]> git.ipfire.org Git - thirdparty/openembedded/openembedded-core-contrib.git/commit
projects / thirdparty / openembedded / openembedded-core-contrib.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 30b45bc) | patch
openssl: Upgrade 3.1.1 -> 3.1.2
authorPeter Marko <peter.marko@siemens.com>
Tue, 1 Aug 2023 16:36:41 +0000 (18:36 +0200)
committerRichard Purdie <richard.purdie@linuxfoundation.org>
Wed, 16 Aug 2023 06:53:22 +0000 (07:53 +0100)
commite65802383b02df6f502af859a927309d881bbb27
tree3646524f78f5fd22d110f90d108876b5fddcb5dbtree | snapshot
parent30b45bcf49bf8207fd96bb45a55d7708661f3359commit | diff
openssl: Upgrade 3.1.1 -> 3.1.2

https://github.com/openssl/openssl/blob/openssl-3.1/NEWS.md#major-changes-between-openssl-311-and-openssl-312-1-aug-2023
Major changes between OpenSSL 3.1.1 and OpenSSL 3.1.2 [1 Aug 2023]
* Fix excessive time spent checking DH q parameter value (CVE-2023-3817)
* Fix DH_check() excessive time with over sized modulus (CVE-2023-3446)
* Do not ignore empty associated data entries with AES-SIV (CVE-2023-2975)
* When building with the enable-fips option and using the resulting FIPS provider, TLS 1.2 will, by default, mandate the use of an extended master secret and the Hash and HMAC DRBGs will not operate with truncated digests.

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
meta/recipes-connectivity/openssl/openssl_3.1.2.bb [moved from meta/recipes-connectivity/openssl/openssl_3.1.1.bb with 99% similarity] diff | blob | blame | history
Mirror of git://git.openembedded.org/openembedded-core-contrib