]> git.ipfire.org Git - thirdparty/openembedded/openembedded-core-contrib.git/commit
projects / thirdparty / openembedded / openembedded-core-contrib.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 87ff1f0) | patch
nss: update to 3.41
authorArmin Kuster <akuster808@gmail.com>
Wed, 2 Jan 2019 16:36:13 +0000 (08:36 -0800)
committerRichard Purdie <richard.purdie@linuxfoundation.org>
Thu, 3 Jan 2019 21:16:00 +0000 (21:16 +0000)
commit3de1dca025864408b3728091d5efed62e11770ee
tree0a611576b01a73cb009e7c1cfce7316c1501cb7ctree | snapshot
parent87ff1f031f147053829b2c70e043e2719ffad5d6commit | diff
nss: update to 3.41

Bug fix only update.

    Bug 1252891 - Implemented EKU handling for IPsec IKE.
    Bug 1423043 - Enable half-closed states for TLS.
    Bug 1493215 - Enabled the following ciphersuites by default:
        TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
        TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
        TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
        TLS_RSA_WITH_AES_256_GCM_SHA384

    Bug 1412829, Reject empty supported_signature_algorithms in Certificate Request in TLS 1.2
    Bug 1485864 - Cache side-channel variant of the Bleichenbacher attack (CVE-2018-12404)
    Bug 1481271 - Resend the same ticket in ClientHello after HelloRetryRequest
    Bug 1493769 - Set session_id for external resumption tokens
    Bug 1507179 - Reject CCS after handshake is complete in TLS 1.3

(From OE-Core rev: e0e6b80d76efbe044ce9b8923897195b28c2680c)

Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
meta/recipes-support/nss/nss_3.41.bb [moved from meta/recipes-support/nss/nss_3.40.bb with 98% similarity] diff | blob | blame | history
Mirror of git://git.openembedded.org/openembedded-core-contrib