I've rebased mingw-openssl to match the latest version in Fedora Rawhide. This fixes a number of CVEs, but also it's the version with the new API.
I have kicked off rebuilds for (hopefully) all dependent packages.
Rich.
On Fri, Aug 24, 2018 at 01:33:36PM +0100, Richard W.M. Jones wrote:
I've rebased mingw-openssl to match the latest version in Fedora Rawhide. This fixes a number of CVEs, but also it's the version with the new API.
I have kicked off rebuilds for (hopefully) all dependent packages.
So that should be done now. Two bugs were found -- or to put it more accurately: two mingw-* packages were found which use the old openssl API and will need to be resynchronized with the corresponding Fedora Rawhide package:
mingw-qt: https://bugzilla.redhat.com/show_bug.cgi?id=1622139 mingw-opusfile: https://bugzilla.redhat.com/show_bug.cgi?id=1622100
Also one package was found which seems to have a general FTBFS problem which I could not diagnose:
mingw-podofo: https://bugzilla.redhat.com/show_bug.cgi?id=1622096
If you find any other bugs or fall-out from this change, let me know.
Rich.
-
Richard W.M. Jones