new upstream version fixing low impact issue CVE-2015-7511

2016-07-21 10:59:48 +02:00 · 2016-07-21 10:59:48 +02:00 · 69a497f079
commit 69a497f079
parent 8ac557bc57
5 changed files with 12 additions and 4 deletions
--- a/.gitignore
+++ b/.gitignore
@ -8,3 +8,4 @@ libgcrypt-1.4.5-hobbled.tar.bz2
 /libgcrypt-1.6.2-hobbled.tar.xz
 /libgcrypt-1.6.3-hobbled.tar.xz
 /libgcrypt-1.6.4-hobbled.tar.xz
+/libgcrypt-1.6.5-hobbled.tar.xz
--- a/2
+++ b/2
@ -8,4 +8,4 @@ set -e -x

 rm -f cipher/ecc-curves.c
 rm -f tests/curves.c
-rm -f tests/t_mpi_point.c
+rm -f tests/t-mpi-point.c
--- a/libgcrypt-1.6.3-rsa-fips-keygen.patch
+++ b/libgcrypt-1.6.3-rsa-fips-keygen.patch
@ -1,3 +1,7 @@
+Add FIPS 186-4 compliant RSA probable prime key generator.
+
+Signed-off-by: Tomáš Mráz <tmraz@redhat.com>
+
 diff -up libgcrypt-1.6.3/cipher/primegen.c.fips-keygen libgcrypt-1.6.3/cipher/primegen.c
 --- libgcrypt-1.6.3/cipher/primegen.c.fips-keygen	2015-03-06 16:38:56.698052602 +0100
 +++ libgcrypt-1.6.3/cipher/primegen.c	2015-03-06 16:45:45.848193024 +0100
--- a/libgcrypt.spec
+++ b/libgcrypt.spec
@ -1,6 +1,6 @@
 Name: libgcrypt
-Version: 1.6.4
-Release: 2%{?dist}
+Version: 1.6.5
+Release: 1%{?dist}
 URL: http://www.gnupg.org/
 Source0: libgcrypt-%{version}-hobbled.tar.xz
 # The original libgcrypt sources now contain potentially patented ECC
@ -208,6 +208,9 @@ exit 0
 %license COPYING

 %changelog
+* Thu Jul 21 2016 Tomáš Mráz <tmraz@redhat.com> 1.6.5-1
+- new upstream version fixing low impact issue CVE-2015-7511
+
 * Thu Feb 04 2016 Fedora Release Engineering <releng@fedoraproject.org> - 1.6.4-2
 - Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild

--- a/2
+++ b/2
@ -1 +1 @@
-912ad2604bfb6a759e1d93ed26c5e999  libgcrypt-1.6.4-hobbled.tar.xz
+2703d21753c0c3fbb74ad4b10e1571a1  libgcrypt-1.6.5-hobbled.tar.xz