packages: openssl/openssl.spec - up to 0.9.8n CVE-2010-0740 security fix ...

glen glen at pld-linux.org
Fri Mar 26 08:37:36 CET 2010 

Author: glen                         Date: Fri Mar 26 07:37:36 2010 GMT
Module: packages                      Tag: HEAD
---- Log message:
- up to 0.9.8n
  CVE-2010-0740 security fix release

---- Files affected:
packages/openssl:
   openssl.spec (1.211 -> 1.212) 

---- Diffs:

================================================================
Index: packages/openssl/openssl.spec
diff -u packages/openssl/openssl.spec:1.211 packages/openssl/openssl.spec:1.212
--- packages/openssl/openssl.spec:1.211	Wed Mar 24 11:02:56 2010
+++ packages/openssl/openssl.spec	Fri Mar 26 08:37:31 2010
@@ -4,7 +4,7 @@
 %bcond_without	tests	# don't perform "make tests"
 %bcond_with	purify	# Compile openssl with \-DPURIFY, useful when one wants to
 			# use valgrind debugger against openssl-linked programs
-#
+
 %include	/usr/lib/rpm/macros.perl
 Summary:	OpenSSL Toolkit libraries for the "Secure Sockets Layer" (SSL v2/v3)
 Summary(de.UTF-8):	Secure Sockets Layer (SSL)-Kommunikationslibrary
@@ -15,12 +15,12 @@
 Summary(ru.UTF-8):	Библиотеки и утилиты для соединений через Secure Sockets Layer
 Summary(uk.UTF-8):	Бібліотеки та утиліти для з'єднань через Secure Sockets Layer
 Name:		openssl
-Version:	0.9.8m
-Release:	2
+Version:	0.9.8n
+Release:	1
 License:	Apache-like
 Group:		Libraries
 Source0:	ftp://ftp.openssl.org/source/%{name}-%{version}.tar.gz
-# Source0-md5:	898bf125370926d5f692a2201124f8ec
+# Source0-md5:	076d8efc3ed93646bd01f04e23c07066
 Source2:	%{name}.1.pl
 Source3:	%{name}-ssl-certificate.sh
 Source4:	%{name}-c_rehash.sh
@@ -39,12 +39,12 @@
 BuildRequires:	rpm-perlprov >= 4.1-13
 BuildRequires:	rpmbuild(macros) >= 1.213
 BuildRequires:	sed >= 4.0
+Requires:	ca-certificates >= 20080809-4
+Requires:	rpm-whiteout >= 1.7
 Obsoletes:	SSLeay
 Obsoletes:	SSLeay-devel
 Obsoletes:	SSLeay-perl
 Obsoletes:	libopenssl0
-Requires:	ca-certificates >= 20080809-4
-Requires:	rpm-whiteout >= 1.7
 BuildRoot:	%{tmpdir}/%{name}-%{version}-root-%(id -u -n)
 
 %description
@@ -315,9 +315,9 @@
 # not installed as individual utilities (see openssl dgst instead)
 %{__rm} $RPM_BUILD_ROOT%{_mandir}/man1/{md2,md4,md5,mdc2,ripemd160,sha,sha1}.1
 
-install %{SOURCE2} $RPM_BUILD_ROOT%{_mandir}/pl/man1/openssl.1
-install %{SOURCE3} $RPM_BUILD_ROOT%{_bindir}/ssl-certificate
-install %{SOURCE4} $RPM_BUILD_ROOT%{_bindir}/c_rehash.sh
+cp -a %{SOURCE2} $RPM_BUILD_ROOT%{_mandir}/pl/man1/openssl.1
+install -p %{SOURCE3} $RPM_BUILD_ROOT%{_bindir}/ssl-certificate
+install -p %{SOURCE4} $RPM_BUILD_ROOT%{_bindir}/c_rehash.sh
 
 %clean
 rm -rf $RPM_BUILD_ROOT
@@ -455,6 +455,10 @@
 All persons listed below can be reached at <cvs_login>@pld-linux.org
 
 $Log$
+Revision 1.212  2010/03/26 07:37:31  glen
+- up to 0.9.8n
+  CVE-2010-0740 security fix release
+
 Revision 1.211  2010/03/24 10:02:56  baggins
 - rel 2
 - tools require which for c_rehash.sh
@@ -689,7 +693,7 @@
 
 Revision 1.142  2005/10/12 11:15:42  havner
 - 0.9.7h
-[fixes CAN-2005-2969]
+  [fixes CAN-2005-2969]
 
 Revision 1.141  2005/08/27 14:37:04  arekm
 - rel 3
@@ -708,7 +712,7 @@
 - use x8664 macro
 
 Revision 1.138  2005/05/11 02:48:14  pluto
-- exclude invalid libfips.so symlink from %%files.
+- exclude invalid libfips.so symlink from %files.
 
