[Buildroot] [PATCH 1/1] package/libopenssl: security bump to version 1.0.2m

Thomas Petazzoni thomas.petazzoni at free-electrons.com
Fri Nov 3 20:56:32 UTC 2017


Hello,

On Fri,  3 Nov 2017 19:33:59 +0100, Bernd Kuhls wrote:
> Fixes the following CVEs:
> bn_sqrx8x_internal carry bug on x86_64 (CVE-2017-3736)
> Malformed X.509 IPAddressFamily could cause OOB read (CVE-2017-3735)
> 
> Release notes: https://www.openssl.org/news/secadv/20171102.txt
> 
> Signed-off-by: Bernd Kuhls <bernd.kuhls at t-online.de>
> ---
>  package/libopenssl/libopenssl.hash | 4 ++--
>  package/libopenssl/libopenssl.mk   | 2 +-
>  2 files changed, 3 insertions(+), 3 deletions(-)

Applied to master, thanks.

Thomas
-- 
Thomas Petazzoni, CTO, Free Electrons
Embedded Linux, Kernel and Android engineering
http://free-electrons.com



More information about the buildroot mailing list