<pre style='margin:0'>
Jeremy Huddleston Sequoia (jeremyhu) pushed a commit to branch master
in repository macports-ports.

</pre>
<p><a href="https://github.com/macports/macports-ports/commit/320a28b89c4decfbae42a4b45fcc7652ec8254d0">https://github.com/macports/macports-ports/commit/320a28b89c4decfbae42a4b45fcc7652ec8254d0</a></p>
<pre style="white-space: pre; background: #F8F8F8">The following commit(s) were added to refs/heads/master by this push:
<span style='display:block; white-space:pre;color:#404040;'>     new 320a28b  libressl*: Address CVE-2016-7056
</span>320a28b is described below

<span style='display:block; white-space:pre;color:#808000;'>commit 320a28b89c4decfbae42a4b45fcc7652ec8254d0
</span>Author: Jeremy Huddleston Sequoia <jeremyhu@macports.org>
AuthorDate: Wed Jan 11 09:57:53 2017 -0800

<span style='display:block; white-space:pre;color:#404040;'>    libressl*: Address CVE-2016-7056
</span><span style='display:block; white-space:pre;color:#404040;'>    
</span><span style='display:block; white-space:pre;color:#404040;'>    Fixes https://trac.macports.org/ticket/53285
</span><span style='display:block; white-space:pre;color:#404040;'>    
</span><span style='display:block; white-space:pre;color:#404040;'>    Signed-off-by: Jeremy Huddleston Sequoia <jeremyhu@macports.org>
</span>---
 security/libressl-devel/Portfile                  |  4 +++-
 security/libressl-devel/files/CVE-2016-7056.patch | 15 +++++++++++++++
 security/libressl/Portfile                        |  5 +++--
 security/libressl/files/CVE-2016-7056.patch       | 15 +++++++++++++++
 4 files changed, 36 insertions(+), 3 deletions(-)

<span style='display:block; white-space:pre;color:#808080;'>diff --git a/security/libressl-devel/Portfile b/security/libressl-devel/Portfile
</span><span style='display:block; white-space:pre;color:#808080;'>index 373f563..f88db1a 100644
</span><span style='display:block; white-space:pre;background:#e0e0ff;'>--- a/security/libressl-devel/Portfile
</span><span style='display:block; white-space:pre;background:#e0e0ff;'>+++ b/security/libressl-devel/Portfile
</span><span style='display:block; white-space:pre;background:#e0e0e0;'>@@ -6,6 +6,7 @@ PortGroup           compiler_blacklist_versions 1.0
</span> 
 name                libressl-devel
 version             2.5.0
<span style='display:block; white-space:pre;background:#e0ffe0;'>+revision            1
</span> distname            libressl-${version}
 
 categories          security devel
<span style='display:block; white-space:pre;background:#e0e0e0;'>@@ -28,7 +29,8 @@ checksums           rmd160  a3e63495c8ae20f920fba9f2ffa323e2c609e6d6 \
</span>                     sha256  8652bf6b55ab51fb37b686a3f604a2643e0e8fde2c56e6a936027d12afda6eae
 
