From 9c4a8514d621b6e2a19f56fa9b3396c940b968c5 Mon Sep 17 00:00:00 2001
From: Leo Famulari <leo@famulari.name>
Date: Mon, 13 Jun 2016 16:15:34 -0400
Subject: gnu: openssl: Fix CVE-2016-2177 and CVE-2016-2178.

* gnu/packages/patches/openssl-CVE-2016-2177.patch,
gnu/packages/patches/openssl-CVE-2016-2178.patch: New files.
* gnu/local.mk (dist_patch_DATA): Add them.
* gnu/packages/tls.scm (openssl/fixed): Use them.
---
 gnu/packages/tls.scm | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

(limited to 'gnu/packages/tls.scm')

diff --git a/gnu/packages/tls.scm b/gnu/packages/tls.scm
index e543a7e3fe..513edcc1a6 100644
--- a/gnu/packages/tls.scm
+++ b/gnu/packages/tls.scm
@@ -316,7 +316,9 @@ required structures.")
           (base32
            "06996ds1rk8xhnyb5y273a7xkcxhggp4bq1g02rab55d7bjhfh0x"))
          (patches (search-patches "openssl-runpath.patch"
-                                  "openssl-c-rehash-in.patch")))))))
+                                  "openssl-c-rehash-in.patch"
+                                  "openssl-CVE-2016-2177.patch"
+                                  "openssl-CVE-2016-2178.patch")))))))
 
 (define-public libressl
   (package
-- 
cgit v1.2.3