Opened 5 years ago

Closed 5 years ago

#55237 closed defect (fixed)

openssl @1.0.2l: security update to version 1.0.2m

Reported by: Schamschula (Marius Schamschula) Owned by: neverpanic (Clemens Lang)
Priority: Normal Milestone:
Component: ports Version:
Keywords: haspatch Cc: larryv (Lawrence Velázquez)
Port: openssl

Description

openssl has been updated to version 1.0.2m, to address an internal carry bug on X86_64.

See: https://www.openssl.org/news/secadv/20171102.txt

Attachments (1)

Portfile-openssl.diff (1.0 KB) - added by Schamschula (Marius Schamschula) 5 years ago.

Download all attachments as: .zip

Change History (3)

Changed 5 years ago by Schamschula (Marius Schamschula)

Attachment: Portfile-openssl.diff added

comment:1 Changed 5 years ago by neverpanic (Clemens Lang)

Cc: larryv added; cal@… removed
Owner: changed from larryv to neverpanic
Status: newaccepted

comment:2 Changed 5 years ago by neverpanic (Clemens Lang)

Resolution: fixed
Status: acceptedclosed

In bcc9140ce20c50b8a67e212978aaaca997847f60/macports-ports:

openssl: Update to 1.0.2m

CVE-2017-3736, CVE-2017-3735

Additionally, revbump ports that check for the openssl version against
which they were compiled.

Closes: #55237

Note: See TracTickets for help on using tickets.