openwrt/package/libs/openssl/patches
Eneas U de Queiroz 81266d9001 openssl: bump to 1.1.1k
This version fixes 2 security vulnerabilities, among other changes:

 - CVE-2021-3450: problem with verifying a certificate chain when using
   the X509_V_FLAG_X509_STRICT flag.

 - CVE-2021-3449: OpenSSL TLS server may crash if sent a maliciously
   crafted renegotiation ClientHello message from a client.

Signed-off-by: Eneas U de Queiroz <cotequeiroz@gmail.com>
(cherry picked from commit 0bd0de7d43)
2021-03-27 07:44:43 +01:00
..
100-Configure-afalg-support.patch openssl: bump to 1.1.1h 2020-09-28 17:14:31 +02:00
110-openwrt_targets.patch openssl: bump to 1.1.1d 2019-09-23 07:42:30 +02:00
120-strip-cflags-from-binary.patch openssl: bump to 1.1.1d 2019-09-23 07:42:30 +02:00
130-dont-build-tests-fuzz.patch openssl: bump to 1.1.1h 2020-09-28 17:14:31 +02:00
140-allow-prefer-chacha20.patch openssl: bump to 1.1.1d 2019-09-23 07:42:30 +02:00
150-openssl.cnf-add-engines-conf.patch openssl: add configuration example for afalg-sync 2020-03-22 23:03:24 +01:00
400-eng_devcrypto-save-ioctl-if-EVP_MD_.FLAG_ONESHOT.patch openssl: bump to 1.1.1d 2019-09-23 07:42:30 +02:00
410-eng_devcrypto-add-configuration-options.patch openssl: bump to 1.1.1d 2019-09-23 07:42:30 +02:00
420-eng_devcrypto-add-command-to-dump-driver-info.patch openssl: bump to 1.1.1d 2019-09-23 07:42:30 +02:00
430-e_devcrypto-make-the-dev-crypto-engine-dynamic.patch openssl: bump to 1.1.1k 2021-03-27 07:44:43 +01:00
500-e_devcrypto-default-to-not-use-digests-in-engine.patch openssl: update to 1.1.1e 2020-03-22 23:03:24 +01:00
510-e_devcrypto-ignore-error-when-closing-session.patch openssl: update to 1.1.1e 2020-03-22 23:03:24 +01:00