[Pkg-openssl-devel] Bug#891799: fixed in openssl1.0 1.0.2o-1

Aurelien Jarno aurelien at aurel32.net
Wed Mar 28 17:41:50 BST 2018 

control: reopen 891799
thanks

On 2018-03-27 22:24, Sebastian Andrzej Siewior wrote:
> Source: openssl1.0
> Source-Version: 1.0.2o-1
> 
> We believe that the bug you reported is fixed in the latest version of
> openssl1.0, which is due to be installed in the Debian FTP archive.
> 
> A summary of the changes between this version and the previous one is
> attached.
> 
> Thank you for reporting the bug, which will now be closed.  If you
> have further comments please address them to 891799 at bugs.debian.org,
> and the maintainer will reopen the bug report if appropriate.
> 
> Debian distribution maintenance software
> pp.
> Sebastian Andrzej Siewior <sebastian at breakpoint.cc> (supplier of updated openssl1.0 package)
> 
> (This message was generated automatically at their request; if you
> believe that there is a problem with it please contact the archive
> administrators by mailing ftpmaster at ftp-master.debian.org)
> 
> 
> Format: 1.8
> Date: Tue, 27 Mar 2018 21:10:52 +0200
> Source: openssl1.0
> Binary: libssl1.0.2 libssl1.0-dev libcrypto1.0.2-udeb libssl1.0.2-udeb
> Architecture: source
> Version: 1.0.2o-1
> Distribution: unstable
> Urgency: medium
> Maintainer: Debian OpenSSL Team <pkg-openssl-devel at lists.alioth.debian.org>
> Changed-By: Sebastian Andrzej Siewior <sebastian at breakpoint.cc>
> Description:
>  libcrypto1.0.2-udeb - Secure Sockets Layer toolkit - libcrypto udeb (udeb)
>  libssl1.0-dev - Secure Sockets Layer toolkit - development files
>  libssl1.0.2 - Secure Sockets Layer toolkit - shared libraries
>  libssl1.0.2-udeb - ssl shared library - udeb (udeb)
> Closes: 891799
> Changes:
>  openssl1.0 (1.0.2o-1) unstable; urgency=medium
>  .
>    * Add riscv64 (Closes: #891799).
>    * New upstream version 1.0.2o:
>      - Fixes CVE-2018-0739 (Constructed ASN.1 types with a recursive definition
>              could exceed the stack)

Thanks for merging the patch. Unfortunately it doesn't work as there is
a small typo in debian-targets.patch, causing the package to FTBFS [1].
The patch below should fix that. Note the extra space between
"$(SHLIB_MAJOR)" and ".\$(SHLIB_MINOR)".

Could you please apply this patch in the next upload?

Thanks,
Aurelien

[1] https://buildd.debian.org/status/fetch.php?pkg=openssl1.0&arch=riscv64&ver=1.0.2o-1&stamp=1522207078&raw=0


diff -Nru openssl1.0-1.0.2o/debian/patches/debian-targets.patch openssl1.0-1.0.2o/debian/patches/debian-targets.patch
--- openssl1.0-1.0.2o/debian/patches/debian-targets.patch	2018-03-27 21:08:35.000000000 +0200
+++ openssl1.0-1.0.2o/debian/patches/debian-targets.patch	2018-03-28 18:06:52.000000000 +0200
@@ -63,7 +63,7 @@
 +"debian-powerpcspe","gcc:-DB_ENDIAN ${debian_cflags}::-D_REENTRANT::-ldl:BN_LLONG RC4_CHAR RC4_CHUNK DES_RISC1 DES_UNROLL:${ppc32_asm}:linux32:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
 +"debian-ppc64","gcc:-m64 -DB_ENDIAN ${debian_cflags}::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC4_CHAR RC4_CHUNK DES_RISC1 DES_UNROLL:${ppc64_asm}:linux64:dlfcn:linux-shared:-fPIC:-m64:.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
 +"debian-ppc64el","gcc:-m64 -DL_ENDIAN ${debian_cflags}::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC4_CHAR RC4_CHUNK DES_RISC1 DES_UNROLL:${ppc64_asm}:linux64le:dlfcn:linux-shared:-fPIC:-m64:.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
-+"debian-riscv64","gcc:-DL_ENDIAN ${debian_cflags}::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC4_CHAR RC4_CHUNK DES_RISC2 DES_UNROLL:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR) .\$(SHLIB_MINOR)",
++"debian-riscv64","gcc:-DL_ENDIAN ${debian_cflags}::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC4_CHAR RC4_CHUNK DES_RISC2 DES_UNROLL:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
 +"debian-s390","gcc:-DB_ENDIAN ${debian_cflags}::-D_REENTRANT::-ldl:RC4_CHAR RC4_CHUNK DES_INT DES_UNROLL:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", 
 +"debian-s390x","gcc:-DB_ENDIAN ${debian_cflags}::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC4_CHAR RC4_CHUNK DES_INT DES_UNROLL:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
 +"debian-sh3",   "gcc:-DL_ENDIAN ${debian_cflags}::-D_REENTRANT::-ldl:BN_LLONG:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",

-- 
Aurelien Jarno                          GPG: 4096R/1DDD8C9B
aurelien at aurel32.net                 http://www.aurel32.net
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/pkg-openssl-devel/attachments/20180328/381bd650/attachment.sig>

More information about the Pkg-openssl-devel mailing list