openwrt/package/libs
Magnus Kroken 19b8696dd7 mbedtls: update to 2.16.7
Mbed TLS 2.16.7 is a maintenance release of the Mbed TLS 2.16 branch,
and provides bug fixes and minor enhancements. This release includes
fixes for security issues and the most severe one is described in more
detail in a security advisory:
https://tls.mbed.org/tech-updates/security-advisories/mbedtls-security-advisory-2020-07

* Fix a side channel vulnerability in modular exponentiation that could
reveal an RSA private key used in a secure enclave.
* Fix side channel in mbedtls_ecp_check_pub_priv() and
mbedtls_pk_parse_key() / mbedtls_pk_parse_keyfile() (when loading a private
key that didn't include the uncompressed public key), as well as
mbedtls_ecp_mul() / mbedtls_ecp_mul_restartable() when called with a NULL
f_rng argument. An attacker with access to precise enough timing and
memory access information (typically an untrusted operating system
attacking a secure enclave) could fully recover the ECC private key.
* Fix issue in Lucky 13 counter-measure that could make it ineffective when
hardware accelerators were used (using one of the MBEDTLS_SHAxxx_ALT
macros).

Due to Mbed TLS moving from ARMmbed to the Trusted Firmware project, some
changes to the download URLs are required. For the time being, the
ARMmbed/mbedtls Github repository is the canonical source for Mbed TLS.

Signed-off-by: Magnus Kroken <mkroken@gmail.com>
[Use https://codeload.github.com and new tar.gz file]
Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
(cherry picked from commit 201d6776a0)
2020-08-27 00:28:00 +02:00
..
argp-standalone argp-standalone: clean up patch fuzz 2018-01-05 11:59:59 +01:00
elfutils elfutils: bump to 0.177 2019-09-04 13:42:02 +02:00
gettext package: replace $(STAGING_DIR)/host with $(STAGING_DIR_HOSTPKG) 2017-01-10 22:15:37 +01:00
gettext-full treewide: revise library packaging 2019-01-24 10:39:30 +01:00
gmp treewide: revise library packaging 2019-01-24 10:39:30 +01:00
libbsd libbsd: Fix compilation under ARC 2019-05-17 21:41:43 +02:00
libconfig treewide: revise library packaging 2019-01-24 10:39:30 +01:00
libevent2 libevent2: Update to 2.1.11 2019-11-01 14:22:37 +00:00
libiconv package: replace $(STAGING_DIR)/host with $(STAGING_DIR_HOSTPKG) 2017-01-10 22:15:37 +01:00
libiconv-full treewide: revise library packaging 2019-01-24 10:39:30 +01:00
libjson-c libjson-c: backport security fixes 2020-05-13 11:45:15 +02:00
libmnl treewide: revise library packaging 2019-01-24 10:39:30 +01:00
libnetfilter-conntrack treewide: revise library packaging 2019-01-24 10:39:30 +01:00
libnetfilter-cthelper treewide: revise library packaging 2019-01-24 10:39:30 +01:00
libnetfilter-cttimeout treewide: revise library packaging 2019-01-24 10:39:30 +01:00
libnetfilter-log treewide: revise library packaging 2019-01-24 10:39:30 +01:00
libnetfilter-queue libnetfilter-queue: fix package title and description 2020-06-28 14:29:03 +02:00
libnfnetlink libnfnetlink: Avoid passing both -fPIC and -fpic 2019-09-04 13:45:26 +02:00
libnftnl libnftnl: bump to version 1.1.4 2019-09-04 13:46:01 +02:00
libnl treewide: revise library packaging 2019-01-24 10:39:30 +01:00
libnl-tiny libnl-tiny: use fixed message size instead of using the page size 2017-11-16 12:54:15 +01:00
libpcap libpcap: fix library packaging issues 2020-05-06 00:51:35 +02:00
libroxml libroxml: bump to the 3.0.2 version 2019-07-16 14:13:07 +02:00
libtool treewide: revise library packaging 2019-01-24 10:39:30 +01:00
libubox libubox: update to the latest version 2020-05-26 11:47:46 +02:00
libunwind libunwind: bump to version 1.3.1 2019-06-05 01:13:07 +00:00
libusb treewide: revise library packaging 2019-01-24 10:39:30 +01:00
libusb-compat treewide: revise library packaging 2019-01-24 10:39:30 +01:00
lzo treewide: revise library packaging 2019-01-24 10:39:30 +01:00
mbedtls mbedtls: update to 2.16.7 2020-08-27 00:28:00 +02:00
ncurses ncurses: Do not pass both -fPIC and -fpic 2019-09-04 13:45:21 +02:00
nettle nettle: Update to 3.5.1 2019-09-04 13:37:38 +02:00
nghttp2 nghttp2: bump to 1.41.0 2020-07-04 21:10:18 +02:00
openssl openssl: bump to 1.1.1g 2020-04-21 23:05:20 +02:00
popt popt: Use modern toolchain logic 2019-02-26 23:20:04 +01:00
readline readline: needs host depend on ncurses to build 2020-03-29 18:47:21 +02:00
sysfsutils treewide: revise library packaging 2019-01-24 10:39:30 +01:00
toolchain libs/toolchain: remove eglibc remnant file 2019-09-04 13:28:04 +02:00
uclibc++ uClibc++: Fix three bugs 2019-10-19 14:30:00 +02:00
uclient uclient: update to 19.07 Git HEAD 2020-06-17 22:22:25 +02:00
ustream-ssl ustream-ssl: update to 19.07 Git HEAD 2020-05-06 20:24:38 +02:00
wolfssl wolfssl: bump to 4.3.0-stable 2020-01-04 23:04:24 +01:00
zlib zlib: Use relative paths in pkg-config metadata file 2019-05-17 21:41:43 +02:00