ExternalVendorCode/openwrt
1
0
Fork 0
mirror of https://github.com/openwrt/openwrt.git synced 2024-12-19 05:38:00 +00:00
Code Issues Actions 4 Packages Projects Releases Wiki Activity
f475a44c03
openwrt/package/libs
History
Hauke Mehrtens f475a44c03 wolfssl: Update to 5.7.0 
This fixes multiple security problems:
 * [High] CVE-2024-0901 Potential denial of service and out of bounds
   read. Affects TLS 1.3 on the server side when accepting a connection
   from a malicious TLS 1.3 client. If using TLS 1.3 on the server side
   it is recommended to update the version of wolfSSL used.

 * [Med] CVE-2024-1545 Fault Injection vulnerability in
   RsaPrivateDecryption function that potentially allows an attacker
   that has access to the same system with a victims process to perform
   a Rowhammer fault injection. Thanks to Junkai Liang, Zhi Zhang, Xin
   Zhang, Qingni Shen for the report (Peking University, The University
   of Western Australia)."

 * [Med] Fault injection attack with EdDSA signature operations. This
   affects ed25519 sign operations where the system could be susceptible
   to Rowhammer attacks. Thanks to Junkai Liang, Zhi Zhang, Xin Zhang,
   Qingni Shen for the report (Peking University, The University of
   Western Australia).

Size increased a little:
wolfssl 5.6.6:
516880 bin/packages/mips_24kc/base/libwolfssl5.6.6.e624513f_5.6.6-stable-r1_mips_24kc.ipk
wolfssl: 5.7.0:
519429 bin/packages/mips_24kc/base/libwolfssl5.7.0.e624513f_5.7.0-stable-r1_mips_24kc.ipk

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
2024-04-24 23:01:03 +02:00
..
argp-standalone treewide: opt-out of tree-wide LTO usage 2023-03-21 18:28:23 +01:00
elfutils Revert "elfutils: fix a missing typedef in the last update" 2024-04-15 22:05:24 +02:00
gettext-full gettext-full: link libiconv when building host pkg 2024-04-05 15:08:38 +02:00
gmp gmp: update to 6.3 2023-10-17 11:05:16 +02:00
jansson treewide: add support for "lto" in PKG_BUILD_FLAGS 2023-03-21 18:28:22 +01:00
libaudit treewide: replace PKG_USE_MIPS16:=0 with PKG_BUILD_FLAGS:=no-mips16 2023-03-21 18:28:22 +01:00
libbpf libbpf: Update to v1.4.0 2024-04-13 11:20:41 +02:00
libbsd libbsd: update to 0.11.8 2024-01-30 10:39:21 +01:00
libcap libcap: update to 2.69 2023-05-22 18:51:31 +02:00
libevent2 libevent2: make cmake use relative imported path 2024-03-13 00:24:43 +00:00
libiconv-full libiconv-full: add host build 2022-07-17 14:21:03 +02:00
libjson-c libjson-c: update to 0.17 2023-10-12 09:50:06 +02:00
libmd libmd: update to 1.1.0 2023-10-12 09:50:25 +02:00
libmnl libmnl: add PKG_CPE_ID 2022-09-06 16:36:44 +01:00
libnetfilter-conntrack packages: assign PKG_CPE_ID for all missing packages 2023-09-19 20:21:13 +02:00
libnfnetlink libnfnetlink: add PKG_CPE_ID 2022-09-06 16:36:45 +01:00
libnftnl libnftnl: update to 1.2.6 2023-07-18 14:37:19 +02:00
libnl libnl: update to 3.9.0 2024-01-04 16:06:44 +01:00
libnl-tiny treewide: update PKG_MIRROR_HASH to zst 2024-04-06 11:24:18 +02:00
libpcap packages: assign PKG_CPE_ID for all missing packages 2023-09-19 20:21:13 +02:00
libselinux libselinux: opt-out of lto usage 2023-10-29 19:42:32 +01:00
libsemanage libsemanage: update to 3.5 2023-05-18 10:14:13 +02:00
libsepol libsepol: opt-out of lto usage 2023-10-29 19:42:32 +01:00
libtool libtool: update to 2.4.7 2022-07-10 19:07:47 +02:00
libtraceevent libtraceevent: update to 1.8.2 2024-01-25 17:31:50 +01:00
libtracefs libtracefs: update to 1.8 2024-01-25 17:31:50 +01:00
libubox treewide: update PKG_MIRROR_HASH to zst 2024-04-06 11:24:18 +02:00
libunistring libunistring: add from packages feed 2023-05-15 16:14:41 +02:00
libunwind libunwind: update to 1.6.2 2022-09-07 04:22:40 +01:00
libusb treewide: replace AUTORELEASE with real PKG_RELEASE 2023-05-18 11:35:29 +02:00
libxml2 libxml2: add host build dependency on libiconv-full 2024-04-04 13:45:46 +02:00
mbedtls mbedtls: Update to 2.28.8 2024-04-24 22:24:11 +02:00
mpfr mpfr: import from packages feed 2024-01-04 22:40:05 +01:00
musl-fts musl-fts: remove shared libraries from host 2022-03-27 14:38:13 +02:00
ncurses ncurses: add alacritty terminfo 2023-02-26 01:12:02 +01:00
nettle nettle: update to 3.9.1 2023-07-19 15:25:35 +02:00
openssl openssl: update to 3.0.13 2024-02-02 08:46:52 +03:00
pcre2 pcre2: fix host compilation of libselinux by enabling PIC 2023-05-28 08:58:07 +02:00
popt treewide: Add extra CPE identifier 2023-09-25 23:06:33 +02:00
readline readline: update to 8.2 2022-10-23 18:16:22 +02:00
sysfsutils treewide: Add extra CPE identifier 2023-09-25 23:06:33 +02:00
toolchain treewide: use APK compatible version schema 2024-03-22 22:14:22 +01:00
uclient uclient: update to Git HEAD (2024-04-19) 2024-04-19 20:06:47 +02:00
udebug treewide: update PKG_MIRROR_HASH to zst 2024-04-06 11:24:18 +02:00
ustream-ssl ustream-ssl: update to Git HEAD (2024-04-19) 2024-04-19 18:00:23 +02:00
wolfssl wolfssl: Update to 5.7.0 2024-04-24 23:01:03 +02:00
zlib zlib: update to 1.3.1 2024-02-02 17:26:29 +01:00