mirror/openwrt
1
0
Fork 0
mirror of https://git.openwrt.org/openwrt/openwrt.git synced 2024-10-19 14:08:17 +02:00
Code Issues
eb7d2abbf0
openwrt/package/libs
History
Andre Heider eb7d2abbf0 openssl: bump to 1.1.1p 
Changes between 1.1.1o and 1.1.1p [21 Jun 2022]

  *) In addition to the c_rehash shell command injection identified in
     CVE-2022-1292, further bugs where the c_rehash script does not
     properly sanitise shell metacharacters to prevent command injection have been
     fixed.

     When the CVE-2022-1292 was fixed it was not discovered that there
     are other places in the script where the file names of certificates
     being hashed were possibly passed to a command executed through the shell.

     This script is distributed by some operating systems in a manner where
     it is automatically executed.  On such operating systems, an attacker
     could execute arbitrary commands with the privileges of the script.

     Use of the c_rehash script is considered obsolete and should be replaced
     by the OpenSSL rehash command line tool.
     (CVE-2022-2068)
     [Daniel Fiala, Tomáš Mráz]

  *) When OpenSSL TLS client is connecting without any supported elliptic
     curves and TLS-1.3 protocol is disabled the connection will no longer fail
     if a ciphersuite that does not use a key exchange based on elliptic
     curves can be negotiated.
     [Tomáš Mráz]

Signed-off-by: Andre Heider <a.heider@gmail.com>
2022-07-04 23:03:09 +02:00
..
argp-standalone argp-standalone: fix compilation with Alpine Linux 2022-03-16 17:58:24 +01:00
elfutils elfutils: move host build to tools 2022-05-18 13:32:06 +03:00
gettext-full gettext-full: add gmsgfmt symlink in host install 2022-03-25 17:48:49 +02:00
gmp
jansson
libaudit
libbsd
libcap libcap: Update to version 2.63 2022-02-01 21:25:02 +01:00
libevent2
libiconv
libiconv-full libiconv-full: update to 1.17 2022-07-03 20:25:38 +02:00
libjson-c libjson-c: disable libbsd 2022-07-04 20:37:41 +02:00
libmnl libmnl: update to 1.0.5 2022-04-09 18:34:04 +02:00
libnetfilter-conntrack libnetfilter-conntrack: backport patch fixing compilation with 5.15 2022-03-05 21:05:45 +01:00
libnfnetlink libnfnetlink: update to 1.0.2 2022-04-09 18:33:24 +02:00
libnftnl libnftnl: update to 1.2.2 2022-06-24 17:10:24 +02:00
libnl libnl: update to 3.6.0 2022-07-03 20:25:38 +02:00
libnl-tiny libnl-tiny: update to the latest version 2022-05-23 14:12:44 +02:00
libpcap tcpdump: libpcap: Remove http://www.us.tcpdump.org mirror 2021-12-27 00:49:08 +01:00
libselinux libselinux: add missing host-build dependency on libsepol/host 2022-04-06 21:54:50 +01:00
libsemanage libsemanage: update to version 3.3 2021-10-28 22:15:02 +01:00
libsepol libsepol: update to version 3.3 2021-10-31 13:01:24 +00:00
libtool
libubox libubox: update to the latest version 2022-05-15 15:20:34 +02:00
libunwind libunwind: add ppc64 support 2021-12-21 21:37:05 +02:00
libusb libusb: fix missing link 2022-06-19 12:40:30 +02:00
mbedtls mbedtls: update to 2.28.0 LTS branch 2022-02-26 19:52:41 +01:00
musl-fts musl-fts: remove shared libraries from host 2022-03-27 14:38:13 +02:00
ncurses ncurses: update to 6.3 2022-03-19 17:42:29 +01:00
nettle nettle: update to 3.8 2022-07-03 20:25:38 +02:00
openssl openssl: bump to 1.1.1p 2022-07-04 23:03:09 +02:00
pcre pcre: pass -fPIC under host as well 2022-04-16 14:02:11 +02:00
popt
readline readline: add host PIC 2022-04-16 14:02:11 +02:00
sysfsutils
toolchain toolchain: reproducible libstdcpp 2022-04-01 12:54:58 +01:00
uclient
ustream-ssl ustream-ssl: update to Git version 2022-01-16 2022-01-16 21:51:21 +01:00
wolfssl wolfssl: add config flag for Curve448 2022-07-03 20:25:38 +02:00
zlib libs/zlib: fix implicit function declaration warning 2022-03-28 09:27:56 +02:00