]> code.ossystems Code Review - openembedded-core.git/commit
Code Review / openembedded-core.git / commit
? search:
summary | shortlog | log | commit | commitdiff | review | tree
(parent: 7310bdb) | patch
openssl: Upgrade 1.1.0f -> 1.1.0g
authorStefan Agner <stefan.agner@toradex.com>
Tue, 19 Dec 2017 21:26:38 +0000 (22:26 +0100)
committerRichard Purdie <richard.purdie@linuxfoundation.org>
Sat, 6 Jan 2018 10:11:42 +0000 (10:11 +0000)
commit3cfbf7d020b12ef70ba1e1bd4a538b4b8f6e7251
tree6d28c4352e3b7fc63c26c24e138a70ad6979f65dtree | snapshot
parent7310bdb8709a8cb9a5653f10d0be1c024daf6f03commit | diff
openssl: Upgrade 1.1.0f -> 1.1.0g

Deals with two CVEs:
* bn_sqrx8x_internal carry bug on x86_64 (CVE-2017-3736)
* Malformed X.509 IPAddressFamily could cause OOB read (CVE-2017-3735)

Signed-off-by: Stefan Agner <stefan.agner@toradex.com>
Acked-by: Otavio Salvador <otavio@ossystems.com.br>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
meta/recipes-connectivity/openssl/openssl_1.1.0g.bb [moved from meta/recipes-connectivity/openssl/openssl_1.1.0f.bb with 96% similarity] diff | blob | history
Mirror of the official openembedded-core repository