[jethro][fido][PATCH 4/4] openssl: three CVE fixes

Openembedded Core Discussions
 help / color / mirror / Atom feed

From: Armin Kuster <akuster808@gmail.com>
To: openembedded-core@lists.openembedded.org
Cc: Armin Kuster <akuster@mvista.com>
Subject: [jethro][fido][PATCH 4/4] openssl: three CVE fixes
Date: Mon,  7 Dec 2015 17:47:58 -0800	[thread overview]
Message-ID: <1449539278-20070-4-git-send-email-akuster808@gmail.com> (raw)
In-Reply-To: <1449539278-20070-1-git-send-email-akuster808@gmail.com>

From: Armin Kuster <akuster@mvista.com>

CVE-2015-3193
CVE-2015-3194
CVE-2105-3195

Signed-off-by: Armin Kuster <akuster@mvista.com>
---
 meta/recipes-connectivity/openssl/openssl_1.0.2d.bb | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/meta/recipes-connectivity/openssl/openssl_1.0.2d.bb b/meta/recipes-connectivity/openssl/openssl_1.0.2d.bb
index fd56841..3864e88 100644
--- a/meta/recipes-connectivity/openssl/openssl_1.0.2d.bb
+++ b/meta/recipes-connectivity/openssl/openssl_1.0.2d.bb
@@ -37,6 +37,10 @@ SRC_URI += "file://configure-targets.patch \
             file://crypto_use_bigint_in_x86-64_perl.patch \
             file://openssl-1.0.2a-x32-asm.patch \
             file://ptest_makefile_deps.patch  \
+            file://CVE-2015-3193-bn-asm-x86_64-mont5.pl-fix-carry-propagating-bug-CVE.patch \
+            file://CVE-2015-3194-1-Add-PSS-parameter-check.patch \
+            file://0001-Add-test-for-CVE-2015-3194.patch \
+            file://CVE-2015-3195-Fix-leak-with-ASN.1-combine.patch \
            "
 
 SRC_URI[md5sum] = "38dd619b2e77cbac69b99f52a053d25a"
-- 
2.3.5

next prev parent reply	other threads:[~2015-12-08  1:48 UTC|newest]

Thread overview: 9+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2015-12-08  1:47 [jethro][fido][PATCH 1/4] openssl: fix for CVE-2015-3193 Armin Kuster
2015-12-08  1:47 ` [jethro][fido][PATCH 2/4] openssl: fix for CVE-2015-3194 Armin Kuster
2015-12-08  1:47 ` [jethro][fido][PATCH 3/4] openssl: fix for CVE-2015-3195 Armin Kuster
2015-12-08  1:47 ` Armin Kuster [this message]
2015-12-08  7:49   ` [jethro][fido][PATCH 4/4] openssl: three CVE fixes Anders Darander
2015-12-08  8:14     ` Robert Yang
2015-12-12 21:14     ` akuster808
2015-12-13 19:32       ` Paul Eggleton
2015-12-14 10:40       ` Anders Darander

find likely ancestor, descendant, or conflicting patches for this message:
( dfblob:fd56841 dfblob:3864e88 )
 OR (
bs:"[jethro][fido][PATCH 4/4] openssl: three CVE fixes" )
	(help)

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=1449539278-20070-4-git-send-email-akuster808@gmail.com \
    --to=akuster808@gmail.com \
    --cc=akuster@mvista.com \
    --cc=openembedded-core@lists.openembedded.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox