Content-Transfer-Encoding: 7bit
Content-Type: multipart/mixed; boundary="_----------=_147489287697800"
MIME-Version: 1.0
Date: Mon, 26 Sep 2016 12:27:56 +0000
From: "Jonathan Perkin" <jperkin@netbsd.org>
Subject: CVS commit: pkgsrc/security/openssl
To: pkgsrc-changes@NetBSD.org
Reply-To: jperkin@netbsd.org
Message-Id: <20160926122756.15E41FBD2@cvs.NetBSD.org>
Sender: pkgsrc-changes-owner@NetBSD.org
Precedence: bulk

This is a multi-part message in MIME format.

--_----------=_147489287697800
Content-Disposition: inline
Content-Transfer-Encoding: 8bit
Content-Type: text/plain; charset="US-ASCII"

Module Name:	pkgsrc
Committed By:	jperkin
Date:		Mon Sep 26 12:27:56 UTC 2016

Modified Files:
	pkgsrc/security/openssl: Makefile distinfo

Log Message:
Update security/openssl to 1.0.2j.

 Changes between 1.0.2i and 1.0.2j [26 Sep 2016]

  *) Missing CRL sanity check

     A bug fix which included a CRL sanity check was added to OpenSSL 1.1.0
     but was omitted from OpenSSL 1.0.2i. As a result any attempt to use
     CRLs in OpenSSL 1.0.2i will crash with a null pointer exception.

     This issue only affects the OpenSSL 1.0.2i
     (CVE-2016-7052)
     [Matt Caswell]


To generate a diff of this commit:
cvs rdiff -u -r1.226 -r1.227 pkgsrc/security/openssl/Makefile
cvs rdiff -u -r1.124 -r1.125 pkgsrc/security/openssl/distinfo

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.


--_----------=_147489287697800
Content-Disposition: inline
Content-Length: 1862
Content-Transfer-Encoding: binary
Content-Type: text/x-diff; charset=us-ascii

Modified files:

Index: pkgsrc/security/openssl/Makefile
diff -u pkgsrc/security/openssl/Makefile:1.226 pkgsrc/security/openssl/Makefile:1.227
--- pkgsrc/security/openssl/Makefile:1.226	Thu Sep 22 12:28:55 2016
+++ pkgsrc/security/openssl/Makefile	Mon Sep 26 12:27:55 2016
@@ -1,6 +1,6 @@
-# $NetBSD: Makefile,v 1.226 2016/09/22 12:28:55 jperkin Exp $
+# $NetBSD: Makefile,v 1.227 2016/09/26 12:27:55 jperkin Exp $
 
-DISTNAME=	openssl-1.0.2i
+DISTNAME=	openssl-1.0.2j
 CATEGORIES=	security
 MASTER_SITES=	https://www.openssl.org/source/
 

Index: pkgsrc/security/openssl/distinfo
diff -u pkgsrc/security/openssl/distinfo:1.124 pkgsrc/security/openssl/distinfo:1.125
--- pkgsrc/security/openssl/distinfo:1.124	Thu Sep 22 12:28:55 2016
+++ pkgsrc/security/openssl/distinfo	Mon Sep 26 12:27:55 2016
@@ -1,9 +1,9 @@
-$NetBSD: distinfo,v 1.124 2016/09/22 12:28:55 jperkin Exp $
+$NetBSD: distinfo,v 1.125 2016/09/26 12:27:55 jperkin Exp $
 
-SHA1 (openssl-1.0.2i.tar.gz) = 25a92574ebad029dcf2fa26c02e10400a0882111
-RMD160 (openssl-1.0.2i.tar.gz) = d33628eea2838e392390a348b516425569308c3b
-SHA512 (openssl-1.0.2i.tar.gz) = 41764debd5d64e4e770945f30d682e2c887d9cefb39b358c5c7f9d2cdce34393ed28d49b24e95c4639db2df01c278cbcde71bed2b03f9aafafc76766b03850e3
-Size (openssl-1.0.2i.tar.gz) = 5308232 bytes
+SHA1 (openssl-1.0.2j.tar.gz) = bdfbdb416942f666865fa48fe13c2d0e588df54f
+RMD160 (openssl-1.0.2j.tar.gz) = d5be416caf523f3496323dbd05547144348e7854
+SHA512 (openssl-1.0.2j.tar.gz) = 7d6ccae4aa3ccec3a5d128da29c68401cdb1210cba6d212d55235fc3bc63d7085e2f119e2bbee7ddff6b7b5eef07c6196156791724cd2caf313a4c2fef724edd
+Size (openssl-1.0.2j.tar.gz) = 5307912 bytes
 SHA1 (patch-Configure) = bebb9c435914b89ab9d5afabceb7d95903d4b56a
 SHA1 (patch-Makefile.org) = d2a9295003a8b88718a328b01ff6bcbbc102ec0b
 SHA1 (patch-Makefile.shared) = d317004d6ade167fc3b6e533bb8a1e93657188b2


--_----------=_147489287697800--