9 changed files with 3 additions and 31 deletions
--- a/.gitignore
+++ b/.gitignore
@ -1 +1 @@
-SOURCES/mod_md-2.0.8.tar.gz
+/mod_md-2.0.8.tar.gz
--- a/.mod_md.metadata
+++ b/.mod_md.metadata
@ -1 +0,0 @@
-6cec32070c6fd83701be0874a2d8b4f30d929d03 SOURCES/mod_md-2.0.8.tar.gz
--- a/SOURCES/mod_md-2.0.8-CVE-2025-55753.patch
+++ b/SOURCES/mod_md-2.0.8-CVE-2025-55753.patch
@ -1,22 +0,0 @@
-diff --git a/src/mod_md_drive.c b/src/mod_md_drive.c
-index 670c7e7..35ad58c 100644
--- a/src/mod_md_drive.c
-+++ b/src/mod_md_drive.c
-@@ -135,9 +135,14 @@ static apr_time_t calc_err_delay(int err_count)
-     
-     if (err_count > 0) {
-         /* back off duration, depending on the errors we encounter in a row */
-        delay = apr_time_from_sec(5 << (err_count - 1));
-        if (delay > apr_time_from_sec(60*60)) {
-            delay = apr_time_from_sec(60*60);
-+        int i;
-+        delay = 30;
-+        for (i = 0; i < (err_count - 1); ++i) {
-+            delay <<= 1;
-+            if ((delay <= 0) || (delay > apr_time_from_sec(60*60))) {
-+                delay = apr_time_from_sec(60*60);
-+                break;
-+            }
-         }
-     }
-     return delay;
--- a/SOURCES/a2md.xml
+++ b/SOURCES/a2md.xml
--- a/SOURCES/mod_md-2.0.8-duptrim-seg.patch
+++ b/SOURCES/mod_md-2.0.8-duptrim-seg.patch
--- a/SOURCES/mod_md-2.0.8-state_dir.patch
+++ b/SOURCES/mod_md-2.0.8-state_dir.patch
--- a/SOURCES/mod_md-2.0.8-tolerate-missing-res.patch
+++ b/SOURCES/mod_md-2.0.8-tolerate-missing-res.patch
--- a/SPECS/mod_md.spec
+++ b/SPECS/mod_md.spec
@ -3,7 +3,7 @@

 Name:           mod_md
 Version:        2.0.8
-Release:        8%{?dist}.2
+Release:        8%{?dist}
 Summary:        Certificate provisioning using ACME for the Apache HTTP Server
 License:        ASL 2.0
 URL:            https://icing.github.io/mod_md/
@ -13,7 +13,6 @@ Source10:       a2md.xml
 Patch1:         mod_md-2.0.8-state_dir.patch
 Patch2:         mod_md-2.0.8-duptrim-seg.patch
 Patch3:         mod_md-2.0.8-tolerate-missing-res.patch
-Patch4:         mod_md-2.0.8-CVE-2025-55753.patch
 BuildRequires:  gcc
 BuildRequires:  pkgconfig, httpd-devel >= 2.4.37, openssl-devel >= 1.1.0, jansson-devel, libcurl-devel
 BuildRequires:  xmlto
@ -32,7 +31,6 @@ domains and their virtual hosts automatically, including at renewal.
 %patch1 -p1 -b .state_dir
 %patch2 -p1 -b .dup_trim
 %patch3 -p1 -b .tol_missing_res
-%patch4 -p1 -b .CVE-2025-55753

 xmlto man $RPM_SOURCE_DIR/a2md.xml

@ -72,10 +70,6 @@ install -m 644 -p a2md.1 $RPM_BUILD_ROOT%{_mandir}/man1
 %{_mandir}/man1/*

 %changelog
-* Tue Dec 09 2025 Luboš Uhliarik <luhliari@redhat.com> - 1:2.0.8-8.2
- Resolves: RHEL-134487 - httpd:2.4/httpd: Apache HTTP Server: mod_md (ACME),
-  unintended retry intervals (CVE-2025-55753)
-
 * Thu May 28 2020 Lubos Uhliarik <luhliari@redhat.com> - 1:2.0.8-8
 - Resolves: #1832844 - mod_md does not work with ACME server that does not
  provide keyChange or revokeCert resources
--- a/1
+++ b/1
@ -0,0 +1 @@
+SHA512 (mod_md-2.0.8.tar.gz) = fc92b9a5e5db5b6e4f8d1d193a977d22590ab10ee0aa59de73cb3275a7bf7b07538136c9bc1347821aedf078983cf191bad9fd58a69e325b411959226a1fdae8
				`@ -1 +0,0 @@`
				`6cec32070c6fd83701be0874a2d8b4f30d929d03 SOURCES/mod_md-2.0.8.tar.gz`
				`@ -0,0 +1 @@`
				`SHA512 (mod_md-2.0.8.tar.gz) = fc92b9a5e5db5b6e4f8d1d193a977d22590ab10ee0aa59de73cb3275a7bf7b07538136c9bc1347821aedf078983cf191bad9fd58a69e325b411959226a1fdae8`