<div dir="ltr"><div><br></div>Add a -r to your diff command so you recursively compare ... then you will see the actual code changes.<div>Without the -r you are only comparing files in the top-level directory of each tree.<br><div><br></div><div><span style="font-family:"courier new",monospace">diff <b>-r</b> -dup openssl-1.0.2q openssl-1.0.2r</span>  <br><div><br></div><div>Tim.<br><br><div class="gmail_quote"><div dir="ltr" class="gmail_attr">---------- Forwarded message ----------<br></div>From: Hong Cho <<a href="mailto:hongcho@gmail.com" target="_blank">hongcho@gmail.com</a>><br>To: <a href="mailto:openssl@openssl.org" target="_blank">openssl@openssl.org</a>, <a href="mailto:openssl-project@openssl.org" target="_blank">openssl-project@openssl.org</a><br>Cc: OpenSSL User Support ML <<a href="mailto:openssl-users@openssl.org" target="_blank">openssl-users@openssl.org</a>>, OpenSSL Announce ML <<a href="mailto:openssl-announce@openssl.org" target="_blank">openssl-announce@openssl.org</a>><br>Bcc: <br>Date: Wed, 27 Feb 2019 08:28:17 +0900<br>Subject: Re: [openssl-project] OpenSSL version 1.0.2q published</div><div class="gmail_quote"><br><div dir="ltr"><div dir="ltr"><div dir="ltr"><div dir="ltr"><div style="font-family:courier new,monospace;font-size:small">I see no code change between 1.0.2q and 1.0.2r.</div><div style="font-family:courier new,monospace;font-size:small"><br></div><div style="font-family:courier new,monospace;font-size:small">------</div><div style="font-family:courier new,monospace;font-size:small"># diff -dup openssl-1.0.2q openssl-1.0.2r |& grep '^diff' | awk '{print $4}'<br>openssl-1.0.2r/CHANGES<br>openssl-1.0.2r/Makefile<br>openssl-1.0.2r/Makefile.org<br>openssl-1.0.2r/NEWS<br>openssl-1.0.2r/README<br>openssl-1.0.2r/openssl.spec<br>hongch@hongch_bldx:~/downloads> diff -dup openssl-1.0.2q openssl-1.0.2r | & grep '^Only'<br>Only in openssl-1.0.2q: Makefile.bak<br></div><div style="font-family:courier new,monospace;font-size:small">------</div><div style="font-family:courier new,monospace;font-size:small"><br></div><div style="font-family:courier new,monospace;font-size:small">It's supposed have a fix for CVE-2019-1559? Am I missing something?<br></div><div style="font-family:courier new,monospace;font-size:small"><br></div><div style="font-family:courier new,monospace;font-size:small">Hong.<br></div><div style="font-family:courier new,monospace;font-size:small"><br></div></div></div></div></div><br><div class="gmail_quote"><div dir="ltr" class="gmail_attr"><br></div></div></div></div></div></div></div>