openssl: update to 3.0.13
authorIvan Pavlov <AuthorReflex@gmail.com>
Fri, 2 Feb 2024 05:46:52 +0000 (08:46 +0300)
committerRISCi_ATOM <bob@bobcall.me>
Tue, 27 Feb 2024 16:26:18 +0000 (11:26 -0500)
commit7a13f0824da7bc3c3edbe5ea30195a91dd0ea440
tree2f4e463c1e41eb13bdc9c2bed92df10338b65b54
parenta1bb5083a35f7cf526d7bb375668ee65e7ed5c8a
openssl: update to 3.0.13

Major changes between OpenSSL 3.0.12 and OpenSSL 3.0.13 [30 Jan 2024]

  * Fixed PKCS12 Decoding crashes
    ([CVE-2024-0727])
  * Fixed Excessive time spent checking invalid RSA public keys
    ([CVE-2023-6237])
  * Fixed POLY1305 MAC implementation corrupting vector registers on PowerPC
    CPUs which support PowerISA 2.07
    ([CVE-2023-6129])
  * Fix excessive time spent in DH check / generation with large Q parameter
    value ([CVE-2023-5678])

Signed-off-by: Ivan Pavlov <AuthorReflex@gmail.com>
(cherry picked from commit 44cd90c49a7457345c0fba186d5d762d3a04d854)
package/libs/openssl/Makefile
package/libs/openssl/patches/100-Configure-afalg-support.patch
package/libs/openssl/patches/140-allow-prefer-chacha20.patch