<pre style='margin:0'>

Jeremy Huddleston Sequoia (jeremyhu) pushed a commit to branch master

in repository macports-ports.

</pre>

<p><a href="https://github.com/macports/macports-ports/commit/320a28b89c4decfbae42a4b45fcc7652ec8254d0">https://github.com/macports/macports-ports/commit/320a28b89c4decfbae42a4b45fcc7652ec8254d0</a></p>

<pre style="white-space: pre; background: #F8F8F8">The following commit(s) were added to refs/heads/master by this push:

<span style='display:block; white-space:pre;color:#404040;'>     new 320a28b  libressl*: Address CVE-2016-7056

</span>320a28b is described below

<span style='display:block; white-space:pre;color:#808000;'>commit 320a28b89c4decfbae42a4b45fcc7652ec8254d0

</span>Author: Jeremy Huddleston Sequoia <jeremyhu@macports.org>

AuthorDate: Wed Jan 11 09:57:53 2017 -0800

<span style='display:block; white-space:pre;color:#404040;'>    libressl*: Address CVE-2016-7056

</span><span style='display:block; white-space:pre;color:#404040;'>    

</span><span style='display:block; white-space:pre;color:#404040;'>    Fixes https://trac.macports.org/ticket/53285

</span><span style='display:block; white-space:pre;color:#404040;'>    

</span><span style='display:block; white-space:pre;color:#404040;'>    Signed-off-by: Jeremy Huddleston Sequoia <jeremyhu@macports.org>

</span>---

 security/libressl-devel/Portfile                  |  4 +++-

 security/libressl-devel/files/CVE-2016-7056.patch | 15 +++++++++++++++

 security/libressl/Portfile                        |  5 +++--

 security/libressl/files/CVE-2016-7056.patch       | 15 +++++++++++++++

 4 files changed, 36 insertions(+), 3 deletions(-)

<span style='display:block; white-space:pre;color:#808080;'>diff --git a/security/libressl-devel/Portfile b/security/libressl-devel/Portfile

</span><span style='display:block; white-space:pre;color:#808080;'>index 373f563..f88db1a 100644

</span><span style='display:block; white-space:pre;background:#e0e0ff;'>--- a/security/libressl-devel/Portfile

</span><span style='display:block; white-space:pre;background:#e0e0ff;'>+++ b/security/libressl-devel/Portfile

</span><span style='display:block; white-space:pre;background:#e0e0e0;'>@@ -6,6 +6,7 @@ PortGroup           compiler_blacklist_versions 1.0

</span> 

 name                libressl-devel

 version             2.5.0

<span style='display:block; white-space:pre;background:#e0ffe0;'>+revision            1

</span> distname            libressl-${version}

 categories          security devel

<span style='display:block; white-space:pre;background:#e0e0e0;'>@@ -28,7 +29,8 @@ checksums           rmd160  a3e63495c8ae20f920fba9f2ffa323e2c609e6d6 \

</span>                     sha256  8652bf6b55ab51fb37b686a3f604a2643e0e8fde2c56e6a936027d12afda6eae

 patchfiles \

<span style='display:block; white-space:pre;background:#ffe0e0;'>-    openssldir-cert.pem.patch

</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+    openssldir-cert.pem.patch \

</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+    CVE-2016-7056.patch

</span> 

 configure.args \

     --disable-silent-rules \

<span style='display:block; white-space:pre;color:#808080;'>diff --git a/security/libressl-devel/files/CVE-2016-7056.patch b/security/libressl-devel/files/CVE-2016-7056.patch

</span>new file mode 100644

<span style='display:block; white-space:pre;color:#808080;'>index 0000000..fc0f7c6

</span><span style='display:block; white-space:pre;background:#ffe0e0;'>--- /dev/null

</span><span style='display:block; white-space:pre;background:#e0e0ff;'>+++ b/security/libressl-devel/files/CVE-2016-7056.patch

</span><span style='display:block; white-space:pre;background:#e0e0e0;'>@@ -0,0 +1,15 @@

</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+OpenBSD 5.9 errata 33, Jan 5, 2017:

</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+

</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+Avoid possible side-channel leak of ECDSA private keys when signing.

