projects / buildroot.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: ecd8e9b)
openssl: security bump to version 1.0.2d
authorGustavo Zacarias <gustavo@zacarias.com.ar>
Thu, 9 Jul 2015 18:45:13 +0000 (15:45 -0300)
committerThomas Petazzoni <thomas.petazzoni@free-electrons.com>
Thu, 9 Jul 2015 20:03:05 +0000 (22:03 +0200)
Fixes CVE-2015-1793 - Alternative chains certificate forgery.

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
package/openssl/openssl.hash patch | blob | history
package/openssl/openssl.mk patch | blob | history

diff --git a/package/openssl/openssl.hash b/package/openssl/openssl.hash
index 4b212fba1cb692ae0433678605b0243072c44f71..355be79067eaf3451e59af90d5e7ad82f3c0c7fb 100644 (file)
--- a/package/openssl/openssl.hash
+++ b/package/openssl/openssl.hash
@@ -1,4 +1,2 @@
-# From https://www.openssl.org/source/openssl-1.0.2c.tar.gz.md5
-# From https://www.openssl.org/source/openssl-1.0.2c.tar.gz.sha1
-md5    8c8d81a9ae7005276e486702edbcd4b6        openssl-1.0.2c.tar.gz
-sha1   6e4a5e91159eb32383296c7c83ac0e59b83a0a44        openssl-1.0.2c.tar.gz
+# From https://www.openssl.org/source/openssl-1.0.2d.tar.gz.sha256
+sha256 671c36487785628a703374c652ad2cebea45fa920ae5681515df25d9f2c9a8c8        openssl-1.0.2d.tar.gz
diff --git a/package/openssl/openssl.mk b/package/openssl/openssl.mk
index 37c640dc868e83e4d81e764cfab693d8179655f7..3d87919eddc59e16627d4e11aa07fa74b7933a86 100644 (file)
--- a/package/openssl/openssl.mk
+++ b/package/openssl/openssl.mk
@@ -4,7 +4,7 @@
 #
 ################################################################################
 
-OPENSSL_VERSION = 1.0.2c
+OPENSSL_VERSION = 1.0.2d
 OPENSSL_SITE = http://www.openssl.org/source
 OPENSSL_LICENSE = OpenSSL or SSLeay
 OPENSSL_LICENSE_FILES = LICENSE