]> git.ipfire.org Git - thirdparty/openembedded/openembedded-core-contrib.git/commit
projects / thirdparty / openembedded / openembedded-core-contrib.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 12669ab) | patch
openssl: upgrade 1.1.1l -> 1.1.1n
authorOvidiu Panait <ovidiu.panait@windriver.com>
Sun, 20 Mar 2022 09:25:36 +0000 (11:25 +0200)
committerSteve Sakoman <steve@sakoman.com>
Mon, 21 Mar 2022 14:15:10 +0000 (04:15 -1000)
commit4d33b7ce0c50af81a01014a7d7d37c93a041a28d
tree5cbfce048b7bc3f0f1fd7b7dcb0bfbde0e5a0380tree
parent12669ab256a3ffbcb4bcbaba1bc9c690920d32b1commit | diff
openssl: upgrade 1.1.1l -> 1.1.1n

Upgrade openssl 1.1.1l -> 1.1.1n to fix CVE-2022-0778:
https://nvd.nist.gov/vuln/detail/CVE-2022-0778
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=3118eb64934499d93db3230748a452351d1d9a65

This also fixes an evp_extra_test ptest failure introduced by openssl-1.1.1m:
"""
not ok 19 - test_signatures_with_engine
ERROR: (ptr) 'e = ENGINE_by_id(engine_id) != NULL' failed @ ../openssl-1.1.1m/test/evp_extra_test.c:1890
0x0
not ok 20 - test_cipher_with_engine
<snip>
"""

The ptest change is already present in Yocto master since oe-core
commit 5cd40648b0ba ("openssl: upgrade to 3.0.1").

Signed-off-by: Ovidiu Panait <ovidiu.panait@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
meta/recipes-connectivity/openssl/openssl/CVE-2021-4160.patch [deleted file] blob | blame | history
meta/recipes-connectivity/openssl/openssl_1.1.1n.bb [moved from meta/recipes-connectivity/openssl/openssl_1.1.1l.bb with 97% similarity] diff | blob | blame | history
Mirror of git://git.openembedded.org/openembedded-core-contrib