From 5d71fdbfa7509e792cc9e665f058e649c298ce4b Mon Sep 17 00:00:00 2001
From: Miroslav Rezanina <mrezanin@redhat.com>
Date: Fri, 27 Sep 2024 00:22:34 -0400
Subject: [PATCH] * Fri Sep 27 2024 Miroslav Rezanina <mrezanin@redhat.com> -
 20240524-8

- edk2-Bumped-openssl-submodule-version-to-0205b5898872.patch [RHEL-55302]
- Resolves: RHEL-55302
  (CVE-2024-6119 edk2/openssl: Possible denial of service in X.509 name checks [rhel-10.0 beta])
---
 .gitignore | 2 ++
 edk2.spec  | 9 +++++++--
 sources    | 2 +-
 3 files changed, 10 insertions(+), 3 deletions(-)

diff --git a/.gitignore b/.gitignore
index 01909a3..030f1e0 100644
--- a/.gitignore
+++ b/.gitignore
@@ -13,3 +13,5 @@
 /openssl-rhel-db0287935122edceb91dcda8dfb53b4090734e22.tar.xz
 /DBXUpdate-20230509.x64.bin
 /openssl-rhel-8e5beb77088bfec064d60506b1e76ddb0ac417fe.tar.xz
+/openssl-rhel-*.tar.xz
+/DBXUpdate-*.x64.bin
diff --git a/edk2.spec b/edk2.spec
index 15c9cbe..3eb9391 100644
--- a/edk2.spec
+++ b/edk2.spec
@@ -6,7 +6,7 @@ ExclusiveArch: x86_64 aarch64
 %define TOOLCHAIN      GCC
 
 %define OPENSSL_VER    3.0.7
-%define OPENSSL_HASH   8e5beb77088bfec064d60506b1e76ddb0ac417fe
+%define OPENSSL_HASH   0205b589887203b065154ddc8e8107c4ac8625a1
 
 %define DBXDATE        20230509
 
@@ -21,7 +21,7 @@ ExclusiveArch: x86_64 aarch64
 
 Name:       edk2
 Version:    %{GITDATE}
-Release:    7%{?dist}
+Release:    8%{?dist}
 Summary:    UEFI firmware for 64-bit virtual machines
 License:    BSD-2-Clause-Patent and Apache-2.0 and MIT
 URL:        http://www.tianocore.org
@@ -435,6 +435,11 @@ install -m 0644 \
 
 
 %changelog
+* Fri Sep 27 2024 Miroslav Rezanina <mrezanin@redhat.com> - 20240524-8
+- edk2-Bumped-openssl-submodule-version-to-0205b5898872.patch [RHEL-55302]
+- Resolves: RHEL-55302
+  (CVE-2024-6119 edk2/openssl: Possible denial of service in X.509 name checks [rhel-10.0 beta])
+
 * Fri Sep 13 2024 Miroslav Rezanina <mrezanin@redhat.com> - 20240524-7
 - edk2-OvmfPkg-CpuHotplugSmm-delay-SMM-exit.patch [RHEL-56154]
 - Resolves: RHEL-56154
diff --git a/sources b/sources
index 54697a3..3d96e18 100644
--- a/sources
+++ b/sources
@@ -1,3 +1,3 @@
 SHA512 (DBXUpdate-20230509.x64.bin) = 71fb6e8cd6918126b3acd78b95651913336df372e13fdfdfdd20d5d23f0e509050c6c88c8a2c43f8ac44f987df86bd45174bb3065d5a7a8c7e3b8772fd06d624
 SHA512 (edk2-3e722403cd.tar.xz) = 55afa1275a579c3c620c10fe78758f952e5f6c73425c56034e28f05ad6ae2d8b9480d6f0133e2320fb6d3bc3f016daf6e0cb1fbdb737176b9cfa51fce076207d
-SHA512 (openssl-rhel-8e5beb77088bfec064d60506b1e76ddb0ac417fe.tar.xz) = 5b4281ed4307611620803b7fa880cc734dc6ebf08ae7b4ae4249123ec3fa17652d678d80c5b3e6f6ea7d71c6c7916f188545a628ee78db2fc68094cc09bc09d8
+SHA512 (openssl-rhel-0205b589887203b065154ddc8e8107c4ac8625a1.tar.xz) = 07db9535df29873a3884a411e6ab5c3ea6783b9773cd0923f5b2be1273c0e3e984a2f3a80bd1a637995eda018fa6372b6d1eb41000be07cdf5972938c74f51e9