]> git.ipfire.org Git - thirdparty/openembedded/openembedded-core.git/commit
projects / thirdparty / openembedded / openembedded-core.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: d9310c3) | patch
gnutls: Upgrade 3.8.2 -> 3.8.3
authorSimone Weiß <simone.p.weiss@posteo.com>
Mon, 11 Mar 2024 08:39:54 +0000 (16:39 +0800)
committerSteve Sakoman <steve@sakoman.com>
Tue, 12 Mar 2024 16:25:19 +0000 (06:25 -1000)
commitf40a53370eac89df38b2fab47c411a61d4df4fc0
treea86f2060b2cd879252f63218bcb8f73b600f66c4tree | snapshot
parentd9310c3ce0f88798de6d2d3d0c600b9014c1d872commit | diff
gnutls: Upgrade 3.8.2 -> 3.8.3

Upgrade version to adress recent CVE findings.

Changelog
=========
** libgnutls: Fix more timing side-channel inside RSA-PSK key exchange
   [GNUTLS-SA-2024-01-14, CVSS: medium] [CVE-2024-0553]

** libgnutls: Fix assertion failure when verifying a certificate chain with a
   cycle of cross signatures
   [GNUTLS-SA-2024-01-09, CVSS: medium] [CVE-2024-0567]

** libgnutls: Fix regression in handling Ed25519 keys stored in PKCS#11 token
   certtool was unable to handle Ed25519 keys generated on PKCS#11
   with pkcs11-tool (OpenSC). This is a regression introduced in 3.8.2.

(cherry-pick from Oe-Core rev 705d2972b38efc9f331e3635c07ca92f8812b365)

Signed-off-by: Simone Weiß <simone.p.weiss@posteo.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Lee Chee Yang <chee.yang.lee@intel.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
meta/recipes-support/gnutls/gnutls_3.8.3.bb [moved from meta/recipes-support/gnutls/gnutls_3.8.2.bb with 97% similarity] diff | blob | blame | history
Mirror of git://git.openembedded.org/openembedded-core