git.openwrt.org Git - openwrt/openwrt.git/commit

author	Magnus Kroken <mkroken@gmail.com>
	Tue, 1 Sep 2020 20:28:25 +0000 (22:28 +0200)
committer	Hauke Mehrtens <hauke@hauke-m.de>
	Sun, 27 Sep 2020 22:37:50 +0000 (00:37 +0200)
commit	3d771602e99af29b4a194d81647a26a7af8c5784
tree	450a9c26f9d8f060e40d5c460172bf3f4ac1b974	tree \| snapshot
parent	910ac641cc65fafabf9b4fb1b0fc6aacf49ef38c	commit \| diff

mbedtls: update to 2.16.8

This release of Mbed TLS provides bug fixes and minor enhancements. This
release includes fixes for security issues and the most notable of them
are described in more detail in the security advisories.

* Local side channel attack on RSA and static Diffie-Hellman
* Local side channel attack on classical CBC decryption in (D)TLS
* When checking X.509 CRLs, a certificate was only considered as revoked
if its revocationDate was in the past according to the local clock if
available.

Full release announcement:
https://github.com/ARMmbed/mbedtls/releases/tag/v2.16.8

Signed-off-by: Magnus Kroken <mkroken@gmail.com>
(cherry picked from commit 66893063abf56b7d8c21eceed56e5d27859eaaea)

package/libs/mbedtls/Makefile		diff \| blob \| history
package/libs/mbedtls/patches/200-config.patch		diff \| blob \| history
package/libs/mbedtls/patches/300-soversion-compatibility.patch		diff \| blob \| history