[Buildroot] [PATCH] openssl: security bump to version 1.0.2g
Peter Korsgaard
peter at korsgaard.com
Tue Mar 1 14:48:24 UTC 2016
>>>>> "Gustavo" == Gustavo Zacarias <gustavo at zacarias.com.ar> writes:
> Fixes:
> CVE-2016-0800 - Cross-protocol attack on TLS using SSLv2 (DROWN)
> CVE-2016-0705 - Double-free in DSA code
> CVE-2016-0798 - Memory leak in SRP database lookups
> CVE-2016-0797 - BN_hex2bn/BN_dec2bn NULL pointer deref/heap corruption
> CVE-2016-0799 - Fix memory issues in BIO_*printf functions
> CVE-2016-0702 - Side channel attack on modular exponentiation
> Signed-off-by: Gustavo Zacarias <gustavo at zacarias.com.ar>
Committed, thanks.
--
Bye, Peter Korsgaard
More information about the buildroot
mailing list