From 930d661bb5ada878559fe3e65cd9f532b51717e9 Mon Sep 17 00:00:00 2001 From: Erik Faye-Lund Date: Thu, 5 Jun 2014 17:33:54 +0200 Subject: [PATCH] openssl: update release script to use version 0.9.8za On advice from OpenSSL Security Advisory [05 Jun 2014], we should upgrade OpenSSL to version 0.9.8za ASAP. CVE-2014-0195 is especially nasty, as it allows arbitrary code execution. http://www.openssl.org/news/secadv_20140605.txt Include a patch to make sure this compiles. Signed-off-by: Erik Faye-Lund --- .../0008-include-limits.h-for-INT_MAX.patch | 24 ++++++++++++++++++++++ src/openssl/release.sh | 2 +- 2 files changed, 25 insertions(+), 1 deletion(-) create mode 100644 src/openssl/patches/0008-include-limits.h-for-INT_MAX.patch diff --git a/src/openssl/patches/0008-include-limits.h-for-INT_MAX.patch b/src/openssl/patches/0008-include-limits.h-for-INT_MAX.patch new file mode 100644 index 00000000..47eafa52 --- /dev/null +++ b/src/openssl/patches/0008-include-limits.h-for-INT_MAX.patch @@ -0,0 +1,24 @@ +From 4ea960d7154b1e51b24dd0fea61613b6b0574297 Mon Sep 17 00:00:00 2001 +From: Erik Faye-Lund +Date: Thu, 5 Jun 2014 17:19:43 +0200 +Subject: [PATCH] include limits.h for INT_MAX + +--- + ssl/s3_pkt.c | 1 + + 1 file changed, 1 insertion(+) + +diff --git a/ssl/s3_pkt.c b/ssl/s3_pkt.c +index c087fee..32a7a29 100644 +--- a/ssl/s3_pkt.c ++++ b/ssl/s3_pkt.c +@@ -111,6 +111,7 @@ + + #include + #include ++#include + #define USE_SOCKETS + #include "ssl_locl.h" + #include +-- +1.9.2.msysgit.0.161.g83227c1 + diff --git a/src/openssl/release.sh b/src/openssl/release.sh index 25ac4678..183cba8f 100644 --- a/src/openssl/release.sh +++ b/src/openssl/release.sh @@ -2,7 +2,7 @@ cd "$(dirname "$0")" -VERSION=0.9.8y +VERSION=0.9.8za DIR=openssl-$VERSION URL=http://www.openssl.org/source/$DIR.tar.gz FILE=${URL##*/} -- 2.11.4.GIT