him411/openwrt-6.x
1
0
Fork 0
mirror of https://github.com/LiBwrt-op/openwrt-6.x.git synced 2025-12-31 00:01:39 +00:00
Code Issues Packages Projects Releases Wiki Activity
ebabdff401
openwrt-6.x/package/libs
History
Petr Štetiar ec8fb542ec wolfssl: fix TLSv1.3 RCE in uhttpd by using 5.5.1-stable (CVE-2022-39173) 
Fixes denial of service attack and buffer overflow against TLS 1.3
servers using session ticket resumption. When built with
--enable-session-ticket and making use of TLS 1.3 server code in
wolfSSL, there is the possibility of a malicious client to craft a
malformed second ClientHello packet that causes the server to crash.

This issue is limited to when using both --enable-session-ticket and TLS
1.3 on the server side. Users with TLS 1.3 servers, and having
--enable-session-ticket, should update to the latest version of wolfSSL.

Thanks to Max at Trail of Bits for the report and "LORIA, INRIA, France"
for research on tlspuffin.

Complete release notes https://github.com/wolfSSL/wolfssl/releases/tag/v5.5.1-stable

Fixes: CVE-2022-39173
Fixes: https://github.com/openwrt/luci/issues/5962
References: https://github.com/wolfSSL/wolfssl/issues/5629
Tested-by: Kien Truong <duckientruong@gmail.com>
Reported-by: Kien Truong <duckientruong@gmail.com>
Signed-off-by: Petr Štetiar <ynezz@true.cz>
2022-09-29 07:53:56 +02:00
..
argp-standalone argp-standalone: fix compilation with Alpine Linux 2022-03-16 17:58:24 +01:00
elfutils elfutils: update to 0.187 2022-08-06 19:58:46 +02:00
gettext-full gettext-full: add gmsgfmt symlink in host install 2022-03-25 17:48:49 +02:00
gmp
jansson jansson: add PKG_CPE_ID 2022-09-06 16:36:40 +01:00
libaudit
libbsd libbsd: update to 0.11.6 2022-09-11 01:30:11 +02:00
libcap libcap: use more compatible shebang 2022-09-14 00:06:18 +02:00
libevent2
libiconv-full libiconv-full: add host build 2022-07-17 14:21:03 +02:00
libjson-c libjson-c: disable libbsd 2022-07-04 20:37:41 +02:00
libmd libmd: add library providing message digest functions 2022-09-11 01:30:11 +02:00
libmnl libmnl: add PKG_CPE_ID 2022-09-06 16:36:44 +01:00
libnetfilter-conntrack libnetfilter-conntrack: backport patch fixing compilation with 5.15 2022-03-05 21:05:45 +01:00
libnfnetlink libnfnetlink: add PKG_CPE_ID 2022-09-06 16:36:45 +01:00
libnftnl libnftnl: update to 1.2.3 2022-08-28 18:29:10 +02:00
libnl libnl: add PKG_CPE_ID 2022-09-06 16:36:41 +01:00
libnl-tiny libnl-tiny: update to the latest version 2022-05-23 14:12:44 +02:00
libpcap libpcap: fix PKG_CONFIG_DEPENDS for rpcapd 2022-07-10 18:11:36 +02:00
libselinux libselinux: add PKG_CPE_ID 2022-09-06 16:36:48 +01:00
libsemanage
libsepol libsepol: add PKG_CPE_ID 2022-09-06 16:36:48 +01:00
libtool libtool: update to 2.4.7 2022-07-10 19:07:47 +02:00
libtraceevent libtraceevent: add Linux kernel trace event library 2022-08-06 19:58:46 +02:00
libtracefs libtracefs: add Linux kernel trace file system library 2022-08-06 19:58:46 +02:00
libubox libubox: update to the latest version 2022-05-15 15:20:34 +02:00
libunwind libunwind: update to 1.6.2 2022-09-07 04:22:40 +01:00
libusb packages: libusb: add package 'fxload' (from libusb examples) 2022-09-17 00:44:08 +01:00
mbedtls mbedtls: update to version 2.28.1 2022-08-28 12:37:54 +02:00
musl-fts musl-fts: remove shared libraries from host 2022-03-27 14:38:13 +02:00
ncurses ncurses: update to 6.3 2022-03-19 17:42:29 +01:00
nettle nettle: add PKG_CPE_ID 2022-09-06 16:34:26 +01:00
openssl openssl: bump to 1.1.1q 2022-07-07 21:22:36 +02:00
pcre pcre: pass -fPIC under host as well 2022-04-16 14:02:11 +02:00
popt popt: update to 1.18 2022-08-28 18:29:10 +02:00
readline readline: update to 8.1.2 2022-08-31 23:25:39 +02:00
sysfsutils sysfsutils: Define START early in file 2022-09-26 17:58:32 +01:00
toolchain toolchain: reproducible libstdcpp 2022-04-01 12:54:58 +01:00
uclient
ustream-ssl ustream-ssl: prevent unused crypto lib dependencies from being compiled 2022-07-31 00:11:21 +02:00
wolfssl wolfssl: fix TLSv1.3 RCE in uhttpd by using 5.5.1-stable (CVE-2022-39173) 2022-09-29 07:53:56 +02:00
zlib zlib: backport null dereference fix 2022-08-09 08:08:08 +02:00