[OE-core] [PATCH 1/4] openssl10: Upgrade 1.0.2l -> 1.0.2m
Otavio Salvador
otavio.salvador at ossystems.com.br
Fri Nov 17 19:22:59 UTC 2017
On Fri, Nov 17, 2017 at 3:53 PM, Stefan Agner <stefan at agner.ch> wrote:
> From: Stefan Agner <stefan.agner at toradex.com>
>
> Deals with two CVEs:
> * bn_sqrx8x_internal carry bug on x86_64 (CVE-2017-3736)
> * Malformed X.509 IPAddressFamily could cause OOB read (CVE-2017-3735)
>
> Signed-off-by: Stefan Agner <stefan.agner at toradex.com>
Acked-by: Otavio Salvador <otavio at ossystems.com.br>
--
Otavio Salvador O.S. Systems
http://www.ossystems.com.br http://code.ossystems.com.br
Mobile: +55 (53) 9981-7854 Mobile: +1 (347) 903-9750
More information about the Openembedded-core
mailing list