 Revision 1.137  2005/04/15 22:08:33  qboosh
 - updated to 0.9.7g
@@ -745,7 +749,7 @@
 - added ia64, sorted archs
 
 Revision 1.127  2004/06/24 00:17:27  pluto
-- %%install: %%{__cc} added.
+- %install: %{__cc} added.
 
 Revision 1.126  2004/06/23 23:51:49  pluto
 - more sparc targets.
@@ -844,7 +848,7 @@
 - updated to 0.9.7b
 - removed patch 4 & 5 (not needed)
 - rel 0.1
-Note: Test me
+  Note: Test me
 
 Revision 1.97  2003/03/20 09:59:34  djrzulf
 - added BR: perl-tools-pod
@@ -884,7 +888,7 @@
 We strongly advise upgrading OpenSSL in all cases, as a precaution.
 
 Revision 1.93  2003/03/03 08:52:07  trojan
-- s/#%{/#%%{/
+- s/#%{/#%{/
 
 Revision 1.92  2003/03/02 21:36:53  radek
 - use the __perl macro
@@ -930,7 +934,7 @@
 - updated to 0.9.6f (more security fixes)
 
 Revision 1.77.2.4  2002/08/08 08:04:12  qboosh
-- new %%doc
+- new %doc
 
 Revision 1.77.2.3  2002/07/30 17:53:21  qboosh
 - added 2 missing man pages
@@ -946,7 +950,7 @@
 - merge translations from KSI and Conectiva.
 
 Revision 1.76  2002/04/19 09:40:12  wiget
-one more fix in nocrypt.patch (openssl/des.h must not define prototype of crypt()), release 9
+- one more fix in nocrypt.patch (openssl/des.h must not define prototype of crypt()), release 9
 
 Revision 1.75  2002/03/17 11:34:53  kloczek
 - fix: move ca-bundle.crt to main package.
@@ -954,7 +958,7 @@
 Revision 1.74  2002/03/17 09:23:54  kloczek
 - release 8,
 - added to bundle CA Root Certificates Unizeto certificates,
-- use CC=%%{__cc} on compile.
+- use CC=%{__cc} on compile.
 
 Revision 1.73  2002/03/06 16:45:47  kloczek
 - removed all embeded stuff.
@@ -991,13 +995,13 @@
 - rel 6
 
 Revision 1.63  2002/01/18 02:14:07  kloczek
-perl -pi -e "s/pld-list\@pld.org.pl/feedback\@pld.org.pl/"
+- perl -pi -e "s/pld-list\@pld.org.pl/feedback\@pld.org.pl/"
 
 Revision 1.62  2002/01/03 06:33:47  kloczek
 - release 5: libopenssl0{,-devel} added to Obsoletes for allow upgrade from MDK.
 
 Revision 1.61  2001/11/20 17:12:05  wiget
-remove crypt(3) from libcrypto;release 4
+- remove crypt(3) from libcrypto;release 4
 
 Revision 1.60  2001/07/15 11:46:45  kloczek
 - release 3: basck to SONAME 0.9.6.1.
@@ -1009,7 +1013,7 @@
 - 0.9.6b - security and bug fixes release
 
 Revision 1.57  2001/05/24 18:02:00  misiek
-release 4
+- release 4
 
 Revision 1.56  2001/05/24 17:05:24  serek
 - link correction.
@@ -1020,27 +1024,27 @@
 - simplifications in %build and %install.
 
 Revision 1.54  2001/05/07 14:56:43  wiget
-use patch1
+- use patch1
 
 Revision 1.53  2001/05/07 14:22:15  wiget
-add soname patch (fix ABI brakage)
+- add soname patch (fix ABI brakage)
 
 Revision 1.52  2001/05/04 15:22:56  wiget
-0.9.6a
+- 0.9.6a
 
 Revision 1.51  2001/05/01 23:30:51  misiek
 - fix _all_ perl paths
 - package need update to 0.9.6a (since few important bug were fixed)
 
 Revision 1.50  2001/04/30 16:05:25  kloczek
-- added using %%{rpmcflags} macro.
+- added using %{rpmcflags} macro.
 
