Opened 4 years ago

Closed 4 years ago

Last modified 4 years ago

#43273 closed update (fixed)

openssl @ 1.0.1g - fixes heartbeat vulnerability

Reported by: ldninten@… Owned by: neverpanic (Clemens Lang)
Priority: High Milestone:
Component: ports Version:
Keywords: Cc: mww@…, cooljeanius (Eric Gallager)
Port: openssl

Description (last modified by mf2k (Frank Schima))

See http://heartbleed.com/ for details about the vulnerability
It's fixed in 1.0.1g
I just updated the sha1 & md5 checksums + bumped version

Attachments (2)

openssl.diff (891 bytes) - added by ldninten@… 4 years ago.
openssl_with_signatures.diff (1.1 KB) - added by ldninten@… 4 years ago.

Download all attachments as: .zip

Change History (7)

Changed 4 years ago by ldninten@…

Attachment: openssl.diff added

comment:1 Changed 4 years ago by mf2k (Frank Schima)

Description: modified (diff)
Keywords: heartbleed removed
Owner: changed from macports-tickets@… to mww@…
Priority: HighNormal
Version: 2.2.1

In the future, please use WikiFormatting, and Cc the port maintainers (port info --maintainers openssl). The Priority field is for use by Macports team members' use only.

In your patch, you removed the rmd160 and sha256 checksums. Those need to be restored.

comment:2 Changed 4 years ago by ldninten@…

Sorry, I've never used trac before

Here's the patch with correct signature

Changed 4 years ago by ldninten@…

comment:3 Changed 4 years ago by neverpanic (Clemens Lang)

Cc: mww@… added
Owner: changed from mww@… to cal@…
Priority: NormalHigh
Status: newassigned

comment:4 Changed 4 years ago by neverpanic (Clemens Lang)

Resolution: fixed
Status: assignedclosed

According to https://guide.macports.org/#project.update-policies.nonmaintainer, bullet point three: "A critical port is broken that affects many users." I have updated openssl in r118671 because this is a serious flaw and we should minimize the risk for our users.

comment:5 Changed 4 years ago by cooljeanius (Eric Gallager)

Cc: egall@… added

Cc Me!

Note: See TracTickets for help on using tickets.