ExternalVendorCode/openwrt
1
0
Fork 0
mirror of https://github.com/openwrt/openwrt.git synced 2025-01-06 22:08:54 +00:00
Code Issues Actions 5 Packages Projects Releases Wiki Activity
b1fa9e3d2b
openwrt/package/libs/openssl/patches
History
Ivan Pavlov 6348850f10 openssl: update to 3.0.9 
CVE-2023-2650 fix
Remove upstreamed patches

Major changes between OpenSSL 3.0.8 and OpenSSL 3.0.9 [30 May 2023]
 * Mitigate for very slow OBJ_obj2txt() performance with gigantic OBJECT IDENTIFIER sub-identities. (CVE-2023-2650)
 * Fixed buffer overread in AES-XTS decryption on ARM 64 bit platforms (CVE-2023-1255)
 * Fixed documentation of X509_VERIFY_PARAM_add0_policy() (CVE-2023-0466)
 * Fixed handling of invalid certificate policies in leaf certificates (CVE-2023-0465)
 * Limited the number of nodes created in a policy tree (CVE-2023-0464)

Signed-off-by: Ivan Pavlov <AuthorReflex@gmail.com>
2023-06-09 13:33:27 +02:00
..
100-Configure-afalg-support.patch openssl: bump to 3.0.8 2023-02-20 11:24:17 +01:00
110-openwrt_targets.patch openssl: add linux-riscv64 into the targets list 2023-05-28 13:19:11 +02:00
120-strip-cflags-from-binary.patch openssl: update to 3.0.9 2023-06-09 13:33:27 +02:00
130-dont-build-fuzz-docs.patch openssl: bump to 3.0.8 2023-02-20 11:24:17 +01:00
140-allow-prefer-chacha20.patch openssl: bump to 3.0.8 2023-02-20 11:24:17 +01:00
150-openssl.cnf-add-engines-conf.patch openssl: add legacy provider 2023-04-05 08:24:49 -03:00
500-e_devcrypto-default-to-not-use-digests-in-engine.patch openssl: fix sysupgrade failure with devcrypto 2023-03-06 18:09:13 -03:00
510-e_devcrypto-ignore-error-when-closing-session.patch openssl: fix sysupgrade failure with devcrypto 2023-03-06 18:09:13 -03:00