]> code.ossystems Code Review - openembedded-core.git/commit
Code Review / openembedded-core.git / commit
? search:
summary | shortlog | log | commit | commitdiff | review | tree
(parent: eaf176e) | patch
openssl: Upgrade to v1.0.1g
authorCristiana Voicu <cristiana.voicu@intel.com>
Tue, 8 Apr 2014 11:49:48 +0000 (14:49 +0300)
committerRichard Purdie <richard.purdie@linuxfoundation.org>
Tue, 8 Apr 2014 16:45:04 +0000 (17:45 +0100)
commitff52836e1838590eeec7d7658e15b21d83cf8455
treec10df5c56df5e2fc26079f27774fe04581389ec4tree | snapshot
parenteaf176eaabb4c558ad76512b30b28ec97fd90bc6commit | diff
openssl: Upgrade to v1.0.1g

The trigger for the upgrade was the serious "heartbleed" vulnerability
(CVE-2014-0160). More information:
http://www.itnews.com.au/News/382068,serious-openssl-bug-renders-websites-wide-open.aspx

Dropped obsolete patches, because the new version contains them:
        0001-Fix-for-TLS-record-tampering-bug-CVE-2013-4353.patch
        0001-Fix-DTLS-retransmission-from-previous-session.patch
        0001-Use-version-in-SSL_METHOD-not-SSL-structure.patch

Modified 2 patches (small changes), in order to apply properly:
        initial-aarch64-bits.patch
        openssl-fix-doc.patch

Addresses CVEs:
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0160
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0076

Signed-off-by: Cristiana Voicu <cristiana.voicu@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
30 files changed:
meta/recipes-connectivity/openssl/openssl-1.0.1e/0001-Fix-DTLS-retransmission-from-previous-session.patch [deleted file] blob | history
meta/recipes-connectivity/openssl/openssl-1.0.1e/0001-Fix-for-TLS-record-tampering-bug-CVE-2013-4353.patch [deleted file] blob | history
meta/recipes-connectivity/openssl/openssl-1.0.1e/0001-Use-version-in-SSL_METHOD-not-SSL-structure.patch [deleted file] blob | history
meta/recipes-connectivity/openssl/openssl-1.0.1e/initial-aarch64-bits.patch [deleted file] blob | history
meta/recipes-connectivity/openssl/openssl-1.0.1e/openssl-fix-doc.patch [deleted file] blob | history
meta/recipes-connectivity/openssl/openssl.inc diff | blob | history
meta/recipes-connectivity/openssl/openssl/configure-targets.patch [moved from meta/recipes-connectivity/openssl/openssl-1.0.1e/configure-targets.patch with 100% similarity] blob | history
meta/recipes-connectivity/openssl/openssl/debian/c_rehash-compat.patch [moved from meta/recipes-connectivity/openssl/openssl-1.0.1e/debian/c_rehash-compat.patch with 100% similarity] blob | history
meta/recipes-connectivity/openssl/openssl/debian/ca.patch [moved from meta/recipes-connectivity/openssl/openssl-1.0.1e/debian/ca.patch with 100% similarity] blob | history
meta/recipes-connectivity/openssl/openssl/debian/debian-targets.patch [moved from meta/recipes-connectivity/openssl/openssl-1.0.1e/debian/debian-targets.patch with 100% similarity] blob | history
meta/recipes-connectivity/openssl/openssl/debian/make-targets.patch [moved from meta/recipes-connectivity/openssl/openssl-1.0.1e/debian/make-targets.patch with 100% similarity] blob | history
meta/recipes-connectivity/openssl/openssl/debian/man-dir.patch [moved from meta/recipes-connectivity/openssl/openssl-1.0.1e/debian/man-dir.patch with 100% similarity] blob | history
meta/recipes-connectivity/openssl/openssl/debian/man-section.patch [moved from meta/recipes-connectivity/openssl/openssl-1.0.1e/debian/man-section.patch with 100% similarity] blob | history
meta/recipes-connectivity/openssl/openssl/debian/no-rpath.patch [moved from meta/recipes-connectivity/openssl/openssl-1.0.1e/debian/no-rpath.patch with 100% similarity] blob | history
meta/recipes-connectivity/openssl/openssl/debian/no-symbolic.patch [moved from meta/recipes-connectivity/openssl/openssl-1.0.1e/debian/no-symbolic.patch with 100% similarity] blob | history
meta/recipes-connectivity/openssl/openssl/debian/pic.patch [moved from meta/recipes-connectivity/openssl/openssl-1.0.1e/debian/pic.patch with 100% similarity] blob | history
meta/recipes-connectivity/openssl/openssl/debian/version-script.patch [moved from meta/recipes-connectivity/openssl/openssl-1.0.1e/debian/version-script.patch with 100% similarity] blob | history
meta/recipes-connectivity/openssl/openssl/engines-install-in-libdir-ssl.patch [moved from meta/recipes-connectivity/openssl/openssl-1.0.1e/engines-install-in-libdir-ssl.patch with 100% similarity] blob | history
meta/recipes-connectivity/openssl/openssl/find.pl [moved from meta/recipes-connectivity/openssl/openssl-1.0.1e/find.pl with 100% similarity] blob | history
meta/recipes-connectivity/openssl/openssl/fix-cipher-des-ede3-cfb1.patch [moved from meta/recipes-connectivity/openssl/openssl-1.0.1e/fix-cipher-des-ede3-cfb1.patch with 100% similarity] blob | history
meta/recipes-connectivity/openssl/openssl/initial-aarch64-bits.patch [new file with mode: 0644] blob
meta/recipes-connectivity/openssl/openssl/oe-ldflags.patch [moved from meta/recipes-connectivity/openssl/openssl-1.0.1e/oe-ldflags.patch with 100% similarity] blob | history
meta/recipes-connectivity/openssl/openssl/openssl-avoid-NULL-pointer-dereference-in-EVP_DigestInit_ex.patch [moved from meta/recipes-connectivity/openssl/openssl-1.0.1e/openssl-avoid-NULL-pointer-dereference-in-EVP_DigestInit_ex.patch with 100% similarity] blob | history
meta/recipes-connectivity/openssl/openssl/openssl-avoid-NULL-pointer-dereference-in-dh_pub_encode.patch [moved from meta/recipes-connectivity/openssl/openssl-1.0.1e/openssl-avoid-NULL-pointer-dereference-in-dh_pub_encode.patch with 100% similarity] blob | history
meta/recipes-connectivity/openssl/openssl/openssl-fix-des.pod-error.patch [moved from meta/recipes-connectivity/openssl/openssl-1.0.1e/openssl-fix-des.pod-error.patch with 100% similarity] blob | history
meta/recipes-connectivity/openssl/openssl/openssl-fix-doc.patch [new file with mode: 0644] blob
meta/recipes-connectivity/openssl/openssl/openssl-fix-link.patch [moved from meta/recipes-connectivity/openssl/openssl-1.0.1e/openssl-fix-link.patch with 100% similarity] blob | history
meta/recipes-connectivity/openssl/openssl/openssl_fix_for_x32.patch [moved from meta/recipes-connectivity/openssl/openssl-1.0.1e/openssl_fix_for_x32.patch with 100% similarity] blob | history
meta/recipes-connectivity/openssl/openssl/shared-libs.patch [moved from meta/recipes-connectivity/openssl/openssl-1.0.1e/shared-libs.patch with 100% similarity] blob | history
meta/recipes-connectivity/openssl/openssl_1.0.1g.bb [moved from meta/recipes-connectivity/openssl/openssl_1.0.1e.bb with 81% similarity] diff | blob | history
Mirror of the official openembedded-core repository