git.libre-soc.org Git - buildroot.git/commit

author	Peter Korsgaard <peter@korsgaard.com>
	Tue, 17 Sep 2019 13:23:18 +0000 (15:23 +0200)
committer	Thomas Petazzoni <thomas.petazzoni@bootlin.com>
	Tue, 17 Sep 2019 19:29:38 +0000 (21:29 +0200)
commit	99a2f0dd6ada075a0a3d278487e0c4b7c6cb3ec1
tree	ac15bfd7440fa7c46aa13a609e2416f6afdd23fb	tree
parent	3d104ce719a11ff8fd562f5447d416c1e010878b	commit \| diff

package/libopenssl: security bump to version 1.1.1d

Fixes the following security vulnerabilities:

- ECDSA remote timing attack (CVE-2019-1547)
  Severity: Low

- Fork Protection (CVE-2019-1549)
  Severity: Low

- Padding Oracle in PKCS7_dataDecode and CMS_decrypt_set1_pkey (CVE-2019-1563)
  Severity: Low

For more details, see the advisory:
https://www.openssl.org/news/secadv/20190910.txt

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>

package/libopenssl/libopenssl.hash		diff \| blob \| history
package/libopenssl/libopenssl.mk		diff \| blob \| history