From c4ed92ae7d9568b42490eeba540e68684c6ed981 Mon Sep 17 00:00:00 2001
From: Hauke Mehrtens <hauke@hauke-m.de>
Date: Mon, 13 Mar 2017 20:04:32 +0100
Subject: mbedtls: update to version 2.4.2

This fixes the following security problems:
* CVE-2017-2784: Freeing of memory allocated on stack when validating a public key with a secp224k1 curve
* SLOTH vulnerability
* Denial of Service through Certificate Revocation List

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
---
 package/libs/mbedtls/patches/200-config.patch | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'package/libs/mbedtls/patches')

diff --git a/package/libs/mbedtls/patches/200-config.patch b/package/libs/mbedtls/patches/200-config.patch
index 96d7c156a7..510872380f 100644
--- a/package/libs/mbedtls/patches/200-config.patch
+++ b/package/libs/mbedtls/patches/200-config.patch
@@ -222,7 +222,7 @@
  /**
   * \def MBEDTLS_MD_C
 @@ -2158,7 +2158,7 @@
-  * Caller:  library/mbedtls_md.c
+  * Caller:  library/md.c
   *
   */
 -#define MBEDTLS_RIPEMD160_C
-- 
cgit v1.2.3