Date: Thu, 13 Mar 2003 08:08:52 -0600 From: D J Hawkey Jr <hawkeyd@visi.com> To: security at FreeBSD <freebsd-security@freebsd.org> Subject: SA-03:02.openssl for RELENG_4_6_2 vs. RELENG_4_5 Message-ID: <20030313080852.A30434@sheol.localdomain>
next in thread | raw e-mail | index | archive | help
Hello All.
This is my last hope for "Are the SA-03:02.openssl patches for
RELENG_4_6_2 appropriate for RELENG_4_5?".
After a dry-run, it appears that only the FreeBSD CVS version numbers
keep some half-dozen of the SA-03:02 patches from applying.
FreeBSD released 4.4 with OpenSSL 0.9.6a. FreeBSD released 4.5 with the
same (though it may have had changes?). FreeBSD released 4.6.2 with
OpenSSL 0.9.e.
OK. So as I go about cvsup'ing along the RELENG_4_5 tree, at p13, the
source is upgraded to OpenSSL 0.9.6e. At p18, it got an ASN.1 patch. So
did RELENG_4_6, at p10. Both RELENGs continued to get the same patches
until RELENG_4_5 support was dropped. So, up through RELENG_4_6_2 p7
(p8 is SA-03:02), the two RELENGs had the same OpenSSL trees, right?
Therefore: Does anyone know that the SA-03:02 patches for RELENG_4_6_2
should not be applied to a RELENG_4_5 tree (after getting by the above
versioning SNAFU)?
Thanks,
Dave
--
______________________ ______________________
\__________________ \ D. J. HAWKEY JR. / __________________/
\________________/\ hawkeyd@visi.com /\________________/
http://www.visi.com/~hawkeyd/
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030313080852.A30434>