From 6926325829a2f58059ca8e614c892062fbbae393 Mon Sep 17 00:00:00 2001 From: Magnus Kroken Date: Sat, 24 Sep 2016 11:36:49 +0200 Subject: openssl: update to 1.0.2i Drop 302-fix_no_cmac_build.patch, it has been applied upstream. Security fixes: * (Severity: High) OCSP Status Request extension unbounded memory growth (CVE-2016-6304) * (Severity: Moderate) SSL_peek() hang on empty record (CVE-2016-6305) * 10 Low severity issues Security advisory: https://www.openssl.org/news/secadv/20160922.txt Changelog: https://www.openssl.org/news/cl102.txt Signed-off-by: Magnus Kroken Signed-off-by: Hauke Mehrtens --- package/libs/openssl/patches/150-no_engines.patch | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) (limited to 'package/libs/openssl/patches/150-no_engines.patch') diff --git a/package/libs/openssl/patches/150-no_engines.patch b/package/libs/openssl/patches/150-no_engines.patch index f509d28bd2..274ecbe0a5 100644 --- a/package/libs/openssl/patches/150-no_engines.patch +++ b/package/libs/openssl/patches/150-no_engines.patch @@ -1,6 +1,6 @@ --- a/Configure +++ b/Configure -@@ -2109,6 +2109,11 @@ EOF +@@ -2114,6 +2114,11 @@ EOF close(OUT); } -- cgit v1.2.3