projects / librecmc / librecmc.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 4e8d3c3) | patch
openssl: bump to 1.1.1k
authorEneas U de Queiroz <cotequeiroz@gmail.com>
Fri, 26 Mar 2021 17:46:29 +0000 (14:46 -0300)
committerRISCi_ATOM <bob@bobcall.me>
Sun, 28 Mar 2021 15:46:06 +0000 (11:46 -0400)
commit84b8f809f1092a3e7c40eb13118d2000a2b9b09a
tree2c3665d1e68854c23658a8e23601f0e6c20ee885tree | snapshot
parent4e8d3c332ee796ab6383f2447f922d6580d2363dcommit | diff
openssl: bump to 1.1.1k

This version fixes 2 security vulnerabilities, among other changes:

 - CVE-2021-3450: problem with verifying a certificate chain when using
   the X509_V_FLAG_X509_STRICT flag.

 - CVE-2021-3449: OpenSSL TLS server may crash if sent a maliciously
   crafted renegotiation ClientHello message from a client.

Signed-off-by: Eneas U de Queiroz <cotequeiroz@gmail.com>
(cherry picked from commit 0bd0de7d43b3846ad0d7006294e1daaadfa7b532)
package/libs/openssl/Makefile diff | blob | history
package/libs/openssl/patches/430-e_devcrypto-make-the-dev-crypto-engine-dynamic.patch diff | blob | history