Related: #2203879 - rebuild certs with 2048-bit RSA keys

2023-06-29 11:42:22 +02:00 · 2023-06-29 11:42:22 +02:00 · e570c372e1
commit e570c372e1
parent 8b968afba9
2 changed files with 2773 additions and 0 deletions
--- a/0052-curl-7.61.1-certs.patch
+++ b/0052-curl-7.61.1-certs.patch
--- a/curl.spec
+++ b/curl.spec
@ -148,6 +148,9 @@ Patch50:  0050-curl-7.61.1-sftp-upload-flags.patch
 # fix host name wildcard checking (CVE-2023-28321)
 Patch51:  0051-curl-7.61.1-CVE-2023-28321.patch

+# rebuild certs with 2048-bit RSA keys
+Patch52:  0052-curl-7.61.1-certs.patch
+
 # patch making libcurl multilib ready
 Patch101: 0101-curl-7.32.0-multilib.patch

@ -372,6 +375,7 @@ sed -e 's|:8992/|:%{?__isa_bits}92/|g' -i tests/data/test97{3..6}
 %patch49 -p1
 %patch50 -p1
 %patch51 -p1
+git apply %{PATCH52}

 # make tests/*.py use Python 3
 sed -e '1 s|^#!/.*python|#!%{__python3}|' -i tests/*.py
@ -536,6 +540,7 @@ rm -f ${RPM_BUILD_ROOT}%{_libdir}/libcurl.la
 %changelog
 * Tue Jun 27 2023 Jacek Migacz <jmigacz@redhat.com> - 7.61.1-33
 - fix host name wildcard checking (CVE-2023-28321)
+- rebuild certs with 2048-bit RSA keys

 * Thu Apr 20 2023 Kamil Dudka <kdudka@redhat.com> - 7.61.1-32
 - sftp: do not specify O_APPEND when not in append mode (#2187717)