Patch vici for NHRP

* Wed Oct 20 2021 Paul Wouters <paul.wouters@aiven.io> - 5.9.4-1
- Resolves: rhbz#2015165 strongswan-5.9.4 is available - Resolves: rhbz#2015611 CVE-2021-41990 strongswan: gmp plugin: integer overflow via a crafted certificate with an RSASSA-PSS signature - Resolves: rhbz#2015614 CVE-2021-41991 strongswan: integer overflow when replacing certificates in cache - Add BuildRequire for tpm2-tss-devel and weak dependency for tpm2-tools
2021-11-01 16:34:10 +01:00 · 2021-10-20 17:47:06 -04:00 · 2021-09-14 19:15:51 +02:00 · 2021-07-23 18:23:56 +00:00 · 2021-07-10 11:58:08 +02:00
3 changed files with 20 additions and 2 deletions
--- a/.gitignore
+++ b/.gitignore
@@ -3,3 +3,4 @@
 /strongswan-5.9.1.tar.bz2
 /strongswan-5.9.2.tar.bz2
 /strongswan-5.9.3.tar.bz2
+/strongswan-5.9.4.tar.bz2
--- a/2
+++ b/2
@@ -1 +1 @@
-SHA512 (strongswan-5.9.3.tar.bz2) = 09bd78225415422c8f55c9f0dea2ca70111f42f0deacfaaac30c422109ff64180f6a6a47c6bc54238e8403f0b2f8520122c1eabbeda3f915427fadb838a5df51
+SHA512 (strongswan-5.9.4.tar.bz2) = 796356c1d5c1ad410f0ed944ab4a131076d26f120ec6fa57796fe4060b0741201199625883ddc9ebd8a7ad299495f073cec76a6780ebd8f375605aae16750cf3
--- a/strongswan.spec
+++ b/strongswan.spec
@@ -3,7 +3,7 @@
 %global dist .nhrp.9%{?dist}

 Name:           strongswan
-Version:        5.9.3
+Version:        5.9.4
 Release:        1%{?dist}
 Summary:        An OpenSource IPsec-based VPN and TNC solution
 License:        GPLv2+
@@ -39,6 +39,8 @@ BuildRequires:  libgcrypt-devel
 BuildRequires:  systemd-devel
 BuildRequires:  iptables-devel
 BuildRequires:  libcap-devel
+BuildRequires:  tpm2-tss-devel
+Recommends:     tpm2-tools

 BuildRequires:  NetworkManager-libnm-devel
 Requires(post): systemd
@@ -287,6 +289,21 @@ install -D -m 0644 %{SOURCE1} %{buildroot}/%{_tmpfilesdir}/strongswan.conf
 %{_libexecdir}/strongswan/charon-nm

 %changelog
+* Wed Oct 20 2021 Paul Wouters <paul.wouters@aiven.io> - 5.9.4-1
+- Resolves: rhbz#2015165 strongswan-5.9.4 is available
+- Resolves: rhbz#2015611 CVE-2021-41990 strongswan: gmp plugin: integer overflow via a crafted certificate with an RSASSA-PSS signature
+- Resolves: rhbz#2015614 CVE-2021-41991 strongswan: integer overflow when replacing certificates in cache
+- Add BuildRequire for tpm2-tss-devel and weak dependency for tpm2-tools
+
+* Tue Sep 14 2021 Sahana Prasad <sahana@redhat.com> - 5.9.3-4
+- Rebuilt with OpenSSL 3.0.0
+
+* Fri Jul 23 2021 Fedora Release Engineering <releng@fedoraproject.org> - 5.9.3-3
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild
+
+* Sat Jul 10 2021 Björn Esser <besser82@fedoraproject.org> - 5.9.3-2
+- Rebuild for versioned symbols in json-c
+
 * Tue Jul 06 2021 Paul Wouters <paul.wouters@aiven.io> - 5.9.3-1
 - Resolves: rhbz#1979574 strongswan-5.9.3 is available
 - Make strongswan main dir world readable so apps can find strongswan.conf
Author	SHA1	Message	Date
Zoran Peričić	12a24a66d2	Patch vici for NHRP	2021-11-01 16:34:10 +01:00
Paul Wouters	28ee63eed5	* Wed Oct 20 2021 Paul Wouters <paul.wouters@aiven.io> - 5.9.4-1 - Resolves: rhbz#2015165 strongswan-5.9.4 is available - Resolves: rhbz#2015611 CVE-2021-41990 strongswan: gmp plugin: integer overflow via a crafted certificate with an RSASSA-PSS signature - Resolves: rhbz#2015614 CVE-2021-41991 strongswan: integer overflow when replacing certificates in cache - Add BuildRequire for tpm2-tss-devel and weak dependency for tpm2-tools	2021-10-20 17:47:06 -04:00
Sahana Prasad	23b5b73cd8	Rebuilt with OpenSSL 3.0.0	2021-09-14 19:15:51 +02:00
Fedora Release Engineering	48629b5950	- Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>	2021-07-23 18:23:56 +00:00
Björn Esser	8ce4072e4d	Rebuild for versioned symbols in json-c	2021-07-10 11:58:08 +02:00