Patchwork [dylan,0/6] OpenSSL CVE fixes for the dylan branch (cover letter only)

login
register
mail settings
Submitter Paul Eggleton
Date June 9, 2014, 3:56 p.m.
Message ID <cover.1402329276.git.paul.eggleton@linux.intel.com>
Download mbox
Permalink /patch/73537/
State Accepted, archived
Headers show

Pull-request

git://git.openembedded.org/openembedded-core-contrib paule/openssl-dylan

Comments

Paul Eggleton - June 9, 2014, 3:56 p.m.
These are the exact same patches as in the dora series, so for the sake
of people's inboxes I won't repeat them.


The following changes since commit 7ff1924674871d604f9656f3928b91dc417c7246:

  gnutls: patch for CVE-2014-3466 backported (2014-06-06 10:27:23 +0100)

are available in the git repository at:

  git://git.openembedded.org/openembedded-core-contrib paule/openssl-dylan
  http://cgit.openembedded.org/cgit.cgi/openembedded-core-contrib/log/?h=paule/openssl-dylan

Paul Eggleton (5):
  openssl: fix CVE-2014-0195
  openssl: use upstream fix for CVE-2014-0198
  openssl: fix CVE-2014-0221
  openssl: fix CVE-2014-0224
  openssl: fix CVE-2014-3470

Yue Tao (1):
  openssl: fix for CVE-2010-5298

 .../openssl-1.0.1e-cve-2014-0195.patch             |  40 ++++++++
 .../openssl-1.0.1e-cve-2014-0198.patch             |  38 ++++++++
 .../openssl-1.0.1e-cve-2014-0221.patch             |  38 ++++++++
 .../openssl-1.0.1e-cve-2014-0224.patch             | 103 +++++++++++++++++++++
 .../openssl-1.0.1e-cve-2014-3470.patch             |  31 +++++++
 .../openssl-1.0.1e/openssl-CVE-2010-5298.patch     |  24 +++++
 .../openssl-1.0.1e/openssl-CVE-2014-0198-fix.patch |  23 -----
 .../recipes-connectivity/openssl/openssl_1.0.1e.bb |   7 +-
 8 files changed, 280 insertions(+), 24 deletions(-)
 create mode 100644 meta/recipes-connectivity/openssl/openssl-1.0.1e/openssl-1.0.1e-cve-2014-0195.patch
 create mode 100644 meta/recipes-connectivity/openssl/openssl-1.0.1e/openssl-1.0.1e-cve-2014-0198.patch
 create mode 100644 meta/recipes-connectivity/openssl/openssl-1.0.1e/openssl-1.0.1e-cve-2014-0221.patch
 create mode 100644 meta/recipes-connectivity/openssl/openssl-1.0.1e/openssl-1.0.1e-cve-2014-0224.patch
 create mode 100644 meta/recipes-connectivity/openssl/openssl-1.0.1e/openssl-1.0.1e-cve-2014-3470.patch
 create mode 100644 meta/recipes-connectivity/openssl/openssl-1.0.1e/openssl-CVE-2010-5298.patch
 delete mode 100644 meta/recipes-connectivity/openssl/openssl-1.0.1e/openssl-CVE-2014-0198-fix.patch