[OpenWrt-Devel] [BB 14.07] openssl: Security update (2 CVEs)

jow at openwrt.org jow at openwrt.org
Fri Jan 29 09:48:20 EST 2016


The openssl package has been rebuilt and was uploaded to the Barrier
Breaker 14.07 repository due to multiple security issues.


VERSION

1.0.2e-1 => 1.0.2f-1


CHANGELOG

[Fri, 29 Jan 2016 13:25:24 +0000 b763ba2]

Openssl: update to 1.0.2f (fixes CVE-2016-0701, CVE-2015-3197)


CHANGES

 package/libs/openssl/Makefile                    |    4 ++--
 .../openssl/patches/110-optimize-for-size.patch  |    2 +-
 .../libs/openssl/patches/150-no_engines.patch    |    2 +-
 .../openssl/patches/160-disable_doc_tests.patch  |   14 +++++++-------
 .../patches/190-remove_timestamp_check.patch     |    4 ++--
 .../openssl/patches/200-parallel_build.patch     |   14 +++++++-------
 6 files changed, 20 insertions(+), 20 deletions(-)


REFERENCES

 * http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3197
 * http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0701
 * http://git.openwrt.org/?p=14.07/openwrt.git;a=commit;h=b763ba211deeab857ef7c2e5275e92c15dd5e249
_______________________________________________
openwrt-devel mailing list
openwrt-devel at lists.openwrt.org
https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-devel



More information about the openwrt-devel mailing list