291e86c8a4f78ca2d96'
- '5e196584c725885ae33b70d729729b52852f6a051445be3f9afd831564029820179f606e6c8d8554f8615e2b4b9b8d5203a32b8a81c04d4edfb96a377a213bae'
- '833bfd85218898af6f24e9356f1af60ba9e8f08a93fa93aafb53ba9ec49afdf23c7eeb897ac5939c2d7c6958076cbb3fbc0c075b741e4b9be2f70c3fef2014b6')
+ '57cb7c8e446b914301c0ae42c01cdb7c0b9e56f32ef57e7ea7e6fd6bc0ccb4fc'
+ '573c05df429405d8647f5b52f68f7ad13bf7392314d30154df770ab170d793f8'
+ 'f536a9aa972e3e42a6b1a6d8ee17166eb721c7cba2e80f60473811497c7bd8bc'
+ 'c469e1a3f9edad769da01c324779babe783ee85a9b53ce4638d3d2d09c7c8d4b')
prepare() {
cd "$srcdir"/freeradius-server-$pkgver
Modified: openssl-cve.patch
===================================================================
--- openssl-cve.patch 2018-12-06 12:36:32 UTC (rev 411715)
+++ openssl-cve.patch 2018-12-06 12:48:19 UTC (rev 411716)
@@ -1,8 +1,17 @@
diff --git a/src/main/tls.c b/src/main/tls.c
-index f60fa2dbd0..1545b1a0d2 100644
+index 6ab4f2cb9a..6e9e4a6156 100644
--- a/src/main/tls.c
+++ b/src/main/tls.c
-@@ -79,8 +79,8 @@ static libssl_defect_t libssl_defects[] =
+@@ -72,15 +72,15 @@ typedef struct libssl_defect {
+ static libssl_defect_t libssl_defects[] =
+ {
+ {
+- .low = 0x01010101f, /* 1.1.0a */
+- .high = 0x01010101f, /* 1.1.0a */
++ .low = 0x01010001f, /* 1.1.0a */
++ .high = 0x01010001f, /* 1.1.0a */
+ .id = "CVE-2016-6309",
+ .name = "OCSP status request extension",
.comment = "For more information see https://www.openssl.org/news/secadv/20160926.txt"
},
{
More information about the arch-commits
mailing list