hurricos/openwrt-mirror
1
0
Fork 0
mirror of git://git.openwrt.org/openwrt/openwrt.git synced 2025-12-13 08:02:09 -05:00
Code Issues Projects Releases Wiki Activity
ab80e6c684
openwrt-mirror/package/libs
History
John Audia b4e6fd7b76 openssl: update to 3.0.16 
Changes between 3.0.15 and 3.0.16 [11 Feb 2025]

CVE-2024-13176[1] - Fixed timing side-channel in ECDSA signature
computation.

There is a timing signal of around 300 nanoseconds when the top word of
the inverted ECDSA nonce value is zero. This can happen with significant
probability only for some of the supported elliptic curves. In
particular the NIST P-521 curve is affected. To be able to measure this
leak, the attacker process must either be located in the same physical
computer or must have a very fast network connection with low latency.

CVE-2024-9143[2] - Fixed possible OOB memory access with invalid
low-level GF(2^m) elliptic curve parameters.

Use of the low-level GF(2^m) elliptic curve APIs with untrusted explicit
values for the field polynomial can lead to out-of-bounds memory reads
or writes. Applications working with "exotic" explicit binary (GF(2^m))
curve parameters, that make it possible to represent invalid field
polynomials with a zero constant term, via the above or similar APIs,
may terminate abruptly as a result of reading or writing outside of
array bounds. Remote code execution cannot easily be ruled out.

1. https://www.openssl.org/news/vulnerabilities.html#CVE-2024-13176
2. https://www.openssl.org/news/vulnerabilities.html#CVE-2024-9143

Build system: x86/64
Build-tested: bcm27xx/bcm2712
Run-tested: bcm27xx/bcm2712

Signed-off-by: John Audia <therealgraysky@proton.me>
Link: https://github.com/openwrt/openwrt/pull/17947
Signed-off-by: Robert Marko <robimarko@gmail.com>
2025-02-16 12:59:49 +01:00
..
argp-standalone treewide: opt-out of tree-wide LTO usage 2023-03-21 18:28:23 +01:00
elfutils elfutils: Backport some patches to fix errors 2024-11-16 19:57:58 +01:00
gettext-full gettext-full: update to 0.22.5 2024-04-25 21:33:51 +02:00
gmp gmp: use same source tarball for tools/gmp and package/libs/gmp 2024-11-28 15:53:32 +00:00
jansson treewide: add support for "lto" in PKG_BUILD_FLAGS 2023-03-21 18:28:22 +01:00
libbpf libbpf: Update to v1.5.0 2024-12-28 15:41:43 +01:00
libbsd libbsd: update to 0.11.8 2024-01-30 10:39:21 +01:00
libcap libcap: update to 2.69 2023-05-22 18:51:31 +02:00
libevent2 libevent2: make cmake use relative imported path 2024-03-13 00:24:43 +00:00
libiconv-full libiconv-full: add host build 2022-07-17 14:21:03 +02:00
libjson-c libjson-c: update to 0.18 2024-10-05 12:29:20 +02:00
libmd libmd: update to 1.1.0 2023-10-12 09:50:25 +02:00
libmnl libmnl: add PKG_CPE_ID 2022-09-06 16:36:44 +01:00
libnetfilter-conntrack packages: assign PKG_CPE_ID for all missing packages 2023-09-19 20:21:13 +02:00
libnfnetlink libnfnetlink: add PKG_CPE_ID 2022-09-06 16:36:45 +01:00
libnftnl libnftnl: update to 1.2.8 2024-11-11 00:05:06 +01:00
libnl libnl: update to 3.10.0 2024-10-05 12:33:38 +02:00
libnl-tiny treewide: update PKG_MIRROR_HASH to zst 2024-04-06 11:24:18 +02:00
libpcap libpcap: update to 1.10.5 2024-09-22 17:41:32 +02:00
libselinux libselinux: opt-out of lto usage 2023-10-29 19:42:32 +01:00
libsemanage libaudit: update to 3.1.4, join with daemon and utils, rename 2024-04-29 00:53:43 +02:00
libsepol libsepol: opt-out of lto usage 2023-10-29 19:42:32 +01:00
libtool libtool: update to 2.4.7 2022-07-10 19:07:47 +02:00
libtraceevent libtraceevent: update to 1.8.2 2024-01-25 17:31:50 +01:00
libtracefs libtracefs: update to 1.8 2024-01-25 17:31:50 +01:00
libubox treewide: update PKG_MIRROR_HASH to zst 2024-04-06 11:24:18 +02:00
libunistring libunistring: update to 1.2 2024-08-07 18:05:32 +02:00
libunwind libunwind: add support for loongarch64 2024-05-04 14:14:24 +08:00
libusb libusb: update to 1.0.27 2024-09-22 18:20:44 +02:00
libxml2 libxml2: update to 2.13.4 2024-10-05 12:31:43 +02:00
mbedtls mbedtls: Deactivate ARIA block cipher by default 2024-12-23 22:15:20 +01:00
mpfr mpfr: import from packages feed 2024-01-04 22:40:05 +01:00
musl-fts musl-fts: remove shared libraries from host 2022-03-27 14:38:13 +02:00
ncurses ncurses: Fix path in ncursesw.pc 2024-07-28 19:30:35 +02:00
nettle nettle: update to 3.9.1 2023-07-19 15:25:35 +02:00
openssl openssl: update to 3.0.16 2025-02-16 12:59:49 +01:00
pcre2 package/libs/pcre2: fix PKG_CPE_ID 2024-04-27 12:05:43 +02:00
popt treewide: Add extra CPE identifier 2023-09-25 23:06:33 +02:00
readline libreadlne: create symlinks for .so 2024-11-16 17:20:12 +01:00
sysfsutils treewide: Add extra CPE identifier 2023-09-25 23:06:33 +02:00
toolchain build: lock versions for special APK packages 2025-02-04 13:48:59 +00:00
uclient uclient: update to Git HEAD (2024-10-22) 2024-10-22 13:15:54 +02:00
udebug treewide: update PKG_MIRROR_HASH to zst 2024-04-06 11:24:18 +02:00
ustream-ssl ustream-ssl: update to Git HEAD (2024-07-28) 2024-08-25 17:27:32 +02:00
wolfssl wolfssl: Update to version 5.7.6 2025-01-27 23:28:05 +01:00
zlib zlib: update to 1.3.1 2024-02-02 17:26:29 +01:00