projects / openwrt / staging / zorun.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 22149da) | patch
openssl: bump to 1.1.1k
authorEneas U de Queiroz <cotequeiroz@gmail.com>
Fri, 26 Mar 2021 17:46:29 +0000 (14:46 -0300)
committerPetr Štetiar <ynezz@true.cz>
Sat, 27 Mar 2021 06:34:35 +0000 (07:34 +0100)
commite7a9ee0580b5aea42f821816ada53911ce5e4c09
treed46952dfd56701a1170ef7c19afa3ead4cefe50atree | snapshot
parent22149da1f4f65985439b3e92da9a5226ad219f3bcommit | diff
openssl: bump to 1.1.1k

This version fixes 2 security vulnerabilities, among other changes:

 - CVE-2021-3450: problem with verifying a certificate chain when using
   the X509_V_FLAG_X509_STRICT flag.

 - CVE-2021-3449: OpenSSL TLS server may crash if sent a maliciously
   crafted renegotiation ClientHello message from a client.

Signed-off-by: Eneas U de Queiroz <cotequeiroz@gmail.com>
(cherry picked from commit 0bd0de7d43b3846ad0d7006294e1daaadfa7b532)
package/libs/openssl/Makefile diff | blob | history
package/libs/openssl/patches/430-e_devcrypto-make-the-dev-crypto-engine-dynamic.patch diff | blob | history
Staging tree of Baptiste Jonglez