 patchfiles \
<span style='display:block; white-space:pre;background:#ffe0e0;'>-    openssldir-cert.pem.patch
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+    openssldir-cert.pem.patch \
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+    CVE-2016-7056.patch
</span> 
 configure.args \
     --disable-silent-rules \
<span style='display:block; white-space:pre;color:#808080;'>diff --git a/security/libressl-devel/files/CVE-2016-7056.patch b/security/libressl-devel/files/CVE-2016-7056.patch
</span>new file mode 100644
<span style='display:block; white-space:pre;color:#808080;'>index 0000000..fc0f7c6
</span><span style='display:block; white-space:pre;background:#ffe0e0;'>--- /dev/null
</span><span style='display:block; white-space:pre;background:#e0e0ff;'>+++ b/security/libressl-devel/files/CVE-2016-7056.patch
</span><span style='display:block; white-space:pre;background:#e0e0e0;'>@@ -0,0 +1,15 @@
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+OpenBSD 5.9 errata 33, Jan 5, 2017:
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+Avoid possible side-channel leak of ECDSA private keys when signing.
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+--- crypto/ecdsa/ecs_ossl.c        8 Feb 2015 13:35:07 -0000       1.6
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>++++ crypto/ecdsa/ecs_ossl.c        5 Jan 2017 13:27:17 -0000       1.6.2.1
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+@@ -141,6 +141,8 @@ ecdsa_sign_setup(EC_KEY *eckey, BN_CTX *
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+           if (BN_num_bits(k) <= BN_num_bits(order))
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+                   if (!BN_add(k, k, order))
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+                           goto err;
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>++
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>++          BN_set_flags(k, BN_FLG_CONSTTIME);
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ 
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+           /* compute r the x-coordinate of generator * k */
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+           if (!EC_POINT_mul(group, tmp_point, k, NULL, NULL, ctx)) {
</span><span style='display:block; white-space:pre;color:#808080;'>diff --git a/security/libressl/Portfile b/security/libressl/Portfile
</span><span style='display:block; white-space:pre;color:#808080;'>index 7588075..22349ca 100644
</span><span style='display:block; white-space:pre;background:#e0e0ff;'>--- a/security/libressl/Portfile
</span><span style='display:block; white-space:pre;background:#e0e0ff;'>+++ b/security/libressl/Portfile
</span><span style='display:block; white-space:pre;background:#e0e0e0;'>@@ -6,7 +6,7 @@ PortGroup           compiler_blacklist_versions 1.0
</span> 
 name                libressl
 version             2.4.4
<span style='display:block; white-space:pre;background:#ffe0e0;'>-
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+revision            1
</span> categories          security devel
 platforms           darwin
 license             OpenSSL SSLeay
<span style='display:block; white-space:pre;background:#e0e0e0;'>@@ -27,7 +27,8 @@ checksums           rmd160  39c9f14e559f01fef2da368416b1b248adfdebfd \
</span>                     sha256  6fcfaf6934733ea1dcb2f6a4d459d9600e2f488793e51c2daf49b70518eebfd1
 
 patchfiles \
<span style='display:block; white-space:pre;background:#ffe0e0;'>-    openssldir-cert.pem.patch
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+    openssldir-cert.pem.patch \
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+    CVE-2016-7056.patch
</span> 
 configure.args \
     --disable-silent-rules \
<span style='display:block; white-space:pre;color:#808080;'>diff --git a/security/libressl/files/CVE-2016-7056.patch b/security/libressl/files/CVE-2016-7056.patch
</span>new file mode 100644
<span style='display:block; white-space:pre;color:#808080;'>index 0000000..fc0f7c6
</span><span style='display:block; white-space:pre;background:#ffe0e0;'>--- /dev/null
</span><span style='display:block; white-space:pre;background:#e0e0ff;'>+++ b/security/libressl/files/CVE-2016-7056.patch
</span><span style='display:block; white-space:pre;background:#e0e0e0;'>@@ -0,0 +1,15 @@
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+OpenBSD 5.9 errata 33, Jan 5, 2017:
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+Avoid possible side-channel leak of ECDSA private keys when signing.
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+--- crypto/ecdsa/ecs_ossl.c        8 Feb 2015 13:35:07 -0000       1.6
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>++++ crypto/ecdsa/ecs_ossl.c        5 Jan 2017 13:27:17 -0000       1.6.2.1
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+@@ -141,6 +141,8 @@ ecdsa_sign_setup(EC_KEY *eckey, BN_CTX *
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+           if (BN_num_bits(k) <= BN_num_bits(order))
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+                   if (!BN_add(k, k, order))
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+                           goto err;
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>++
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>++          BN_set_flags(k, BN_FLG_CONSTTIME);
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+ 
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+           /* compute r the x-coordinate of generator * k */
</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+           if (!EC_POINT_mul(group, tmp_point, k, NULL, NULL, ctx)) {
</span></pre><pre style='margin:0'>

</pre>