 Revision 1.49  2001/04/17 12:04:54  baggins
 - release 6
 - rebuild with perl 5.6.1
 
 Revision 1.48  2001/01/25 20:03:42  misiek
-Massive attack. We use -O0 instead -O flags while debug enabled.
+- Massive attack. We use -O0 instead -O flags while debug enabled.
 
 Revision 1.47  2000/12/28 15:06:51  baggins
 - release 5
@@ -1048,14 +1052,14 @@
 - fixed lib*.so install
 
 Revision 1.46  2000/12/23 00:48:46  michuz
-- changed %%{!?debug:...}%%{?debug...} to %%{?debug:...}%%{!?debug...}
+- changed %{!?debug:...}%{?debug...} to %{?debug:...}%{!?debug...}
   (now it's more C like)
 
 Revision 1.45  2000/11/29 16:20:08  dobrek
--removed compilation using compaq compiler.
+- removed compilation using compaq compiler.
 
 Revision 1.44  2000/11/21 00:02:22  kloczek
-- replace all "-mcpu=ultrasparc" by %%{optflags} for generate correct
+- replace all "-mcpu=ultrasparc" by %{optflags} for generate correct
   binaries on sparc32/sparc64.
 
 Revision 1.43  2000/11/20 23:58:23  kloczek
@@ -1075,7 +1079,7 @@
 - changed Group to Applications/Communications in tools, tools-perl.
 
 Revision 1.39  2000/10/12 12:26:52  wiget
-fix install
+- fix install
 
 Revision 1.38  2000/10/10 12:02:52  wiget
 - Release: 2
@@ -1109,11 +1113,11 @@
   I'm not sure that "openssl-libs" name is a good choice, fix me if not.
 
 Revision 1.33  2000/06/09 07:23:27  kloczek
-- added using %%{__make} macro.
+- added using %{__make} macro.
 
 Revision 1.32  2000/05/26 00:11:46  kloczek
 - release 3,
-- added %dir %%{_sysconfdir} to %files.
+- added %dir %{_sysconfdir} to %files.
 
 Revision 1.31  2000/05/24 18:14:06  kloczek
 - release 2.
@@ -1126,14 +1130,14 @@
 
 Revision 1.28  2000/05/10 17:58:25  kloczek
 - fixed %install,
-WARNING: current adapter.awk have bug (replaces all "rm -rf $RPM_BUILD_ROOT*"
-by "rm -rf $RPM_BUILD_ROOT").
+  WARNING: current adapter.awk have bug (replaces all "rm -rf $RPM_BUILD_ROOT*"
+  by "rm -rf $RPM_BUILD_ROOT").
 
 Revision 1.27  2000/05/10 17:18:59  kloczek
 - spec adapterized.
 
 Revision 1.26  2000/05/10 11:58:10  wiget
-0.9.5a
+- 0.9.5a
 
 Revision 1.25  2000/04/25 16:16:48  baggins
 - release++
@@ -1149,15 +1153,15 @@
 - translated kloczkish into english
 
 Revision 1.22  2000/03/03 10:59:41  wiget
-updated to 0.9.5
+- updated to 0.9.5
 
 Revision 1.21  2000/01/15 14:36:29  kloczek
 - added fr Summary (from MDK).
 
 Revision 1.20  1999/12/21 22:31:28  wiget
 - removed patch changing libcrypto -> libsslcrypto
- Now all other packages whats depend to openssl must have
- BuildPrereq: openssl-devel >= 0.9.4-2
+  Now all other packages whats depend to openssl must have
+  BuildPrereq: openssl-devel >= 0.9.4-2
 
 Revision 1.19  1999/09/13 08:01:25  jajcus
 - fixed BR#72 (mv -> cp -d)
@@ -1180,8 +1184,3 @@
 
 Revision 1.13  1999/07/12 23:06:12  kloczek
 - added using CVS keywords in %changelog (for automating them).
-
-* Wed Apr 14 1999 Artur Frysiak <wiget at pld.org.pl>
-  [0.9.2c-2]
-- rewrite for PLD
-TODO: make shared libs and perl subpackage
================================================================

---- CVS-web:
    http://cvs.pld-linux.org/cgi-bin/cvsweb.cgi/packages/openssl/openssl.spec?r1=1.211&r2=1.212&f=u

More information about the pld-cvs-commit mailing list