From mboxrd@z Thu Jan  1 00:00:00 1970
From: Michael Tremer <michael.tremer@ipfire.org>
To: development@lists.ipfire.org
Subject: Re: [PATCH] openssl: Update to version 1.1.1q
Date: Fri, 08 Jul 2022 09:57:38 +0200
Message-ID: <38E0A6D2-6CDC-41E0-952F-50582FBF4FF7@ipfire.org>
In-Reply-To: <20220707194018.3571924-1-adolf.belka@ipfire.org>
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="===============0180635218683934996=="
List-Id: <development.lists.ipfire.org>

--===============0180635218683934996==
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable

Reviewed-by: Michael Tremer <michael.tremer(a)ipfire.org>

> On 7 Jul 2022, at 21:40, Adolf Belka <adolf.belka(a)ipfire.org> wrote:
>=20
> - Update from version 1.1.1p to 1.1.1q
> - Update of rootfile not required
> - Changelog
>   Changes between 1.1.1p and 1.1.1q [5 Jul 2022]
>     (CVE-2022-2097) Severity: Moderate
>        AES OCB mode for 32-bit x86 platforms using the AES-NI assembly opti=
mised
>        implementation would not encrypt the entirety of the data under some
>        circumstances.  This could reveal sixteen bytes of data that was
>        preexisting in the memory that wasn't written.  In the special case =
of
>        "in place" encryption, sixteen bytes of the plaintext would be revea=
led.
>        Since OpenSSL does not support OCB based cipher suites for TLS and D=
TLS,
>        they are both unaffected.
>=20
> Signed-off-by: Adolf Belka <adolf.belka(a)ipfire.org>
> ---
> lfs/openssl | 4 ++--
> 1 file changed, 2 insertions(+), 2 deletions(-)
>=20
> diff --git a/lfs/openssl b/lfs/openssl
> index 88f533323..28a92a6b3 100644
> --- a/lfs/openssl
> +++ b/lfs/openssl
> @@ -24,7 +24,7 @@
>=20
> include Config
>=20
> -VER        =3D 1.1.1p
> +VER        =3D 1.1.1q
>=20
> THISAPP    =3D openssl-$(VER)
> DL_FILE    =3D $(THISAPP).tar.gz
> @@ -74,7 +74,7 @@ objects =3D $(DL_FILE)
>=20
> $(DL_FILE) =3D $(DL_FROM)/$(DL_FILE)
>=20
> -$(DL_FILE)_BLAKE2 =3D 4354753a5e52393c9cc4569954c2cac6d89a1e204fa4f9ca00a6=
0492782d29f8952fb92664cdbb3576c6443d3cb2eacebea51db584738589f3598b40df579b12
> +$(DL_FILE)_BLAKE2 =3D fc8fd6a62dc291d0bda328a051e253175fb04442cc4b8f45d67c=
3a5027748a0fc5fb372d0483bc9024ae0bff119c4fac8f1e982a182612427696d6d09f5935f5
>=20
> install : $(TARGET)
>=20
> --=20
> 2.37.0
>=20


--===============0180635218683934996==--