package/libopenssl/libopenssl.hash · 63023c407fe601d7c349fbff1ef1fbb246b1e288 · netdsa / buildroot

Nov 03, 2017

package/libopenssl: security bump to version 1.0.2m · 63023c40

Bernd Kuhls authored Nov 03, 2017

Fixes the following CVEs:
bn_sqrx8x_internal carry bug on x86_64 (CVE-2017-3736)
Malformed X.509 IPAddressFamily could cause OOB read (CVE-2017-3735)

Release notes: https://www.openssl.org/news/secadv/20171102.txt



Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>

63023c40

package/libopenssl: security bump to version 1.0.2m

Bernd Kuhls authored Nov 03, 2017

Fixes the following CVEs:
bn_sqrx8x_internal carry bug on x86_64 (CVE-2017-3736)
Malformed X.509 IPAddressFamily could cause OOB read (CVE-2017-3735)

Release notes: https://www.openssl.org/news/secadv/20171102.txt



Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>