]> git.ipfire.org Git - thirdparty/openwrt.git/commit
projects / thirdparty / openwrt.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: bb1779c) | patch
openssl: update to 3.5.4 20275/head
authorJohn Audia <therealgraysky@proton.me>
Thu, 2 Oct 2025 12:24:22 +0000 (08:24 -0400)
committerHauke Mehrtens <hauke@hauke-m.de>
Sat, 4 Oct 2025 14:22:43 +0000 (16:22 +0200)
commite99ee3ad9c37882e8756291896c61bdec091bfac
tree50649cc45bc1233fcc056b7e66cb3451fa83240ctree | snapshot
parentbb1779cdc53baa099ef5c4b379d3e951814aee2acommit | diff
openssl: update to 3.5.4

release is Moderate.

This release incorporates the following bug fixes and mitigations:

Fix Out-of-bounds read & write in RFC 3211 KEK Unwrap.
(CVE-2025-9230)

Fix Timing side-channel in SM2 algorithm on 64 bit ARM.
(CVE-2025-9231)

Fix Out-of-bounds read in HTTP client no_proxy handling.
(CVE-2025-9232)

Reverted the synthesised OPENSSL_VERSION_NUMBER change for the release
builds, as it broke some exiting applications that relied on the previous
3.x semantics, as documented in OpenSSL_version(3).

Build system: x86/64
Build-tested: x86/64-glibc
Run-tested: x86/64-glibc

Signed-off-by: John Audia <therealgraysky@proton.me>
Link: https://github.com/openwrt/openwrt/pull/20275
Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
package/libs/openssl/Makefile diff | blob | blame | history
Mirror of https://github.com/openwrt/openwrt.git