AA: openssl: version bump to 1.0.1h
authorHauke Mehrtens <hauke@hauke-m.de>
Thu, 5 Jun 2014 21:45:44 +0000 (21:45 +0000)
committerHauke Mehrtens <hauke@hauke-m.de>
Thu, 5 Jun 2014 21:45:44 +0000 (21:45 +0000)
backport of r41026

today appeared another serious vulnerability in openssl. More info is
here http://ccsinjection.lepidum.co.jp. Users are advised to update to
openssl 1.0.1h.

Signed-off-by: Martin Strbacka <martin.strbacka@nic.cz>
Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
SVN-Revision: 41027

package/openssl/Makefile

index 92bc445..68c843a 100644 (file)
@@ -8,14 +8,14 @@
 include $(TOPDIR)/rules.mk
 
 PKG_NAME:=openssl
-PKG_VERSION:=1.0.1g
+PKG_VERSION:=1.0.1h
 PKG_RELEASE:=1
 
 PKG_SOURCE:=$(PKG_NAME)-$(PKG_VERSION).tar.gz
 PKG_SOURCE_URL:=http://www.openssl.org/source/ \
        ftp://ftp.funet.fi/pub/crypt/mirrors/ftp.openssl.org/source \
        ftp://ftp.sunet.se/pub/security/tools/net/openssl/source/
-PKG_MD5SUM:=de62b43dfcd858e66a74bee1c834e959
+PKG_MD5SUM:=8d6d684a9430d5cc98a62a5d8fbda8cf
 
 PKG_LICENSE:=SSLEAY OPENSSL
 PKG_LICENSE_FILES:=LICENSE