[OE-core] [dylan][PATCH 0/4] OpenSSL CVE fixes for the dylan branch
Paul Eggleton
paul.eggleton at linux.intel.com
Tue Apr 8 18:37:36 UTC 2014
Three backports for CVE fixes from master, plus one new fix for the
latest CVE (CVE-2014-0160). The latter is not needed for master with
Cristiana's upgrade to version 1.0.1g sent out today, and see my other
series for dora.
The following changes since commit 58b479f4d4d283e590a55a71151fca481fbe3c24:
packagegroup-self-hosted: Add missing python code (2014-03-20 22:43:57 +0000)
are available in the git repository at:
git://git.openembedded.org/openembedded-core-contrib paule/openssl-cves-dylan
http://cgit.openembedded.org/cgit.cgi/openembedded-core-contrib/log/?h=paule/openssl-cves-dylan
Paul Eggleton (1):
openssl: backport fix for CVE-2014-0160
Yue Tao (3):
Security Advisory - openssl - CVE-2013-4353
Security Advisory - openssl - CVE-2013-6450
Security Advisory - openssl - CVE-2013-6449
...DTLS-retransmission-from-previous-session.patch | 81 ++++++++++++++
...or-TLS-record-tampering-bug-CVE-2013-4353.patch | 31 ++++++
...e-version-in-SSL_METHOD-not-SSL-structure.patch | 33 ++++++
.../openssl/openssl-1.0.1e/CVE-2014-0160.patch | 118 +++++++++++++++++++++
.../recipes-connectivity/openssl/openssl_1.0.1e.bb | 4 +
5 files changed, 267 insertions(+)
create mode 100644 meta/recipes-connectivity/openssl/openssl-1.0.1e/0001-Fix-DTLS-retransmission-from-previous-session.patch
create mode 100644 meta/recipes-connectivity/openssl/openssl-1.0.1e/0001-Fix-for-TLS-record-tampering-bug-CVE-2013-4353.patch
create mode 100644 meta/recipes-connectivity/openssl/openssl-1.0.1e/0001-Use-version-in-SSL_METHOD-not-SSL-structure.patch
create mode 100644 meta/recipes-connectivity/openssl/openssl-1.0.1e/CVE-2014-0160.patch
--
1.9.0
More information about the Openembedded-core
mailing list