sysmocom
/
openwrt
11
0
Fork 0
Code Pull Requests Releases Activity
325 Commits 3 Branches 0 Tags 13 MiB
Commit Graph

10 Commits

Author SHA1 Message Date
jow 10b1d597b9 BB: openssl: update to v1.0.2d (CVE-2015-1793) 
During certificate verification, OpenSSL (starting from version 1.0.1n and
1.0.2b) will attempt to find an alternative certificate chain if the first
attempt to build such a chain fails. An error in the implementation of this
logic can mean that an attacker could cause certain checks on untrusted
certificates to be bypassed, such as the CA flag, enabling them to use a valid
leaf certificate to act as a CA and "issue" an invalid certificate.

This issue will impact any application that verifies certificates including
SSL/TLS/DTLS clients and SSL/TLS/DTLS servers using client authentication.

Signed-off-by: Jo-Philipp Wich <jow@openwrt.org>

Backport of r46285

git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@46287 3c298f89-4303-0410-b956-a3cf2f4a3e73
 2015-07-09 13:15:32 +00:00
cyrus d70e69464e openssl: bump to 1.0.2c 
fixes CVE-2015-4000 CVE-2015-1788 CVE-2015-1789 CVE-2015-1790 CVE-2015-1792 CVE-2015-1791

Signed-off-by: Steven Barth <steven@midlink.org>

git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@45951 3c298f89-4303-0410-b956-a3cf2f4a3e73
 2015-06-12 20:59:57 +00:00
jow 229d60fdb4 BB: openssl: update to v1.0.2a (14 CVEs) 
Fixes CVE-2015-0204, CVE-2015-0207, CVE-2015-0208, CVE-2015-0209,
CVE-2015-0285, CVE-2015-0286, CVE-2015-0287, CVE-2015-0288, CVE-2015-0289,
CVE-2015-0290, CVE-2015-0291, CVE-2015-0292, CVE-2015-0293, CVE-2015-1787.

Signed-off-by: Jo-Philipp Wich <jow@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@44952 3c298f89-4303-0410-b956-a3cf2f4a3e73
 2015-03-23 14:08:16 +00:00
cyrus e602c6df19 openssl: fix upstream regression for non-ec builds 
Signed-off-by: Steven Barth <steven@midlink.org>

git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@44365 3c298f89-4303-0410-b956-a3cf2f4a3e73
 2015-02-09 15:28:09 +00:00
cyrus a31e28ae0c openssl: bump to 1.0.2 
Fixes CVE-2014-3513, CVE-2014-3567, CVE-2014-3568, CVE-2014-3566

Signed-off-by: Steven Barth <steven@midlink.org>

git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@44347 3c298f89-4303-0410-b956-a3cf2f4a3e73
 2015-02-09 12:13:06 +00:00
jow 0da41e430e BB: openssl: update to v1.0.1k (8 CVEs) 
Fixes CVE-2014-3571, CVE-2015-0206, CVE-2014-3569, CVE-2014-3572,
CVE-2015-0204, CVE-2015-0205, CVE-2014-8275 and CVE-2014-3570.

Signed-off-by: Jo-Philipp Wich <jow@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@43889 3c298f89-4303-0410-b956-a3cf2f4a3e73
 2015-01-09 00:10:55 +00:00
nbd 22808d019d openssl: add ABI_VERSION to fix package rebuild issues (fixes #18169) 
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

Backport of r42963

git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@42964 3c298f89-4303-0410-b956-a3cf2f4a3e73
 2014-10-19 16:54:33 +00:00
jow fb6b39b78c BB: openssl: update to v1.0.1j (CVE-2014-3513, CVE-2014-3567, CVE-2014-3568) 
Also refresh patches and bump copyright year in Makefile.

Signed-off-by: Jo-Philipp Wich <jow@openwrt.org>

Backport of r42929

git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@42930 3c298f89-4303-0410-b956-a3cf2f4a3e73
 2014-10-16 08:34:38 +00:00
blogic 3ddb03dada openssl: another day another bug fix update 
Signed-off-by: John Crispin <blogic@openwrt.org>

Backport of r42055

git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@42056 3c298f89-4303-0410-b956-a3cf2f4a3e73
 2014-08-07 20:55:33 +00:00
nbd e345c9a277 create branch for barrier breaker (from trunk r41863) 
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@41864 3c298f89-4303-0410-b956-a3cf2f4a3e73
 2014-07-28 23:18:57 +00:00