openwrt/package/libs/openssl/patches
Eneas U de Queiroz e7a9ee0580 openssl: bump to 1.1.1k
This version fixes 2 security vulnerabilities, among other changes:

 - CVE-2021-3450: problem with verifying a certificate chain when using
   the X509_V_FLAG_X509_STRICT flag.

 - CVE-2021-3449: OpenSSL TLS server may crash if sent a maliciously
   crafted renegotiation ClientHello message from a client.

Signed-off-by: Eneas U de Queiroz <cotequeiroz@gmail.com>
(cherry picked from commit 0bd0de7d43)
2021-03-27 07:34:35 +01:00
..
100-Configure-afalg-support.patch openssl: bump to 1.1.1h 2020-09-28 08:49:39 +02:00
110-openwrt_targets.patch openssl: bump to 1.1.1d 2019-09-19 21:28:53 +02:00
120-strip-cflags-from-binary.patch openssl: add gcc-8 -ffile-prefix-map filter 2019-10-09 09:13:44 +02:00
130-dont-build-tests-fuzz.patch openssl: bump to 1.1.1h 2020-09-28 08:49:39 +02:00
140-allow-prefer-chacha20.patch openssl: bump to 1.1.1d 2019-09-19 21:28:53 +02:00
150-openssl.cnf-add-engines-conf.patch openssl: add configuration example for afalg-sync 2020-03-21 17:48:34 +01:00
400-eng_devcrypto-save-ioctl-if-EVP_MD_.FLAG_ONESHOT.patch openssl: bump to 1.1.1d 2019-09-19 21:28:53 +02:00
410-eng_devcrypto-add-configuration-options.patch openssl: bump to 1.1.1d 2019-09-19 21:28:53 +02:00
420-eng_devcrypto-add-command-to-dump-driver-info.patch openssl: bump to 1.1.1d 2019-09-19 21:28:53 +02:00
430-e_devcrypto-make-the-dev-crypto-engine-dynamic.patch openssl: bump to 1.1.1k 2021-03-27 07:34:35 +01:00
500-e_devcrypto-default-to-not-use-digests-in-engine.patch openssl: update to 1.1.1e 2020-03-21 17:48:34 +01:00
510-e_devcrypto-ignore-error-when-closing-session.patch openssl: update to 1.1.1e 2020-03-21 17:48:34 +01:00