openssl: update to 3.0.13
authorIvan Pavlov <AuthorReflex@gmail.com>
Fri, 2 Feb 2024 05:46:52 +0000 (08:46 +0300)
committerHauke Mehrtens <hauke@hauke-m.de>
Sun, 4 Feb 2024 18:18:17 +0000 (19:18 +0100)
commitaa762ada8089e588f1734cd25dc8c236a867661f
tree8b6cc2e1c30c64308dd84fb0d5995ca70e8bef30
parent9ee626f94505eeb71e9cdab19af216eb1c9f2a15
openssl: update to 3.0.13

Major changes between OpenSSL 3.0.12 and OpenSSL 3.0.13 [30 Jan 2024]

  * Fixed PKCS12 Decoding crashes
    ([CVE-2024-0727])
  * Fixed Excessive time spent checking invalid RSA public keys
    ([CVE-2023-6237])
  * Fixed POLY1305 MAC implementation corrupting vector registers on PowerPC
    CPUs which support PowerISA 2.07
    ([CVE-2023-6129])
  * Fix excessive time spent in DH check / generation with large Q parameter
    value ([CVE-2023-5678])

Signed-off-by: Ivan Pavlov <AuthorReflex@gmail.com>
(cherry picked from commit 44cd90c49a7457345c0fba186d5d762d3a04d854)
package/libs/openssl/Makefile
package/libs/openssl/patches/100-Configure-afalg-support.patch
package/libs/openssl/patches/140-allow-prefer-chacha20.patch