diff options
| author | Gustavo Zacarias <gustavo@zacarias.com.ar> | 2014-08-07 09:30:43 -0300 |
|---|---|---|
| committer | Thomas Petazzoni <thomas.petazzoni@free-electrons.com> | 2014-08-07 22:13:14 +0200 |
| commit | 5dd65f26356e0f6ec2a8fd3b9c4f8655ded6effb (patch) | |
| tree | 6c0186e7ea9f27d1c792f7cb8ff7177a943f8908 | |
| parent | 595300f892b4bd3fdf26ea744fe9ac8b70d938db (diff) | |
| download | buildroot-5dd65f26356e0f6ec2a8fd3b9c4f8655ded6effb.tar.gz buildroot-5dd65f26356e0f6ec2a8fd3b9c4f8655ded6effb.zip | |
openssl: security bump to version 1.0.1i
Fixes:
CVE-2014-3508 - Information leak in pretty printing functions
CVE-2014-5139 - Crash with SRP ciphersuite in Server Hello message
CVE-2014-3509 - Race condition in ssl_parse_serverhello_tlsext
CVE-2014-3505 - Double Free when processing DTLS packets
CVE-2014-3506 - DTLS memory exhaustion
CVE-2014-3507 - DTLS memory leak from zero-length fragments
CVE-2014-3510 - OpenSSL DTLS anonymous EC(DH) denial of service
CVE-2014-3511 - OpenSSL TLS protocol downgrade attack
CVE-2014-3512 - SRP buffer overrun
Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Tested-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
| -rw-r--r-- | package/openssl/openssl.mk | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/package/openssl/openssl.mk b/package/openssl/openssl.mk index 7e49a6503e..4911034078 100644 --- a/package/openssl/openssl.mk +++ b/package/openssl/openssl.mk @@ -4,7 +4,7 @@ # ################################################################################ -OPENSSL_VERSION = 1.0.1h +OPENSSL_VERSION = 1.0.1i OPENSSL_SITE = http://www.openssl.org/source OPENSSL_LICENSE = OpenSSL or SSLeay OPENSSL_LICENSE_FILES = LICENSE |
