openwrt

mirror of https://github.com/openwrt/openwrt.git synced 2024-12-22 15:02:32 +00:00

History

Eneas U de Queiroz 6cabbe9646 wolfssl: update to v4.2.0-stable Many bugs were fixed--2 patches removed here. This release of wolfSSL includes fixes for 5 security vulnerabilities, including two CVEs with high/critical base scores: - potential invalid read with TLS 1.3 PSK, including session tickets - potential hang with ocspstaping2 (always enabled in openwrt) - CVE-2019-15651: 1-byte overread when decoding certificate extensions - CVE-2019-16748: 1-byte overread when checking certificate signatures - DSA attack to recover DSA private keys Signed-off-by: Eneas U de Queiroz <cotequeiroz@gmail.com> (cherry picked from commit `f4853f7cca`)	2019-11-10 16:23:08 +01:00
..
100-disable-hardening-check.patch	wolfssl: bump to 4.1.0-stable	2019-08-17 17:00:10 +02:00

Eneas U de Queiroz 6cabbe9646 wolfssl: update to v4.2.0-stable

Many bugs were fixed--2 patches removed here.

This release of wolfSSL includes fixes for 5 security vulnerabilities,
including two CVEs with high/critical base scores:

- potential invalid read with TLS 1.3 PSK, including session tickets
- potential hang with ocspstaping2 (always enabled in openwrt)
- CVE-2019-15651: 1-byte overread when decoding certificate extensions
- CVE-2019-16748: 1-byte overread when checking certificate signatures
- DSA attack to recover DSA private keys

Signed-off-by: Eneas U de Queiroz <cotequeiroz@gmail.com>
(cherry picked from commit f4853f7cca)

2019-11-10 16:23:08 +01:00

100-disable-hardening-check.patch wolfssl: bump to 4.1.0-stable 2019-08-17 17:00:10 +02:00