From cd8aba24184d83c51f2d1372edc0ad838597d0c4 Mon Sep 17 00:00:00 2001
From: Geert Hendrickx <geert@hendrickx.be>
Date: Thu, 5 Sep 2024 12:32:41 +0200
Subject: [PATCH] Upgrade openssl to 3.0.15

Fixed in OpenSSL 3.0.10 (1 Aug 2023)
CVE-2023-3446
CVE-2023-3817

Fixed in OpenSSL 3.0.11 (19 Sep 2023)
CVE-2023-4807

Fixed in OpenSSL 3.0.12 (24 Oct 2023)
CVE-2023-5363

Fixed in OpenSSL 3.0.13 (30 Jan 2024)
CVE-2023-5678
CVE-2023-6129
CVE-2023-6237
CVE-2024-0727

Fixed in OpenSSL 3.0.14 (04 Jun 2024)
CVE-2024-2511
CVE-2024-4603
CVE-2024-4741

Fixed in OpenSSL 3.0.15 (03 Sep 2024)
CVE-2024-5535
CVE-2024-6119
---
 thirdparty/openssl/Makefile | 2 +-
 versions.def                | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/thirdparty/openssl/Makefile b/thirdparty/openssl/Makefile
index b1a1bafeb..dbe475ce0 100644
--- a/thirdparty/openssl/Makefile
+++ b/thirdparty/openssl/Makefile
@@ -6,7 +6,7 @@ pvers := $(OPENSSL_VERSION)
 pname := openssl
 pfile := $(pname)-$(pvers).tar.gz
 psrc_file := $(SRC_DIR)/$(pfile)
-purl := https://www.openssl.org/source/$(pfile)
+purl := https://github.com/openssl/openssl/releases/download/$(pname)-$(pvers)/$(pfile)
 zname := zimbra-$(pname)
 zspec := $(pname).spec
 
diff --git a/versions.def b/versions.def
index f272277dc..eec497829 100644
--- a/versions.def
+++ b/versions.def
@@ -101,7 +101,7 @@ MAVEN_VERSION		:= 3.3.9
 NGINX_VERSION		:= 1.24.0
 NGINX_HTTP_KEEPALIVE	:= 19755fc0e22aa7d7ac2198f78b297951d31ea1dc
 
-OPENSSL_VERSION		:= 3.0.9
+OPENSSL_VERSION		:= 3.0.15
 
 PFLOGSUMM_VERSION	:= 1.1.5