Hello community, here is the log from the commit of package libressl for openSUSE:Factory checked in at 2015-11-12 19:41:13 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/libressl (Old) and /work/SRC/openSUSE:Factory/.libressl.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "libressl" Changes: -------- --- /work/SRC/openSUSE:Factory/libressl/libressl.changes 2015-10-20 00:06:09.000000000 +0200 +++ /work/SRC/openSUSE:Factory/.libressl.new/libressl.changes 2015-11-12 19:41:24.000000000 +0100 @@ -1,0 +2,14 @@ +Wed Nov 4 11:23:50 UTC 2015 - [email protected] + +- Update to new upstream release 2.3.1 +* ASN.1 cleanups and RFC5280 compliance fixes. +* Time representations switched from "unsigned long" to "time_t". + LibreSSL now checks if the host OS supports 64-bit time_t. +* Changed tls_connect_servername to use the first address that + resolves with getaddrinfo(). +* Fixed a memory leak and out-of-bounds access in OBJ_obj2txt, +* Fixed an up-to 7 byte overflow in RC4 when len is not a multiple + of sizeof(RC4_CHUNK). +- Drop CVE-2015-5333_CVE-2015-5334.patch (merged) + +------------------------------------------------------------------- Old: ---- CVE-2015-5333_CVE-2015-5334.patch libressl-2.3.0.tar.gz libressl-2.3.0.tar.gz.asc New: ---- libressl-2.3.1.tar.gz libressl-2.3.1.tar.gz.asc ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ libressl.spec ++++++ --- /var/tmp/diff_new_pack.Ot0t1u/_old 2015-11-12 19:41:25.000000000 +0100 +++ /var/tmp/diff_new_pack.Ot0t1u/_new 2015-11-12 19:41:25.000000000 +0100 @@ -17,7 +17,7 @@ Name: libressl -Version: 2.3.0 +Version: 2.3.1 Release: 0 Summary: An SSL/TLS protocol implementation License: OpenSSL @@ -30,7 +30,6 @@ Source2: http://ftp.openbsd.org/pub/OpenBSD/LibreSSL/%name-%version.tar.gz.asc Source3: %name.keyring Source4: baselibs.conf -Patch0: CVE-2015-5333_CVE-2015-5334.patch BuildRoot: %{_tmppath}/%{name}-%{version}-build BuildRequires: fdupes BuildRequires: pkg-config @@ -107,7 +106,6 @@ %prep %setup -q -%patch0 -p3 %build %configure --disable-static --enable-libtls ++++++ libressl-2.3.0.tar.gz -> libressl-2.3.1.tar.gz ++++++ ++++ 13326 lines of diff (skipped)
