strongswan: security bump to version 5.3.2

Fixes:

CVE-2015-4171 - rogue servers with a valid certificate
accepted by the client to trick it into disclosing its username and even
password (if the client accepts EAP-GTC).

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>

diff --git a/package/strongswan/strongswan.hash b/package/strongswan/strongswan.hash
index e38c736e0d0b7aa3123fe0c55fd85baed83518fd..8b31de41cf3c413a2db828f1c5dd3da70a6ab73c 100644 (file)
--- a/package/strongswan/strongswan.hash
+++ b/package/strongswan/strongswan.hash
@@ -1,2 +1,2 @@
-# From http://download.strongswan.org/strongswan-5.3.1.tar.bz2.md5
-md5    66f258901a3d6c271da1a0c7fb3e5013        strongswan-5.3.1.tar.bz2
+# From http://download.strongswan.org/strongswan-5.3.2.tar.bz2.md5
+md5    fab014be1477ef4ebf9a765e10f8802c        strongswan-5.3.2.tar.bz2

diff --git a/package/strongswan/strongswan.mk b/package/strongswan/strongswan.mk
index f165eb1148f8b23401f48a50a681ed1374fa7a97..47a28a3407d3c08f7e2a705fa368682b6f41a66e 100644 (file)
--- a/package/strongswan/strongswan.mk
+++ b/package/strongswan/strongswan.mk
@@ -4,7 +4,7 @@
 #
 ################################################################################
 
-STRONGSWAN_VERSION = 5.3.1
+STRONGSWAN_VERSION = 5.3.2
 STRONGSWAN_SOURCE = strongswan-$(STRONGSWAN_VERSION).tar.bz2
 STRONGSWAN_SITE = http://download.strongswan.org
 STRONGSWAN_LICENSE = GPLv2+