aboutsummaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorGravatar Baruch Siach <baruch@tkos.co.il>2018-06-15 11:22:08 +0300
committerGravatar Peter Korsgaard <peter@korsgaard.com>2018-07-17 09:24:07 +0200
commit48c5b3930d9968d5bdb3f4dcc7d5c18968a76a81 (patch)
tree93e589a161ffb31d40b318a8f4c88ec3441dbc23
parentef5e8bc674d9e95c7546f820cf86967cd5529106 (diff)
downloadbuildroot-48c5b3930d9968d5bdb3f4dcc7d5c18968a76a81.tar.gz
buildroot-48c5b3930d9968d5bdb3f4dcc7d5c18968a76a81.tar.bz2
libressl: security bump to version 2.7.4
Fixes CVE-2018-0495: ECDSA signing side-channel attack. Cc: Adam Duskett <aduskett@gmail.com> Signed-off-by: Baruch Siach <baruch@tkos.co.il> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit b609ee33e1d2d37711722933bad279df3bed2786) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
-rw-r--r--package/libressl/libressl.hash2
-rw-r--r--package/libressl/libressl.mk2
2 files changed, 2 insertions, 2 deletions
diff --git a/package/libressl/libressl.hash b/package/libressl/libressl.hash
index 53b7e0af59..111fe4feed 100644
--- a/package/libressl/libressl.hash
+++ b/package/libressl/libressl.hash
@@ -1,4 +1,4 @@
# From https://ftp.openbsd.org/pub/OpenBSD/LibreSSL/SHA256
-sha256 917a8779c342177ff3751a2bf955d0262d1d8916a4b408930c45cef326700995 libressl-2.7.2.tar.gz
+sha256 1e3a9fada06c1c060011470ad0ff960de28f9a0515277d7336f7e09362517da6 libressl-2.7.4.tar.gz
# Locally computed
sha256 5c63613f008f16a9c0025c096bbd736cecf720494d121b5c5203e0ec6e5955b1 COPYING
diff --git a/package/libressl/libressl.mk b/package/libressl/libressl.mk
index 1a1dda1000..35494c8239 100644
--- a/package/libressl/libressl.mk
+++ b/package/libressl/libressl.mk
@@ -4,7 +4,7 @@
#
################################################################################
-LIBRESSL_VERSION = 2.7.2
+LIBRESSL_VERSION = 2.7.4
LIBRESSL_SITE = https://ftp.openbsd.org/pub/OpenBSD/LibreSSL
LIBRESSL_LICENSE = ISC (new additions), OpenSSL or SSLeay (original OpenSSL code)
LIBRESSL_LICENSE_FILES = COPYING