ExternalVendorCode/openwrt
1
0
Fork 0
mirror of https://github.com/openwrt/openwrt.git synced 2024-12-22 15:02:32 +00:00
Code Issues Actions 2 Packages Projects Releases Wiki Activity
e9ea571657
openwrt/package/libs/openssl/patches
History
Ivan Pavlov e1d59497e9 openssl: update to 3.0.9 
CVE-2023-2650 fix
Remove upstreamed patches

Major changes between OpenSSL 3.0.8 and OpenSSL 3.0.9 [30 May 2023]
 * Mitigate for very slow OBJ_obj2txt() performance with gigantic OBJECT IDENTIFIER sub-identities. (CVE-2023-2650)
 * Fixed buffer overread in AES-XTS decryption on ARM 64 bit platforms (CVE-2023-1255)
 * Fixed documentation of X509_VERIFY_PARAM_add0_policy() (CVE-2023-0466)
 * Fixed handling of invalid certificate policies in leaf certificates (CVE-2023-0465)
 * Limited the number of nodes created in a policy tree (CVE-2023-0464)

Signed-off-by: Ivan Pavlov <AuthorReflex@gmail.com>
(cherry picked from commit 6348850f10)
2023-06-09 13:36:21 +02:00
..
100-Configure-afalg-support.patch openssl: bump to 3.0.8 2023-02-20 11:24:17 +01:00
110-openwrt_targets.patch openssl: fix powerpc & arc libatomic dependencies 2023-02-22 11:05:06 -03:00
120-strip-cflags-from-binary.patch openssl: update to 3.0.9 2023-06-09 13:36:21 +02:00
130-dont-build-fuzz-docs.patch openssl: bump to 3.0.8 2023-02-20 11:24:17 +01:00
140-allow-prefer-chacha20.patch openssl: bump to 3.0.8 2023-02-20 11:24:17 +01:00
150-openssl.cnf-add-engines-conf.patch openssl: add legacy provider 2023-04-05 08:24:49 -03:00
500-e_devcrypto-default-to-not-use-digests-in-engine.patch openssl: fix sysupgrade failure with devcrypto 2023-03-06 18:09:13 -03:00
510-e_devcrypto-ignore-error-when-closing-session.patch openssl: fix sysupgrade failure with devcrypto 2023-03-06 18:09:13 -03:00