From: Hauke Mehrtens Date: Sat, 3 Dec 2016 20:33:48 +0000 (+0100) Subject: cyassl: update to wolfssl version 3.9.10 X-Git-Tag: v17.01.0-rc1~643 X-Git-Url: http://git.lede-project.org./?a=commitdiff_plain;h=abedd718aa99193d17f37b281ca3f2452c1bcc23;p=openwrt%2Fopenwrt.git cyassl: update to wolfssl version 3.9.10 This fixes the following security problems: CVE-2016-7440: Software AES table lookups do not properly consider cache-bank access times CVE-2016-7439: Software RSA does not properly consider cache-bank monitoring CVE-2016-7438: Software ECC does not properly consider cache-bank monitoring SWEET32 Attack Signed-off-by: Hauke Mehrtens --- diff --git a/package/libs/cyassl/Makefile b/package/libs/cyassl/Makefile index fe09e78442..3cd8e4cfdf 100644 --- a/package/libs/cyassl/Makefile +++ b/package/libs/cyassl/Makefile @@ -8,12 +8,12 @@ include $(TOPDIR)/rules.mk PKG_NAME:=wolfssl -PKG_VERSION:=3.9.6 +PKG_VERSION:=3.9.10 PKG_RELEASE:=1 PKG_SOURCE:=$(PKG_NAME)-$(PKG_VERSION).zip PKG_SOURCE_URL:=https://www.wolfssl.com/ -PKG_MD5SUM:=df435eacae4f2f1a92a241e80a2106d9 +PKG_MD5SUM:=793921c0db96248be4a369cbfdf0cb7b37ee2be715b8b775b6cd32efe66f494e PKG_FIXUP:=libtool PKG_INSTALL:=1