openssl: Upgrade 3.0.5 -> 3.0.7

OpenSSL 3.0.5 includes a HIGH level security vulnerability [1]. Upgrade the recipe to point to 3.0.7. CVE-2022-3358 is reported fixed in 3.0.6, so drop the patch for that as well. [1] https://www.openssl.org/news/vulnerabilities.html (From OE-Core rev: e53d6ec7bdff74c610e68c9981243ddc42bddf9d) Signed-off-by: Ed Tanous <[email protected]> Signed-off-by: Richard Purdie <[email protected]>
yoctoproject · Nov 1, 2022 · 5e9cb8f · 5e9cb8f
1 parent fcad9b0
commit 5e9cb8f
Show file tree

Hide file tree

Showing 2 changed files with 1 addition and 57 deletions.
diff --git a/meta/recipes-connectivity/openssl/openssl/CVE-2022-3358.patch b/meta/recipes-connectivity/openssl/openssl/CVE-2022-3358.patch
diff --git a/...pes-connectivity/openssl/openssl_3.0.5.bb → ...pes-connectivity/openssl/openssl_3.0.7.bb b/...pes-connectivity/openssl/openssl_3.0.5.bb → ...pes-connectivity/openssl/openssl_3.0.7.bb
@@ -12,14 +12,13 @@ SRC_URI = "http://www.openssl.org/source/openssl-${PV}.tar.gz \
            file://0001-buildinfo-strip-sysroot-and-debug-prefix-map-from-co.patch \
            file://afalg.patch \
            file://0001-Configure-do-not-tweak-mips-cflags.patch \
-           file://CVE-2022-3358.patch \
            "
 
 SRC_URI:append:class-nativesdk = " \
            file://environment.d-openssl.sh \
            "
 
-SRC_URI[sha256sum] = "aa7d8d9bef71ad6525c55ba11e5f4397889ce49c2c9349dcea6d3e4f0b024a7a"
+SRC_URI[sha256sum] = "83049d042a260e696f62406ac5c08bf706fd84383f945cf21bd61e9ed95c396e"
 
 inherit lib_package multilib_header multilib_script ptest perlnative
 MULTILIB_SCRIPTS = "${PN}-bin:${bindir}/c_rehash"