git.openwrt.org Git - openwrt/openwrt.git/commit

author	Hauke Mehrtens <hauke@hauke-m.de>
	Wed, 7 Jun 2023 20:37:47 +0000 (22:37 +0200)
committer	Hauke Mehrtens <hauke@hauke-m.de>
	Wed, 7 Jun 2023 20:40:46 +0000 (22:40 +0200)
commit	afb442270211c00282cecf323d568aa88391a32c
tree	ff703b3e12a3308e1a74259b15e7e6bd1155af5a	tree \| snapshot
parent	171b51519206b5e66ebd01d322f41d790976ce87	commit \| diff

openssl: bump to 1.1.1u

Major changes between OpenSSL 1.1.1t and OpenSSL 1.1.1u [30 May 2023]

    o Mitigate for very slow `OBJ_obj2txt()` performance with gigantic
      OBJECT IDENTIFIER sub-identities.  (CVE-2023-2650)
    o Fixed documentation of X509_VERIFY_PARAM_add0_policy() (CVE-2023-0466)
    o Fixed handling of invalid certificate policies in leaf certificates
      (CVE-2023-0465)
    o Limited the number of nodes created in a policy tree ([CVE-2023-0464])

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>

package/libs/openssl/Makefile		diff \| blob \| history
package/libs/openssl/patches/200-x509-excessive-resource-use-verifying-policy-constra.patch	[deleted file]	blob \| history
package/libs/openssl/patches/210-Ensure-that-EXFLAG_INVALID_POLICY-is-checked-even-in.patch	[deleted file]	blob \| history