]> code.ossystems Code Review - openembedded-core.git/commit
Code Review / openembedded-core.git / commit
? search:
summary | shortlog | log | commit | commitdiff | review | tree
(parent: bf00e5e) | patch
openssl: actually apply Use-SHA256-not-MD5-as-default-digest.patch
authorRoss Burton <ross.burton@intel.com>
Tue, 14 Mar 2017 12:49:47 +0000 (12:49 +0000)
committerRichard Purdie <richard.purdie@linuxfoundation.org>
Tue, 14 Mar 2017 14:32:27 +0000 (14:32 +0000)
commit8791800f84321b3f46772bc2d9e4f754e6213946
treebbe89dae2c40bd74e6c7b027d0fcf3b0b1f33cb0tree | snapshot
parentbf00e5e265d3f878d2af36a48d597ce477bd6f4fcommit | diff
openssl: actually apply Use-SHA256-not-MD5-as-default-digest.patch

This patch was added to fix a CVE, but wasn't actually added to SRC_URI:

    CVE: CVE-2004-2761
    The MD5 Message-Digest Algorithm is not collision resistant,
    which makes it easier for context-dependent attackers to
    conduct spoofing attacks, as demonstrated by attacks on the
    use of MD5 in the signature algorithm of an X.509 certificate.

Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
meta/recipes-connectivity/openssl/openssl_1.0.2k.bb diff | blob | history
Mirror of the official openembedded-core repository