Accepting request 759878 from home:computersalat:devel:network

fix for boo#1156210, boo#1157803 (CVE-2019-19269), boo#1157798 (CVE-2019-19270) OBS-URL: https://build.opensuse.org/request/show/759878 OBS-URL: https://build.opensuse.org/package/show/network/proftpd?expand=0&rev=72
2019-12-29 09:30:52 +00:00 · 2019-12-29 09:30:52 +00:00 · 7539df5586
commit 7539df5586
parent e807b01a50
3 changed files with 3 additions and 3 deletions
--- a/proftpd-tls-crls-issue859.patch
+++ b/proftpd-tls-crls-issue859.patch
@ -4,7 +4,7 @@ Date:   Sun Nov 24 14:03:54 2019 -0800

    Issue #859, #861: Fix handling of CRL lookups by properly using issuer for
    lookups, and guarding against null pointers.
-    (CVE-2019-19269, CVE-2019-192700)
+    (CVE-2019-19269, CVE-2019-19270)

 diff --git a/contrib/mod_tls.c b/contrib/mod_tls.c
 index 4b74cf989..0e08b0399 100644
--- a/proftpd.changes
+++ b/proftpd.changes
@ -8,7 +8,7 @@ Sat Dec 28 20:45:30 UTC 2019 - chris@computersalat.de
  * GeoIP has been discontinued by Maxmind
  * remove module build for geoip
    see https://support.maxmind.com/geolite-legacy-discontinuation-notice/
- fix for boo#1157803 (CVE-2019-19269), boo#1157798 (CVE-2019-192700)
+- fix for boo#1157803 (CVE-2019-19269), boo#1157798 (CVE-2019-19270)
  * add upstream patch proftpd-tls-crls-issue859.patch

 -------------------------------------------------------------------
--- a/proftpd.spec
+++ b/proftpd.spec
@ -47,7 +47,7 @@ Patch103:       %{name}-strip.patch
 Patch104:       %{name}-no_BuildDate.patch
 #RPMLINT-FIX-openSUSE: env-script-interpreter
 Patch105:       %{name}_env-script-interpreter.patch
-#PATCH-FIX-UPSTREAM: (CVE-2019-19269, CVE-2019-192700)
+#PATCH-FIX-UPSTREAM: (CVE-2019-19269, CVE-2019-19270)
 Patch200:       %{name}-tls-crls-issue859.patch
 BuildRoot:      %{_tmppath}/%{name}-%{version}-build
 #BuildRequires:  gpg-offline