aboutsummaryrefslogtreecommitdiffstats
path: root/package/libs/mbedtls/Makefile
diff options
context:
space:
mode:
authorMagnus Kroken <mkroken@gmail.com>2017-06-21 21:05:09 +0200
committerJo-Philipp Wich <jo@mein.io>2017-06-26 09:56:07 +0200
commit329f6a96b70a652beb73686a0ee0d17670d2dc23 (patch)
tree5d2537cf35ced366529a392dc8c4a08d5ea13b35 /package/libs/mbedtls/Makefile
parentd98cafc7b6b06618ecc774efbb862b5e18b08831 (diff)
downloadupstream-329f6a96b70a652beb73686a0ee0d17670d2dc23.tar.gz
upstream-329f6a96b70a652beb73686a0ee0d17670d2dc23.tar.bz2
upstream-329f6a96b70a652beb73686a0ee0d17670d2dc23.zip
mbedtls: update to 2.5.1
Fixes some security issues (no remote exploits), and introduces some changes. See release notes for details: https://tls.mbed.org/tech-updates/releases/mbedtls-2.5.1-2.1.8-and-1.3.20-released * Fixes an unlimited overread of heap-based buffers in mbedtls_ssl_read() * Adds exponent blinding to RSA private operations * Wipes stack buffers in RSA private key operations (rsa_rsaes_pkcs1_v15_decrypt(), rsa_rsaes_oaep_decrypt()) * Removes SHA-1 and RIPEMD-160 from the default hash algorithms for certificate verification. * Fixes offset in FALLBACK_SCSV parsing that caused TLS server to fail to detect it sometimes. * Tighten parsing of RSA PKCS#1 v1.5 signatures, to avoid a potential Bleichenbacher/BERserk-style attack. Signed-off-by: Magnus Kroken <mkroken@gmail.com>
Diffstat (limited to 'package/libs/mbedtls/Makefile')
-rw-r--r--package/libs/mbedtls/Makefile4
1 files changed, 2 insertions, 2 deletions
diff --git a/package/libs/mbedtls/Makefile b/package/libs/mbedtls/Makefile
index 65a6750c4b..4cceb743d5 100644
--- a/package/libs/mbedtls/Makefile
+++ b/package/libs/mbedtls/Makefile
@@ -8,13 +8,13 @@
include $(TOPDIR)/rules.mk
PKG_NAME:=mbedtls
-PKG_VERSION:=2.4.2
+PKG_VERSION:=2.5.1
PKG_RELEASE:=1
PKG_USE_MIPS16:=0
PKG_SOURCE:=$(PKG_NAME)-$(PKG_VERSION)-gpl.tgz
PKG_SOURCE_URL:=https://tls.mbed.org/download/
-PKG_HASH:=d01f2d5586a52055329d194d909103f445bd2d0b6b2b5f1c830fbf828ac6299f
+PKG_HASH:=312f020006f0d8e9ede3ed8e73d907a629baf6475229703941769372ab0adee2
PKG_BUILD_PARALLEL:=1
PKG_LICENSE:=GPL-2.0+