Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | openssl: update to 1.0.1f | Felix Fietkau | 2014-03-09 | 1 | -31/+0 |
| | | | | | | | | | | | | | This version includes this changes: Don't include gmt_unix_time in TLS server and client random values Fix for TLS record tampering bug CVE-2013-4353 Fix for TLS version checking bug CVE-2013-6449 Fix for DTLS retransmission bug CVE-2013-6450 Signed-off-by: Peter Wagner <tripolar@gmx.at> SVN-Revision: 39853 | ||||
* | openssl: update OpenSSL to 1.0.1e, fix Cisco DTLS. | Florian Fainelli | 2013-02-14 | 1 | -0/+31 |
1.0.1d had a rushed fix for CVE-2013-0169 which broke in certain circumstances. 1.0.1e has the fix for TLS. Also include a further patch from the 1.0.1 branch which fixes the breakage this introduced for Cisco's outdated pre-standard version of DTLS, as used by OpenConnect. Update mirror URLs to reflect current reality. Signed-off-by: David Woodhouse <David.Woodhouse@intel.com> Signed-off-by: Florian Fainelli <florian@openwrt.org> SVN-Revision: 35600 |