Upgrade to 1.1.1p

Resolves: CVE-2022-2068 Related: rhbz#2099975 Signed-off-by: Clemens Lang <cllang@redhat.com>
2022-06-30 17:25:36 +02:00 · 2022-06-30 17:25:36 +02:00 · 98a8b9a1e2
parent 6312831343
commit 98a8b9a1e2
4 changed files with 14 additions and 8 deletions
--- a/.gitignore
+++ b/.gitignore
@ -5,3 +5,4 @@
 /openssl-1.1.1l-hobbled.tar.xz
 /openssl-1.1.1n-hobbled.tar.xz
 /openssl-1.1.1o-hobbled.tar.xz
+/openssl-1.1.1p-hobbled.tar.xz
--- a/openssl-1.1.1-version-override.patch
+++ b/openssl-1.1.1-version-override.patch
@ -1,12 +1,12 @@
-diff -up openssl-1.1.1o/include/openssl/opensslv.h.version-override openssl-1.1.1o/include/openssl/opensslv.h
--- openssl-1.1.1o/include/openssl/opensslv.h.version-override	2022-06-13 11:49:31.433661103 +0200
-+++ openssl-1.1.1o/include/openssl/opensslv.h	2022-06-13 11:50:03.838250447 +0200
+diff -up openssl-1.1.1p/include/openssl/opensslv.h.version-override openssl-1.1.1p/include/openssl/opensslv.h
+--- openssl-1.1.1p/include/openssl/opensslv.h.version-override	2022-06-30 17:05:54.254846593 +0200
+++ openssl-1.1.1p/include/openssl/opensslv.h	2022-06-30 17:06:47.013810795 +0200
@@ -40,7 +40,7 @@ extern "C" {
  *  major minor fix final patch/beta)
  */
- # define OPENSSL_VERSION_NUMBER  0x101010ffL
-# define OPENSSL_VERSION_TEXT    "OpenSSL 1.1.1o  3 May 2022"
-+# define OPENSSL_VERSION_TEXT    "OpenSSL 1.1.1o  FIPS 3 May 2022"
+ # define OPENSSL_VERSION_NUMBER  0x1010110fL
+-# define OPENSSL_VERSION_TEXT    "OpenSSL 1.1.1p  21 Jun 2022"
+# define OPENSSL_VERSION_TEXT    "OpenSSL 1.1.1p  FIPS 21 Jun 2022"
 
 /*-
  * The macros below are to be used for shared library (.so, .dll, ...)
--- a/openssl1.1.spec
+++ b/openssl1.1.spec
@ -25,7 +25,7 @@

 Summary: Compatibility version of the OpenSSL library
 Name: openssl1.1
-Version: 1.1.1o
+Version: 1.1.1p
 Release: 1%{?dist}
 Epoch: 1
 # We have to remove certain patented algorithms from the openssl source
@ -373,6 +373,11 @@ rm -rf $RPM_BUILD_ROOT%{_libdir}/pkgconfig
 %ldconfig_scriptlets

 %changelog
+* Thu Jun 30 2022 Clemens Lang <cllang@redhat.com> - 1:1.1.1p-1
+- Upgrade to 1.1.1p
+  Resolves: CVE-2022-2068
+  Related: rhbz#2099975
+
 * Mon Jun 13 2022 Clemens Lang <cllang@redhat.com> - 1:1.1.1o-1
 - Upgrade to 1.1.1o
  Resolves: CVE-2022-1292
--- a/2
+++ b/2
@ -1 +1 @@
-SHA512 (openssl-1.1.1o-hobbled.tar.xz) = abeb25b070e7f42daa2d477c5e8d11494b8e4edefa9fb1e285e0f968af111a2a7625c4451b6bd7bc7dbed2251a1de9d16700916ac0b286ae6506b958ae9a33c0
+SHA512 (openssl-1.1.1p-hobbled.tar.xz) = 4e59f9b696d88f9d1142395f3483752d1955cbbc7e9cc7fcef84088c8537bd7b61d4e7589024192cc1adf815cfefc5b052a8af3f5cd39fc164c78df993b183ad