ExternalVendorCode/openwrt
1
0
Fork 0
mirror of https://github.com/openwrt/openwrt.git synced 2024-12-27 09:12:39 +00:00
Code Issues Actions 4 Packages Projects Releases Wiki Activity
2df2b75208
openwrt/package/libs/wolfssl/patches
History
Eneas U de Queiroz 2df2b75208 wolfssl: fixes for CVE-2018-16870 & CVE-2019-13628 
CVE-2018-16870: medium-severity, new variant of the Bleichenbacher
attack to perform downgrade attacks against TLS, which may lead to
leakage of sensible data. Backported from 3.15.7.

CVE-2019-13628 (currently assigned-only): potential leak of nonce sizes
when performing ECDSA signing operations. The leak is considered to be
difficult to exploit but it could potentially be used maliciously to
perform a lattice based timing attack. Backported from 4.1.0.

Signed-off-by: Eneas U de Queiroz <cotequeiroz@gmail.com>
2019-08-17 17:23:17 +02:00
..
010-Make-RsaUnPad-constant-time-when-Block-Type-2-messag.patch wolfssl: fixes for CVE-2018-16870 & CVE-2019-13628 2019-08-17 17:23:17 +02:00
020-Improve-nonce-use-in-ECC-mulmod.patch wolfssl: fixes for CVE-2018-16870 & CVE-2019-13628 2019-08-17 17:23:17 +02:00
100-disable-hardening-check.patch wolfssl: update to version 3.14.4 2018-12-18 08:04:30 +01:00
400-additional_compatibility.patch cyassl,curl,libustream-ssl: rename every cyassl to wolfssl 2017-09-17 00:00:12 +02:00
900-remove-broken-autoconf-macros.patch wolfssl: fixes for CVE-2018-16870 & CVE-2019-13628 2019-08-17 17:23:17 +02:00