Patchwork [dora,0/6] OpenSSL CVE fixes for the dora branch

login
register
mail settings
Submitter Paul Eggleton
Date June 9, 2014, 3:53 p.m.
Message ID <cover.1402329156.git.paul.eggleton@linux.intel.com>
Download mbox
Permalink /patch/73523/
State Accepted, archived
Headers show

Pull-request

git://git.openembedded.org/openembedded-core-contrib paule/openssl-dora

Comments

Paul Eggleton - June 9, 2014, 3:53 p.m.
The following changes since commit 68da848e0f7f026bf18707d8d59143177ff66f9b:

  gnutls: patch for CVE-2014-3466 backported (2014-06-06 10:27:11 +0100)

are available in the git repository at:

  git://git.openembedded.org/openembedded-core-contrib paule/openssl-dora
  http://cgit.openembedded.org/cgit.cgi/openembedded-core-contrib/log/?h=paule/openssl-dora

Paul Eggleton (5):
  openssl: fix CVE-2014-0195
  openssl: use upstream fix for CVE-2014-0198
  openssl: fix CVE-2014-0221
  openssl: fix CVE-2014-0224
  openssl: fix CVE-2014-3470

Yue Tao (1):
  openssl: fix for CVE-2010-5298

 .../openssl-1.0.1e-cve-2014-0195.patch             |  40 ++++++++
 .../openssl-1.0.1e-cve-2014-0198.patch             |  38 ++++++++
 .../openssl-1.0.1e-cve-2014-0221.patch             |  38 ++++++++
 .../openssl-1.0.1e-cve-2014-0224.patch             | 103 +++++++++++++++++++++
 .../openssl-1.0.1e-cve-2014-3470.patch             |  31 +++++++
 .../openssl-1.0.1e/openssl-CVE-2010-5298.patch     |  24 +++++
 .../openssl-1.0.1e/openssl-CVE-2014-0198-fix.patch |  23 -----
 .../recipes-connectivity/openssl/openssl_1.0.1e.bb |   7 +-
 8 files changed, 280 insertions(+), 24 deletions(-)
 create mode 100644 meta/recipes-connectivity/openssl/openssl-1.0.1e/openssl-1.0.1e-cve-2014-0195.patch
 create mode 100644 meta/recipes-connectivity/openssl/openssl-1.0.1e/openssl-1.0.1e-cve-2014-0198.patch
 create mode 100644 meta/recipes-connectivity/openssl/openssl-1.0.1e/openssl-1.0.1e-cve-2014-0221.patch
 create mode 100644 meta/recipes-connectivity/openssl/openssl-1.0.1e/openssl-1.0.1e-cve-2014-0224.patch
 create mode 100644 meta/recipes-connectivity/openssl/openssl-1.0.1e/openssl-1.0.1e-cve-2014-3470.patch
 create mode 100644 meta/recipes-connectivity/openssl/openssl-1.0.1e/openssl-CVE-2010-5298.patch
 delete mode 100644 meta/recipes-connectivity/openssl/openssl-1.0.1e/openssl-CVE-2014-0198-fix.patch