projects / librecmc / librecmc.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 29184d5) | patch
wolfssl: update to v4.2.0-stable
authorEneas U de Queiroz <cotequeiroz@gmail.com>
Wed, 6 Nov 2019 21:22:52 +0000 (18:22 -0300)
committerRISCi_ATOM <bob@bobcall.me>
Wed, 13 Nov 2019 18:49:54 +0000 (13:49 -0500)
commitf84b4e0e4d32bd3b8de49396c8dd15b932c55858
tree97a4a19eb66d22b317f1f166bb7405acbb7233dctree | snapshot
parent29184d537f54187015dc156af7885300798a6954commit | diff
wolfssl: update to v4.2.0-stable

Many bugs were fixed--2 patches removed here.

This release of wolfSSL includes fixes for 5 security vulnerabilities,
including two CVEs with high/critical base scores:

- potential invalid read with TLS 1.3 PSK, including session tickets
- potential hang with ocspstaping2 (always enabled in openwrt)
- CVE-2019-15651: 1-byte overread when decoding certificate extensions
- CVE-2019-16748: 1-byte overread when checking certificate signatures
- DSA attack to recover DSA private keys

Signed-off-by: Eneas U de Queiroz <cotequeiroz@gmail.com>
(cherry picked from commit f4853f7cca816214cd6e64cffe2b73d0b8c16def)
package/libs/wolfssl/Makefile diff | blob | history
package/libs/wolfssl/patches/010-build-with-devcrypto-and-aesccm.patch [deleted file] blob | history
package/libs/wolfssl/patches/020-build-fix-for-aesccm-devcrypto-cbc-wpas-and-afalg.patch [deleted file] blob | history