[arch-commits] Commit in freeradius/trunk (PKGBUILD openssl-cve.patch)

Christian Hesse eworm at archlinux.org
Thu Dec 6 12:48:19 UTC 2018 

    Date: Thursday, December 6, 2018 @ 12:48:19
  Author: eworm
Revision: 411716

upgpkg: freeradius 3.0.17-7

fix openssl CVE detection

Modified:
  freeradius/trunk/PKGBUILD
  freeradius/trunk/openssl-cve.patch

-------------------+
 PKGBUILD          |   12 ++++++------
 openssl-cve.patch |   13 +++++++++++--
 2 files changed, 17 insertions(+), 8 deletions(-)

Modified: PKGBUILD
===================================================================
--- PKGBUILD	2018-12-06 12:36:32 UTC (rev 411715)
+++ PKGBUILD	2018-12-06 12:48:19 UTC (rev 411716)
@@ -4,7 +4,7 @@
 
 pkgname=freeradius
 pkgver=3.0.17
-pkgrel=6
+pkgrel=7
 pkgdesc='The premier open source RADIUS server'
 arch=('x86_64')
 url="https://freeradius.org/"
@@ -23,12 +23,12 @@
         'freeradius-sysusers.conf'
         'freeradius-tmpfiles.conf'
         'freeradius.service')
-sha512sums=('f4510d8e77eb7c72a21fbfad851f13460ff4b5a35f0b7bea6102076ceb71188a63b277fb7e4fcd9c3033b396b63e1bf0e455cc03608d7ab1380d1662407cb399'
+sha256sums=('3f03404b6e4a4f410e1f15ea2ababfec7f8a7ae8a49836d8a0c137436d913b96'
             'SKIP'
-            '77908c2f9e7bd526711f6057c827a0fd969dd2c9269df7a88d494112cc68c7f3ceb0fcde3d3c6358a14e4980505c57284787c8981e52856c7fc858d46a95a3dc'
-            '890005b2129174568a3bf0e8963b683ab15550198b9478cc766c3ddcfd5167296cfce221c7592be354fe7dfe08e82484f826e55fd59b6291e86c8a4f78ca2d96'
-            '5e196584c725885ae33b70d729729b52852f6a051445be3f9afd831564029820179f606e6c8d8554f8615e2b4b9b8d5203a32b8a81c04d4edfb96a377a213bae'
-            '833bfd85218898af6f24e9356f1af60ba9e8f08a93fa93aafb53ba9ec49afdf23c7eeb897ac5939c2d7c6958076cbb3fbc0c075b741e4b9be2f70c3fef2014b6')
+            '57cb7c8e446b914301c0ae42c01cdb7c0b9e56f32ef57e7ea7e6fd6bc0ccb4fc'
+            '573c05df429405d8647f5b52f68f7ad13bf7392314d30154df770ab170d793f8'
+            'f536a9aa972e3e42a6b1a6d8ee17166eb721c7cba2e80f60473811497c7bd8bc'
+            'c469e1a3f9edad769da01c324779babe783ee85a9b53ce4638d3d2d09c7c8d4b')
 
 prepare() {
   cd "$srcdir"/freeradius-server-$pkgver

Modified: openssl-cve.patch
===================================================================
--- openssl-cve.patch	2018-12-06 12:36:32 UTC (rev 411715)
+++ openssl-cve.patch	2018-12-06 12:48:19 UTC (rev 411716)
@@ -1,8 +1,17 @@
 diff --git a/src/main/tls.c b/src/main/tls.c
-index f60fa2dbd0..1545b1a0d2 100644
+index 6ab4f2cb9a..6e9e4a6156 100644
 --- a/src/main/tls.c
 +++ b/src/main/tls.c
-@@ -79,8 +79,8 @@ static libssl_defect_t libssl_defects[] =
+@@ -72,15 +72,15 @@ typedef struct libssl_defect {
+ static libssl_defect_t libssl_defects[] =
+ {
+ 	{
+-		.low		= 0x01010101f,		/* 1.1.0a */
+-		.high		= 0x01010101f,		/* 1.1.0a */
++		.low		= 0x01010001f,		/* 1.1.0a */
++		.high		= 0x01010001f,		/* 1.1.0a */
+ 		.id		= "CVE-2016-6309",
+ 		.name		= "OCSP status request extension",
  		.comment	= "For more information see https://www.openssl.org/news/secadv/20160926.txt"
  	},
  	{

More information about the arch-commits mailing list