git.libre-soc.org Git - buildroot.git/commit

package/libnss: security bump to version 3.46

Fixes the following security issues:

(3.44.1)
CVE-2019-11729: More thorough input checking
CVE-2019-11719: Don't unnecessarily strip leading 0's from key material
during PKCS11 import
CVE-2019-11727: Prohibit use of RSASSA-PKCS1-v1_5 algorithms in TLS 1.3

Note:
This version requires nspr 4.22 or newer provided by the previous patch.

Signed-off-by: Giulio Benetti <giulio.benetti@micronovasrl.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>

author	Giulio Benetti <giulio.benetti@micronovasrl.com>
	Tue, 3 Sep 2019 10:12:16 +0000 (12:12 +0200)
committer	Thomas Petazzoni <thomas.petazzoni@bootlin.com>
	Sat, 7 Sep 2019 20:10:01 +0000 (22:10 +0200)
commit	7e509333accb638f4387f6e18e63b4d554f8b564
tree	01c97999dc5a9527ded7f663d38a8102513c11fe	tree
parent	385b5686a03f9abc8de3f7ad46cdfc624418df66	commit \| diff

package/libnss/libnss.hash		diff \| blob \| history
package/libnss/libnss.mk		diff \| blob \| history