RepoMirrors/openwrt
1
0
Fork 0
mirror of git://git.openwrt.org/openwrt/openwrt.git synced 2024-12-12 01:44:54 +00:00
Code Issues Packages Projects Releases Wiki Activity
af3c9b74e1
openwrt/package
History
Hauke Mehrtens af3c9b74e1 mbedtls: update to version 2.28.2 
Changelog: https://github.com/Mbed-TLS/mbedtls/releases/tag/v2.28.2
This release of Mbed TLS provides bug fixes and minor enhancements. This
release includes fixes for security issues.

Fixes the following CVEs:
* CVE-2022-46393: Fix potential heap buffer overread and overwrite in
DTLS if MBEDTLS_SSL_DTLS_CONNECTION_ID is enabled and
MBEDTLS_SSL_CID_IN_LEN_MAX > 2 * MBEDTLS_SSL_CID_OUT_LEN_MAX.

* CVE-2022-46392: An adversary with access to precise enough information
about memory accesses (typically, an untrusted operating system
attacking a secure enclave) could recover an RSA private key after
observing the victim performing a single private-key operation if the
window size used for the exponentiation was 3 or smaller.

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
2022-12-31 03:19:58 +01:00
..
base-files sunxi: ensure NanoPi R1 has unique MAC address 2022-12-25 02:27:55 +01:00
boot mediatek: drop redmi-ax6000 variant with modified env 2022-12-30 16:11:59 +08:00
devel gdb: Do not link against xxhash 2022-12-17 22:34:44 +01:00
firmware linux-firmware: disable stripping 2022-12-29 14:15:55 +01:00
kernel mac80211: fix receiving multicast packets on multiple sta interfaces 2022-12-30 21:20:04 +01:00
libs mbedtls: update to version 2.28.2 2022-12-31 03:19:58 +01:00
network netifd: update to the latest version 2022-12-30 16:42:57 +01:00
system tree-wide: Do not use package librt and libpthread 2022-12-29 18:50:24 +01:00
utils tree-wide: Do not use package librt and libpthread 2022-12-29 18:50:24 +01:00
Makefile