From owner-freebsd-security Tue Feb 25 6:46:49 2003 Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 0C83637B408 for ; Tue, 25 Feb 2003 06:46:45 -0800 (PST) Received: from utahime.as.wakwak.ne.jp (utahime.as.wakwak.ne.jp [61.205.238.40]) by mx1.FreeBSD.org (Postfix) with ESMTP id 6C46543FE0 for ; Tue, 25 Feb 2003 06:46:39 -0800 (PST) (envelope-from yasu@home.utahime.org) Received: from eastasia.home.utahime.org (eastasia.home.utahime.org [192.168.174.1]) by utahime.as.wakwak.ne.jp (Postfix) with ESMTP id DEC34C for ; Tue, 25 Feb 2003 23:46:36 +0900 (JST) Received: from 127.0.0.1 (localhost.home.utahime.org [127.0.0.1]) by eastasia.home.utahime.org (Postfix) with SMTP id 4F35F54ED; Tue, 25 Feb 2003 23:31:31 +0900 (JST) Received: from localhost (sugar.home.utahime.org [192.168.174.2]) by eastasia.home.utahime.org (Postfix) with ESMTP id 387B454E7; Tue, 25 Feb 2003 23:31:31 +0900 (JST) Date: Tue, 25 Feb 2003 23:30:42 +0900 (JST) Message-Id: <20030225.233042.48202256.yasu@utahime.org> To: freebsd-security@FreeBSD.ORG Subject: Re: Updated OpenSSL patches From: KIMURA Yasuhiro In-Reply-To: <20030225034504.GA92642@madman.celabo.org> References: <20030225.100021.27473189.yasu@utahime.org> <20030225022110.GA92307@madman.celabo.org> <20030225034504.GA92642@madman.celabo.org> Organization: Utahime no Mori X-Mailer: Mew version 3.1.53 on Emacs 21.2 / Mule 5.0 (SAKAKI) Mime-Version: 1.0 Content-Type: Text/Plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org >>>>> "Jacques A. Vidrine" wrote: > I've put updated patches on ftp-master -- they should reach mirrors in > a few hours. > [FreeBSD 4.7 systems] > # fetch ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/patches/SA-03:02/openssl47.patch.gz I applied this new patch to the new 4.7R source tree (which means, removed old tree, extraced from install median and applied all preceding patches) and 2 rejections still happend. sugar# pwd /usr/src sugar# zcat /tmp/security-fixes/openssl47.patch.gz | patch -s 1 out of 1 hunks failed--saving rejects to README.rej 1 out of 1 hunks failed--saving rejects to Makefile.rej sugar# But these rejections are strange because new patch doesn't modify either /usr/src/README or /usr/src/Makefile at all. sugar# cat README.rej *************** *** 1,7 **** ! OpenSSL 0.9.6g 9 August 2002 ! Copyright (c) 1998-2002 The OpenSSL Project Copyright (c) 1995-1998 Eric A. Young, Tim J. Hudson All rights reserved. --- 1,7 ---- ! OpenSSL 0.9.6i Feb 19 2003 ! Copyright (c) 1998-2003 The OpenSSL Project Copyright (c) 1995-1998 Eric A. Young, Tim J. Hudson All rights reserved. sugar# It seems this modification should be applied to /usr/src/crypto/openssl/README and sugar# cat Makefile.rej *************** *** 35,42 **** MAINTAINER= kris # base sources ! SRCS+= cpt_err.c cryptlib.c cversion.c ebcdic.c ex_data.c mem.c mem_dbg.c \ ! tmdiff.c uid.c # asn1 --- 35,42 ---- MAINTAINER= kris # base sources ! SRCS+= cpt_err.c cryptlib.c cversion.c ebcdic.c ex_data.c mem.c mem_clr.c \ ! mem_dbg.c tmdiff.c uid.c # asn1 sugar# this should be applied to /usr/src/secure/lib/libcrypto/Makefile. So I'm afraid the bug of "patch" command might be revealed by this patch. Does anybody succeed to apply new patch? --- KIMURA Yasuhiro Mail: yasu@utahime.org WWW: http://www.utahime.org/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message