diff options
| author | Eneas U de Queiroz <cotequeiroz@gmail.com> | 2019-08-05 11:47:58 -0300 |
|---|---|---|
| committer | Hauke Mehrtens <hauke@hauke-m.de> | 2019-08-17 16:43:23 +0200 |
| commit | 77e0e99d3104debc7ce31d6c15ff1e10e19ceb7c (patch) | |
| tree | 67e9cf8898201ab77d30f91a4f6b844e0c83c55e /package/libs/wolfssl/patches/100-disable-hardening-check.patch | |
| parent | 16730410136f1512203da9d21bb6a42f1cb43b4e (diff) | |
| download | upstream-77e0e99d3104debc7ce31d6c15ff1e10e19ceb7c.tar.gz upstream-77e0e99d3104debc7ce31d6c15ff1e10e19ceb7c.tar.bz2 upstream-77e0e99d3104debc7ce31d6c15ff1e10e19ceb7c.zip | |
wolfssl: bump to 4.1.0-stable
Always build AES-GCM support.
Unnecessary patches were removed.
This includes two vulnerability fixes:
CVE-2019-11873: a potential buffer overflow case with the TLSv1.3 PSK
extension parsing.
CVE-2019-13628 (currently assigned-only): potential leak of nonce sizes
when performing ECDSA signing operations. The leak is considered to be
difficult to exploit but it could potentially be used maliciously to
perform a lattice based timing attack.
Signed-off-by: Eneas U de Queiroz <cotequeiroz@gmail.com>
Diffstat (limited to 'package/libs/wolfssl/patches/100-disable-hardening-check.patch')
| -rw-r--r-- | package/libs/wolfssl/patches/100-disable-hardening-check.patch | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/package/libs/wolfssl/patches/100-disable-hardening-check.patch b/package/libs/wolfssl/patches/100-disable-hardening-check.patch index 6cecb6b7d6..5d83eca770 100644 --- a/package/libs/wolfssl/patches/100-disable-hardening-check.patch +++ b/package/libs/wolfssl/patches/100-disable-hardening-check.patch @@ -1,6 +1,6 @@ --- a/wolfssl/wolfcrypt/settings.h +++ b/wolfssl/wolfcrypt/settings.h -@@ -1880,7 +1880,7 @@ extern void uITRON4_free(void *p) ; +@@ -1930,7 +1930,7 @@ extern void uITRON4_free(void *p) ; #endif /* warning for not using harden build options (default with ./configure) */ |