[packages/openssl102: 428/432] up to 1.0.2n [7 Dec 2017]; CVE-2017-3737; CVE-2017-3738

Sat Sep 29 01:37:31 CEST 2018

commit 4be8b21426b79646311ddb30f49135f4bbc51d76
Author: Elan Ruusamäe <glen at pld-linux.org>
Date:   Sat Dec 9 13:40:29 2017 +0200

    up to 1.0.2n [7 Dec 2017]; CVE-2017-3737; CVE-2017-3738
    
    - Read/write after SSL object in error state (CVE-2017-3737)
    - rsaz_1024_mul_avx2 overflow bug on x86_64 (CVE-2017-3738)
    
    https://www.openssl.org/news/openssl-1.0.2-notes.html

 openssl-find.patch | 11 +++++++++++
 openssl.spec       |  6 +++---
 2 files changed, 14 insertions(+), 3 deletions(-)
---

diff --git a/openssl.spec b/openssl.spec
index dcaba4e..8e88d61 100644
--- a/openssl.spec
+++ b/openssl.spec
@@ -24,13 +24,13 @@ Name:		openssl
 # 1.0.2 will be LTS release
 # Version 1.0.2 will be supported until 2019-12-31.
 # https://www.openssl.org/about/releasestrat.html
-Version:	1.0.2m
+Version:	1.0.2n
 Release:	1
 License:	Apache-like
 Group:		Libraries
 %if %{without snap}
 Source0:	https://www.openssl.org/source/%{name}-%{version}.tar.gz
-# Source0-md5:	10e9e37f492094b9ef296f68f24a7666
+# Source0-md5:	13bdc1b1d1ff39b6fd42a255e74676a4
 %else
 Source1:	https://github.com/openssl/openssl/archive/OpenSSL_1_0_2-stable/%{name}-%{version}-dev.tar.gz
 # Source1-md5:	6b846f8a4f55f5ddfa1e0d335241840a
@@ -286,7 +286,7 @@ sed -i -e 's|\$prefix/\$libdir/engines|/%{_lib}/engines|g' Configure
 %build
 touch Makefile.*
 
-PERL5LIB=$(pwd) %{__perl} util/perlpath.pl %{__perl}
+%{__perl} util/perlpath.pl %{__perl}
 
 OPTFLAGS="%{rpmcflags} %{rpmcppflags} %{?with_purify:-DPURIFY}" \
 PERL="%{__perl}" \
diff --git a/openssl-find.patch b/openssl-find.patch
index 8ca7a55..30f6d8b 100644
--- a/openssl-find.patch
+++ b/openssl-find.patch
@@ -59,3 +59,14 @@ index 0000000..8e1b42c
 +
 +1;
 
+--- openssl-1.0.2m/util/perlpath.pl~	2017-10-26 23:34:32.000000000 +0300
++++ openssl-1.0.2m/util/perlpath.pl	2017-11-01 13:08:24.963877348 +0200
+@@ -4,7 +4,7 @@
+ # line in all scripts that rely on perl.
+ #
+ 
+-require "find.pl";
++require "./find.pl";
+ 
+ $#ARGV == 0 || print STDERR "usage: perlpath newpath  (eg /usr/bin)\n";
+ &find(".");
================================================================

---- gitweb:

http://git.pld-linux.org/gitweb.cgi/packages/openssl102.git/commitdiff/9fc1b1b87b259e8a327c99835865e91a391efc9e

