Hi,
While many of us were busy lately with upgrading CentOS 6 systems to CentOS 8, a lot of systems may still be running CentOS 6 and migrations came to a halt this week with the announcement of RedHats new direction for the CentOS project.
Since security updates for CentOS 6 are not provided anymore, I've decided to try my best to address CVE-2020-1971 and I welcome others to do the same for this and other new issues which may come up.
Attached patches: openssl.spec.patch.gz openssl-1.0.1e-cve-2020-1971.patch.gz
Please let me know if you find any issues.
Regards, Simon