openwrt/package/libs
Hauke Mehrtens 1691c1168d mbedtls: Update to version 2.16.12
This fixes the following security problems:
* Zeroize several intermediate variables used to calculate the expected
  value when verifying a MAC or AEAD tag. This hardens the library in
  case the value leaks through a memory disclosure vulnerability. For
  example, a memory disclosure vulnerability could have allowed a
  man-in-the-middle to inject fake ciphertext into a DTLS connection.
* Fix a double-free that happened after mbedtls_ssl_set_session() or
  mbedtls_ssl_get_session() failed with MBEDTLS_ERR_SSL_ALLOC_FAILED
  (out of memory). After that, calling mbedtls_ssl_session_free()
  and mbedtls_ssl_free() would cause an internal session buffer to
  be free()'d twice. CVE-2021-44732

The sizes of the ipk changed on MIPS 24Kc like this:
182454 libmbedtls12_2.16.11-2_mips_24kc.ipk
182742 libmbedtls12_2.16.12-1_mips_24kc.ipk

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
(cherry picked from commit 57f38e2c82)
2022-02-13 18:27:18 +01:00
..
argp-standalone argp-standalone: clean up patch fuzz 2018-01-05 11:59:59 +01:00
elfutils elfutils: bump to 0.177 2019-09-04 13:42:02 +02:00
gettext package: replace $(STAGING_DIR)/host with $(STAGING_DIR_HOSTPKG) 2017-01-10 22:15:37 +01:00
gettext-full treewide: revise library packaging 2019-01-24 10:39:30 +01:00
gmp treewide: revise library packaging 2019-01-24 10:39:30 +01:00
libbsd libbsd: Fix compilation under ARC 2019-05-17 21:41:43 +02:00
libconfig treewide: revise library packaging 2019-01-24 10:39:30 +01:00
libevent2 libevent2: Update to 2.1.11 2019-11-01 14:22:37 +00:00
libiconv package: replace $(STAGING_DIR)/host with $(STAGING_DIR_HOSTPKG) 2017-01-10 22:15:37 +01:00
libiconv-full treewide: revise library packaging 2019-01-24 10:39:30 +01:00
libjson-c libjson-c: backport security fixes 2020-05-13 11:45:15 +02:00
libmnl treewide: revise library packaging 2019-01-24 10:39:30 +01:00
libnetfilter-conntrack treewide: revise library packaging 2019-01-24 10:39:30 +01:00
libnetfilter-cthelper treewide: revise library packaging 2019-01-24 10:39:30 +01:00
libnetfilter-cttimeout treewide: revise library packaging 2019-01-24 10:39:30 +01:00
libnetfilter-log treewide: revise library packaging 2019-01-24 10:39:30 +01:00
libnetfilter-queue libnetfilter-queue: fix package title and description 2020-06-28 14:29:03 +02:00
libnfnetlink libnfnetlink: Avoid passing both -fPIC and -fpic 2019-09-04 13:45:26 +02:00
libnftnl libnftnl: bump to version 1.1.4 2019-09-04 13:46:01 +02:00
libnl treewide: revise library packaging 2019-01-24 10:39:30 +01:00
libnl-tiny libnl-tiny: use fixed message size instead of using the page size 2017-11-16 12:54:15 +01:00
libpcap tcpdump: libpcap: Remove http://www.us.tcpdump.org mirror 2022-02-13 10:51:47 +01:00
libroxml libroxml: bump to the 3.0.2 version 2019-07-16 14:13:07 +02:00
libtool treewide: revise library packaging 2019-01-24 10:39:30 +01:00
libubox libubox: update to the latest version 2020-05-26 11:47:46 +02:00
libunwind libunwind: bump to version 1.3.1 2019-06-05 01:13:07 +00:00
libusb treewide: revise library packaging 2019-01-24 10:39:30 +01:00
libusb-compat treewide: revise library packaging 2019-01-24 10:39:30 +01:00
lzo treewide: revise library packaging 2019-01-24 10:39:30 +01:00
mbedtls mbedtls: Update to version 2.16.12 2022-02-13 18:27:18 +01:00
ncurses ncurses: Do not pass both -fPIC and -fpic 2019-09-04 13:45:21 +02:00
nettle nettle: Update to 3.5.1 2019-09-04 13:37:38 +02:00
nghttp2 nghttp2: bump to 1.41.0 2020-07-04 21:10:18 +02:00
openssl openssl: bump to 1.1.1m 2022-01-16 18:52:58 +01:00
popt popt: Use modern toolchain logic 2019-02-26 23:20:04 +01:00
readline readline: needs host depend on ncurses to build 2020-03-29 18:47:21 +02:00
sysfsutils treewide: revise library packaging 2019-01-24 10:39:30 +01:00
toolchain libs/toolchain: remove eglibc remnant file 2019-09-04 13:28:04 +02:00
uclibc++ uClibc++: Fix three bugs 2019-10-19 14:30:00 +02:00
uclient uclient: update to 19.07 Git HEAD 2020-06-17 22:22:25 +02:00
ustream-ssl ustream-ssl: update to 19.07 Git HEAD 2020-05-06 20:24:38 +02:00
wolfssl wolfssl: bump to v4.7.0-stable 2021-03-06 15:48:43 +01:00
zlib zlib: Use relative paths in pkg-config metadata file 2019-05-17 21:41:43 +02:00