commit openssl-1_0_0 for openSUSE:Factory

Wed, 29 Mar 2023 14:27:11 -0700 

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package openssl-1_0_0 for openSUSE:Factory 
checked in at 2023-03-29 23:26:48
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/openssl-1_0_0 (Old)
 and      /work/SRC/openSUSE:Factory/.openssl-1_0_0.new.31432 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Package is "openssl-1_0_0"

Wed Mar 29 23:26:48 2023 rev:32 rq:1074723 version:1.0.2u

Changes:
--------
--- /work/SRC/openSUSE:Factory/openssl-1_0_0/openssl-1_0_0.changes      
2023-02-21 15:35:35.400131129 +0100
+++ /work/SRC/openSUSE:Factory/.openssl-1_0_0.new.31432/openssl-1_0_0.changes   
2023-03-29 23:27:01.683407866 +0200
@@ -1,0 +2,12 @@
+Mon Mar 27 11:58:44 UTC 2023 - Otto Hollmann <otto.hollm...@suse.com>
+
+- Security Fix: [CVE-2023-0464, bsc#1209624]
+  * Excessive Resource Usage Verifying X.509 Policy Constraints
+  * Add openssl-CVE-2023-0464.patch
+
+-------------------------------------------------------------------
+Wed Mar 15 14:52:48 UTC 2023 - Otto Hollmann <otto.hollm...@suse.com>
+
+- Pass over with spec-cleaner
+
+-------------------------------------------------------------------

New:
----
  openssl-CVE-2023-0464.patch

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Other differences:
------------------
++++++ openssl-1_0_0.spec ++++++
--- /var/tmp/diff_new_pack.U88efm/_old  2023-03-29 23:27:02.675412527 +0200
+++ /var/tmp/diff_new_pack.U88efm/_new  2023-03-29 23:27:02.679412545 +0200
@@ -120,6 +120,8 @@
 Patch96:        openssl-CVE-2023-0286.patch
 # PATCH-FIX-SUSE bsc#1202062 FIPS: Fix DH key generation in FIPS mode
 Patch97:        openssl-fips_fix_DH_key_generation.patch
+# PATCH-FIX-UPSTREAM: bsc#1209624, CVE-2023-0464 Excessive Resource Usage 
Verifying X.509 Policy Constraints
+Patch98:        openssl-CVE-2023-0464.patch
 # steam patches
 Patch100:       openssl-fix-cpuid_setup.patch
 # compat patches to build with soversion 10 (bsc#1175429)
@@ -184,9 +186,9 @@
 Summary:        Development files for OpenSSL
 License:        OpenSSL
 Group:          Development/Libraries/C and C++
-Recommends:     %{name} = %{version}
 Requires:       libopenssl1_0_0 = %{version}
 Requires:       pkgconfig(zlib)
+Recommends:     %{name} = %{version}
 # we need to have around only the exact version we are able to operate with
 Conflicts:      libopenssl-devel < %{version}
 Conflicts:      libopenssl-devel > %{version}
@@ -295,6 +297,7 @@
 %patch95 -p1
 %patch96 -p1
 %patch97 -p1
+%patch98 -p1
 
 # clean up patching leftovers
 find . -name '*.orig' -delete
@@ -358,15 +361,15 @@
     -Wall
 
 # Record mtime of changes file instead of build time to make build-compare work
-make -j1 PERL=perl -C crypto buildinf.h
+%make_build -j1 PERL=perl -C crypto buildinf.h
 CHANGES=`stat --format="%%y" %{SOURCE1}`
 cat crypto/buildinf.h
 sed -i -e "s|#define DATE .*|#define DATE \"built on: $CHANGES\"|" 
crypto/buildinf.h
 cat crypto/buildinf.h
 
 # Build the library
-make depend -j1
-make -j1
+%make_build depend -j1
+%make_build -j1
 LD_LIBRARY_PATH=`pwd` make rehash -j1
 popd > /dev/null
 done


++++++ openssl-CVE-2023-0464.patch ++++++
++++ 814 lines (skipped)

Reply via email to