git.openwrt.org Git - openwrt/staging/zorun.git/commit

author	Magnus Kroken <mkroken@gmail.com>
	Sun, 14 Mar 2021 18:42:33 +0000 (19:42 +0100)
committer	Hauke Mehrtens <hauke@hauke-m.de>
	Sun, 21 Mar 2021 13:02:46 +0000 (14:02 +0100)
commit	69b4a11aedeb799cae97807ca932875d7c938645
tree	51b633f682015183636ef6eedafd873d69c6307b	tree \| snapshot
parent	d52c5c081eefcc669e8e97a1ebad4d22e3637a4f	commit \| diff

mbedtls: update to 2.16.10

This release of Mbed TLS provides bug fixes and minor enhancements. This
release includes fixes for security issues.

Security fixes:
* Fix a buffer overflow in mbedtls_mpi_sub_abs()
* Fix an errorneous estimation for an internal buffer in
mbedtls_pk_write_key_pem()
* Fix a stack buffer overflow with mbedtls_net_poll() and
mbedtls_net_recv_timeout()
* Guard against strong local side channel attack against base64 tables
by making access aceess to them use constant flow code

Full release announcement:
https://github.com/ARMmbed/mbedtls/releases/tag/v2.16.10

Signed-off-by: Magnus Kroken <mkroken@gmail.com>
(cherry picked from commit dbde2bcf60b5d5f54501a4b440f25fe7d02fbe5d)

package/libs/mbedtls/Makefile		diff \| blob \| history
package/libs/mbedtls/patches/200-config.patch		diff \| blob \| history