From patchwork Sun Apr  4 08:30:47 2021
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
X-Patchwork-Submitter: Matthias Fischer <matthias.fischer@ipfire.org>
X-Patchwork-Id: 4095
Return-Path: <development-bounces@lists.ipfire.org>
Received: from mail01.ipfire.org (mail01.haj.ipfire.org [172.28.1.202])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
	 key-exchange X25519 server-signature ECDSA (P-384) server-digest SHA384
	 client-signature ECDSA (P-384) client-digest SHA384)
	(Client CN "mail01.haj.ipfire.org", Issuer "R3" (verified OK))
	by web04.haj.ipfire.org (Postfix) with ESMTPS id 4FCn7516mGz3x1r
	for <patchwork@web04.haj.ipfire.org>; Sun,  4 Apr 2021 08:30:57 +0000 (UTC)
Received: from mail02.haj.ipfire.org (mail02.haj.ipfire.org [172.28.1.201])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
	 key-exchange X25519 server-signature ECDSA (P-384) server-digest SHA384
	 client-signature ECDSA (P-384) client-digest SHA384)
	(Client CN "mail02.haj.ipfire.org", Issuer "R3" (verified OK))
	by mail01.ipfire.org (Postfix) with ESMTPS id 4FCn7365BzzR9;
	Sun,  4 Apr 2021 08:30:55 +0000 (UTC)
Received: from mail02.haj.ipfire.org (localhost [127.0.0.1])
	by mail02.haj.ipfire.org (Postfix) with ESMTP id 4FCn724fVGz2xnM;
	Sun,  4 Apr 2021 08:30:54 +0000 (UTC)
Received: from mail01.ipfire.org (mail01.haj.ipfire.org [172.28.1.202])
 (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
 key-exchange X25519 server-signature ECDSA (P-384) server-digest SHA384
 client-signature ECDSA (P-384) client-digest SHA384)
 (Client CN "mail01.haj.ipfire.org", Issuer "R3" (verified OK))
 by mail02.haj.ipfire.org (Postfix) with ESMTPS id 4FCn7105YGz2xZJ
 for <development@lists.ipfire.org>; Sun,  4 Apr 2021 08:30:53 +0000 (UTC)
Received: from [127.0.0.1] (localhost [127.0.0.1])
 (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
 key-exchange X25519 server-signature ECDSA (P-384) server-digest SHA384)
 (No client certificate requested)
 by mail01.ipfire.org (Postfix) with ESMTPSA id 4FCn702nf7zR9
 for <development@lists.ipfire.org>; Sun,  4 Apr 2021 08:30:52 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ipfire.org;
 s=202003rsa;
 t=1617525052;
 h=from:from:reply-to:subject:subject:date:date:message-id:message-id:
 to:to:cc; bh=Hy1k5uNCzrlBHAj3TX8OZ8VXEXijal7xq7qLPRWzEhg=;
 b=Shx5V/2GQPKM+/MVy8Bv0T75UayMpcLBlUJXA+9+6X+ta2mxmiZsjM1WEd9njgxJUWXjMR
 STnHFC2Pk5dkTFtaCnHGsQjnLOMp2E2/V3iqkg5Zbo1qlWn4PviHxABkI9xoBSSOOLo6kE
 ArQgPfZh8iKGfkXg/D9gWElXrZbR5guCQtys/TAX9LTGI3zzuJ8h1P2ANJvsQRLexR5Yfd
 qcuXDsTroZP2Li74OOJJ9Y3X8njiIKuPcPrc+C901r2lUQtNwOjy9puzHFnKMCp3HqaULE
 lI4u8anbI0R/meXS2iHzEf2DCbuSaQs59HzkLgNK2LGlZiGwESPGPsg6rKSJeQ==
DKIM-Signature: v=1; a=ed25519-sha256; c=relaxed/relaxed; d=ipfire.org;
 s=202003ed25519; t=1617525052;
 h=from:from:reply-to:subject:subject:date:date:message-id:message-id:
 to:to:cc; bh=Hy1k5uNCzrlBHAj3TX8OZ8VXEXijal7xq7qLPRWzEhg=;
 b=eJ3mVKR6rRQEv9PBr/I4Hwz75N4mx/GSk0zDe1xHU/nRpoMqcz+WLI8qCtX6HO7PhCQ0or
 62InOh6OZfWo9mAw==
From: Matthias Fischer <matthias.fischer@ipfire.org>
To: development@lists.ipfire.org
Subject: [PATCH] nettle: Update to 3.7.2
Date: Sun,  4 Apr 2021 10:30:47 +0200
Message-Id: <20210404083047.1615-1-matthias.fischer@ipfire.org>
X-BeenThere: development@lists.ipfire.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IPFire development talk <development.lists.ipfire.org>
List-Unsubscribe: <https://lists.ipfire.org/mailman/options/development>,
 <mailto:development-request@lists.ipfire.org?subject=unsubscribe>
List-Archive: <http://lists.ipfire.org/pipermail/development/>
List-Post: <mailto:development@lists.ipfire.org>
List-Help: <mailto:development-request@lists.ipfire.org?subject=help>
List-Subscribe: <https://lists.ipfire.org/mailman/listinfo/development>,
 <mailto:development-request@lists.ipfire.org?subject=subscribe>
Errors-To: development-bounces@lists.ipfire.org
Sender: "Development" <development-bounces@lists.ipfire.org>

For details see:
https://lists.gnu.org/archive/html/info-gnu/2021-03/msg00005.html

"This is a bugfix release, fixing a bug in ECDSA signature
verification that could lead to a denial of service attack
(via an assertion failure) or possibly incorrect results. It
also fixes a few related problems where scalars are required
to be canonically reduced modulo the ECC group order, but in
fact may be slightly larger.

Upgrading to the new version is strongly recommended."

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
---
 config/rootfiles/common/nettle | 4 ++--
 lfs/nettle                     | 4 ++--
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/config/rootfiles/common/nettle b/config/rootfiles/common/nettle
index bf43e8ad5..591e860c2 100644
--- a/config/rootfiles/common/nettle
+++ b/config/rootfiles/common/nettle
@@ -72,9 +72,9 @@
 #usr/include/nettle/yarrow.h
 usr/lib/libhogweed.so
 usr/lib/libhogweed.so.6
-usr/lib/libhogweed.so.6.2
+usr/lib/libhogweed.so.6.3
 #usr/lib/libnettle.so
 usr/lib/libnettle.so.8
-usr/lib/libnettle.so.8.2
+usr/lib/libnettle.so.8.3
 #usr/lib/pkgconfig/hogweed.pc
 #usr/lib/pkgconfig/nettle.pc
diff --git a/lfs/nettle b/lfs/nettle
index e2d5df88d..dfc3fdda5 100644
--- a/lfs/nettle
+++ b/lfs/nettle
@@ -24,7 +24,7 @@
 
 include Config
 
-VER        = 3.7.1
+VER        = 3.7.2
 
 THISAPP    = nettle-$(VER)
 DL_FILE    = $(THISAPP).tar.gz
@@ -40,7 +40,7 @@ objects = $(DL_FILE)
 
 $(DL_FILE) = $(DL_FROM)/$(DL_FILE)
 
-$(DL_FILE)_MD5 = 4d23a99df650ee88511653fb9acea3f0
+$(DL_FILE)_MD5 = 22849db27ed563ebbc829273f0c97e35
 
 install : $(TARGET)