public inbox for git-commits@fedoraproject.org
help / color / mirror / Atom feed
From: Tomas Mraz <tmraz@fedoraproject.org>
To: git-commits@fedoraproject.org
Subject: [rpms/openssl] rebase_40beta: - new upstream release fixing CVE-2011-0014 (OCSP stapling vulnerability)
Date: Tue, 09 Jun 2026 12:42:23 GMT [thread overview]
Message-ID: <178100894360.1.2641091465005609806.rpms-openssl-1caf3ae072b1@fedoraproject.org> (raw)
A new commit has been pushed.
Repo : rpms/openssl
Branch : rebase_40beta
Commit : 1caf3ae072b170bad3ab30066d41c72e3cb2ef75
Author : Tomas Mraz <tmraz@fedoraproject.org>
Date : 2011-02-10T15:41:44+01:00
Stats : +30/-26 in 5 file(s)
URL : https://src.fedoraproject.org/rpms/openssl/c/1caf3ae072b170bad3ab30066d41c72e3cb2ef75?branch=rebase_40beta
Log:
- new upstream release fixing CVE-2011-0014 (OCSP stapling vulnerability)
---
diff --git a/.gitignore b/.gitignore
index 3c6b80c..d8c4d6d 100644
--- a/.gitignore
+++ b/.gitignore
@@ -1,3 +1,4 @@
openssl-1.0.0a-usa.tar.bz2
/openssl-1.0.0b-usa.tar.bz2
/openssl-1.0.0c-usa.tar.bz2
+/openssl-1.0.0d-usa.tar.bz2
diff --git a/openssl-1.0.0c-version.patch b/openssl-1.0.0c-version.patch
deleted file mode 100644
index 4ac8277..0000000
--- a/openssl-1.0.0c-version.patch
+++ /dev/null
@@ -1,22 +0,0 @@
-diff -up openssl-1.0.0c/crypto/opensslv.h.version openssl-1.0.0c/crypto/opensslv.h
---- openssl-1.0.0c/crypto/opensslv.h.version 2010-12-03 11:55:54.000000000 +0100
-+++ openssl-1.0.0c/crypto/opensslv.h 2010-12-03 11:57:25.000000000 +0100
-@@ -25,7 +25,8 @@
- * (Prior to 0.9.5a beta1, a different scheme was used: MMNNFFRBB for
- * major minor fix final patch/beta)
- */
--#define OPENSSL_VERSION_NUMBER 0x1000003f
-+/* we have to keep the version number to not break the abi */
-+#define OPENSSL_VERSION_NUMBER 0x10000003
- #ifdef OPENSSL_FIPS
- #define OPENSSL_VERSION_TEXT "OpenSSL 1.0.0c-fips 2 Dec 2010"
- #else
-@@ -83,7 +84,7 @@
- * should only keep the versions that are binary compatible with the current.
- */
- #define SHLIB_VERSION_HISTORY ""
--#define SHLIB_VERSION_NUMBER "1.0.0"
-+#define SHLIB_VERSION_NUMBER "1.0.0c"
-
-
- #endif /* HEADER_OPENSSLV_H */
diff --git a/openssl-1.0.0d-version.patch b/openssl-1.0.0d-version.patch
new file mode 100644
index 0000000..da50fb4
--- /dev/null
+++ b/openssl-1.0.0d-version.patch
@@ -0,0 +1,22 @@
+diff -up openssl-1.0.0d/crypto/opensslv.h.version openssl-1.0.0d/crypto/opensslv.h
+--- openssl-1.0.0d/crypto/opensslv.h.version 2011-02-10 14:24:52.000000000 +0100
++++ openssl-1.0.0d/crypto/opensslv.h 2011-02-10 14:48:00.000000000 +0100
+@@ -25,7 +25,8 @@
+ * (Prior to 0.9.5a beta1, a different scheme was used: MMNNFFRBB for
+ * major minor fix final patch/beta)
+ */
+-#define OPENSSL_VERSION_NUMBER 0x1000004fL
++/* we have to keep the version number to not break the abi */
++#define OPENSSL_VERSION_NUMBER 0x10000003
+ #ifdef OPENSSL_FIPS
+ #define OPENSSL_VERSION_TEXT "OpenSSL 1.0.0d-fips 8 Feb 2011"
+ #else
+@@ -83,7 +84,7 @@
+ * should only keep the versions that are binary compatible with the current.
+ */
+ #define SHLIB_VERSION_HISTORY ""
+-#define SHLIB_VERSION_NUMBER "1.0.0"
++#define SHLIB_VERSION_NUMBER "1.0.0d"
+
+
+ #endif /* HEADER_OPENSSLV_H */
diff --git a/openssl.spec b/openssl.spec
index 95b4ccc..0c75dd5 100644
--- a/openssl.spec
+++ b/openssl.spec
@@ -20,8 +20,8 @@
Summary: A general purpose cryptography library with TLS implementation
Name: openssl
-Version: 1.0.0c
-Release: 4%{?dist}
+Version: 1.0.0d
+Release: 1%{?dist}
# We remove certain patented algorithms from the openssl source tarball
# with the hobble-openssl script which is included below.
Source: openssl-%{version}-usa.tar.bz2
@@ -59,7 +59,7 @@ Patch45: openssl-0.9.8j-env-nozlib.patch
Patch47: openssl-1.0.0-beta5-readme-warning.patch
Patch49: openssl-1.0.0-beta4-algo-doc.patch
Patch50: openssl-1.0.0-beta4-dtls1-abi.patch
-Patch51: openssl-1.0.0c-version.patch
+Patch51: openssl-1.0.0d-version.patch
Patch52: openssl-1.0.0b-aesni.patch
Patch53: openssl-1.0.0-name-hash.patch
Patch54: openssl-1.0.0c-speed-fips.patch
@@ -405,6 +405,9 @@ rm -rf $RPM_BUILD_ROOT/%{_libdir}/fipscanister.*
%postun -p /sbin/ldconfig
%changelog
+* Thu Feb 10 2011 Tomas Mraz <tmraz@redhat.com> 1.0.0d-1
+- new upstream release fixing CVE-2011-0014 (OCSP stapling vulnerability)
+
* Tue Feb 08 2011 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.0.0c-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
diff --git a/sources b/sources
index 16f9c6a..302a734 100644
--- a/sources
+++ b/sources
@@ -1 +1 @@
-4f47a00408abc9904788ba596992085f openssl-1.0.0c-usa.tar.bz2
+531c1627ff9701cb8540ee3bd03de5d7 openssl-1.0.0d-usa.tar.bz2
reply other threads:[~2026-06-09 12:42 UTC|newest]
Thread overview: [no followups] expand[flat|nested] mbox.gz Atom feed
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=178100894360.1.2641091465005609806.rpms-openssl-1caf3ae072b1@fedoraproject.org \
--to=tmraz@fedoraproject.org \
--cc=git-commits@fedoraproject.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox