]> git.ipfire.org Git - thirdparty/openwrt.git/commit
projects / thirdparty / openwrt.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 7aa3dfd) | patch
mbedtls: update to 3.6.3 18353/head
authorMagnus Kroken <mkroken@gmail.com>
Wed, 26 Mar 2025 20:42:51 +0000 (21:42 +0100)
committerNick Hainke <vincent@systemli.org>
Thu, 27 Mar 2025 07:09:14 +0000 (08:09 +0100)
commit1732d81d8082163c66e5b2b3b050318922d5bb88
tree1b2ca6eda8e5352f230195bbd351f17476dea3a1tree
parent7aa3dfdbda829c04475cffbd6708f1ff96e4849bcommit | diff
mbedtls: update to 3.6.3

This release of Mbed TLS provides the fix for a tls compatibility issue of handling fragmented handshake messages.
This release includes fixes for security issues.

* Potential authentication bypass in TLS handshake (CVE-2025-27810) [1]
* TLS clients may unwittingly skip server authentication (CVE-2025-27809) [2]

[1]: https://mbed-tls.readthedocs.io/en/latest/security-advisories/mbedtls-security-advisory-2025-03-2/
[2]: https://mbed-tls.readthedocs.io/en/latest/security-advisories/mbedtls-security-advisory-2025-03-1/

Full release announcement:
https://github.com/Mbed-TLS/mbedtls/releases/tag/mbedtls-3.6.3

Signed-off-by: Magnus Kroken <mkroken@gmail.com>
Link: https://github.com/openwrt/openwrt/pull/18353
Signed-off-by: Nick Hainke <vincent@systemli.org>
package/libs/mbedtls/Makefile diff | blob | blame | history
package/libs/mbedtls/patches/101-remove-test.patch diff | blob | blame | history
Mirror of https://github.com/openwrt/openwrt.git