projects / librecmc / librecmc.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: ae19ff2) | patch
openssl: bump to 1.1.1d
authorEneas U de Queiroz <cotequeiroz@gmail.com>
Tue, 17 Sep 2019 13:52:11 +0000 (10:52 -0300)
committerRISCi_ATOM <bob@bobcall.me>
Tue, 24 Sep 2019 20:26:33 +0000 (16:26 -0400)
commit2a2bcb213e83c2e5d2596e17a0f1b354c740907e
treecf594a178b8f9cb9302eb096f156199157a7dacdtree | snapshot
parentae19ff224e767af77e71bc0afb3169c45ecba421commit | diff
openssl: bump to 1.1.1d

This version fixes 3 low-severity vulnerabilities:

- CVE-2019-1547: ECDSA remote timing attack
- CVE-2019-1549: Fork Protection
- CVE-2019-1563: Padding Oracle in PKCS7_dataDecode and
 CMS_decrypt_set1_pkey

Patches were refreshed.

Signed-off-by: Eneas U de Queiroz <cotequeiroz@gmail.com>
(cherry picked from commit d868d0a5d7e1d76bb1a8980346d222fae55fa18b)
12 files changed:
package/libs/openssl/Makefile diff | blob | history
package/libs/openssl/patches/100-Configure-afalg-support.patch diff | blob | history
package/libs/openssl/patches/110-openwrt_targets.patch diff | blob | history
package/libs/openssl/patches/120-strip-cflags-from-binary.patch diff | blob | history
package/libs/openssl/patches/130-dont-build-tests-fuzz.patch diff | blob | history
package/libs/openssl/patches/140-allow-prefer-chacha20.patch diff | blob | history
package/libs/openssl/patches/400-eng_devcrypto-save-ioctl-if-EVP_MD_.FLAG_ONESHOT.patch diff | blob | history
package/libs/openssl/patches/410-eng_devcrypto-add-configuration-options.patch diff | blob | history
package/libs/openssl/patches/420-eng_devcrypto-add-command-to-dump-driver-info.patch diff | blob | history
package/libs/openssl/patches/430-e_devcrypto-make-the-dev-crypto-engine-dynamic.patch diff | blob | history
package/libs/openssl/patches/500-e_devcrypto-default-to-not-use-digests-in-engine.patch diff | blob | history
package/libs/openssl/patches/510-e_devcrypto-ignore-error-when-closing-session.patch diff | blob | history