</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+

</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+--- crypto/ecdsa/ecs_ossl.c        8 Feb 2015 13:35:07 -0000       1.6

</span><span style='display:block; white-space:pre;background:#e0ffe0;'>++++ crypto/ecdsa/ecs_ossl.c        5 Jan 2017 13:27:17 -0000       1.6.2.1

</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+@@ -141,6 +141,8 @@ ecdsa_sign_setup(EC_KEY *eckey, BN_CTX *

</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+           if (BN_num_bits(k) <= BN_num_bits(order))

</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+                   if (!BN_add(k, k, order))

</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+                           goto err;

</span><span style='display:block; white-space:pre;background:#e0ffe0;'>++

</span><span style='display:block; white-space:pre;background:#e0ffe0;'>++          BN_set_flags(k, BN_FLG_CONSTTIME);

</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ 

</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+           /* compute r the x-coordinate of generator * k */

</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+           if (!EC_POINT_mul(group, tmp_point, k, NULL, NULL, ctx)) {

</span><span style='display:block; white-space:pre;color:#808080;'>diff --git a/security/libressl/Portfile b/security/libressl/Portfile

</span><span style='display:block; white-space:pre;color:#808080;'>index 7588075..22349ca 100644

</span><span style='display:block; white-space:pre;background:#e0e0ff;'>--- a/security/libressl/Portfile

</span><span style='display:block; white-space:pre;background:#e0e0ff;'>+++ b/security/libressl/Portfile

</span><span style='display:block; white-space:pre;background:#e0e0e0;'>@@ -6,7 +6,7 @@ PortGroup           compiler_blacklist_versions 1.0

</span> 

 name                libressl

 version             2.4.4

<span style='display:block; white-space:pre;background:#ffe0e0;'>-

</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+revision            1

</span> categories          security devel

 platforms           darwin

 license             OpenSSL SSLeay

<span style='display:block; white-space:pre;background:#e0e0e0;'>@@ -27,7 +27,8 @@ checksums           rmd160  39c9f14e559f01fef2da368416b1b248adfdebfd \

</span>                     sha256  6fcfaf6934733ea1dcb2f6a4d459d9600e2f488793e51c2daf49b70518eebfd1

 patchfiles \

<span style='display:block; white-space:pre;background:#ffe0e0;'>-    openssldir-cert.pem.patch

</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+    openssldir-cert.pem.patch \

</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+    CVE-2016-7056.patch

</span> 

 configure.args \

     --disable-silent-rules \

<span style='display:block; white-space:pre;color:#808080;'>diff --git a/security/libressl/files/CVE-2016-7056.patch b/security/libressl/files/CVE-2016-7056.patch

</span>new file mode 100644

<span style='display:block; white-space:pre;color:#808080;'>index 0000000..fc0f7c6

</span><span style='display:block; white-space:pre;background:#ffe0e0;'>--- /dev/null

</span><span style='display:block; white-space:pre;background:#e0e0ff;'>+++ b/security/libressl/files/CVE-2016-7056.patch

</span><span style='display:block; white-space:pre;background:#e0e0e0;'>@@ -0,0 +1,15 @@

</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+OpenBSD 5.9 errata 33, Jan 5, 2017:

</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+

</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+Avoid possible side-channel leak of ECDSA private keys when signing.

</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+

</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+--- crypto/ecdsa/ecs_ossl.c        8 Feb 2015 13:35:07 -0000       1.6

</span><span style='display:block; white-space:pre;background:#e0ffe0;'>++++ crypto/ecdsa/ecs_ossl.c        5 Jan 2017 13:27:17 -0000       1.6.2.1

</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+@@ -141,6 +141,8 @@ ecdsa_sign_setup(EC_KEY *eckey, BN_CTX *

</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+           if (BN_num_bits(k) <= BN_num_bits(order))

</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+                   if (!BN_add(k, k, order))

</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+                           goto err;

</span><span style='display:block; white-space:pre;background:#e0ffe0;'>++

</span><span style='display:block; white-space:pre;background:#e0ffe0;'>++          BN_set_flags(k, BN_FLG_CONSTTIME);

</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ 

</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+           /* compute r the x-coordinate of generator * k */

</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+           if (!EC_POINT_mul(group, tmp_point, k, NULL, NULL, ctx)) {

</span></pre><pre style='margin:0'>

</pre>