projects / buildroot.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 182a6c2) | patch
mbedtls: security bump to version 2.7.5
authorPeter Korsgaard <peter@korsgaard.com>
Fri, 24 Aug 2018 16:27:15 +0000 (18:27 +0200)
committerThomas Petazzoni <thomas.petazzoni@bootlin.com>
Fri, 24 Aug 2018 21:12:23 +0000 (23:12 +0200)
commit7a7a1591350c29538e86cedebcb251ffac3daecc
tree2a9b1a2a9e85536a6c46559ce1acb3375b5ecd0ftree
parent182a6c231b95e6f72af453632495151380a560decommit | diff
mbedtls: security bump to version 2.7.5

Fixes the following security issues:

- CVE-2018-0497: Remote plaintext recovery on use of CBC based ciphersuites
  through a timing side-channel

- CVE-2018-0498: Plaintext recovery on use of CBC based ciphersuites through
  a cache based side-channel

For more info, see the advisory:
https://tls.mbed.org/tech-updates/security-advisories/mbedtls-security-advisory-2018-02

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
package/mbedtls/mbedtls.hash diff | blob | history
package/mbedtls/mbedtls.mk diff | blob | history