diff options
author | Sona Sarmadi <sona.sarmadi@enea.com> | 2014-06-09 15:11:46 +0200 |
---|---|---|
committer | Tudor Florea <tudor.florea@enea.com> | 2015-07-06 20:17:19 +0200 |
commit | 465c7cf5fbdedb00e98c7172442404f02b69add8 (patch) | |
tree | 259ce9e66f252ed61143855b4a6c1432af6a3215 /meta/recipes-connectivity/openssl/openssl_1.0.1g.bb | |
parent | f4cf9fe05bb3f32fabea4e54dd92d368967a80da (diff) | |
download | poky-465c7cf5fbdedb00e98c7172442404f02b69add8.tar.gz |
Fix for OpenSSL security vulnerabilities
1) DTLS invalid fragment vulnerability (CVE-2014-0195)
2) DTLS recursion flaw (CVE-2014-0221)
3) SSL/TLS MITM vulnerability (CVE-2014-0224)
4) Anonymous ECDH denial of service (CVE-2014-3470)
Signed-off-by: Sona Sarmadi <sona.sarmadi@enea.com>
Signed-off-by: Maxin B. John <maxin.john@enea.com>
Diffstat (limited to 'meta/recipes-connectivity/openssl/openssl_1.0.1g.bb')
-rw-r--r-- | meta/recipes-connectivity/openssl/openssl_1.0.1g.bb | 6 |
1 files changed, 6 insertions, 0 deletions
diff --git a/meta/recipes-connectivity/openssl/openssl_1.0.1g.bb b/meta/recipes-connectivity/openssl/openssl_1.0.1g.bb index dad89f0a22..d7d2b7f00e 100644 --- a/meta/recipes-connectivity/openssl/openssl_1.0.1g.bb +++ b/meta/recipes-connectivity/openssl/openssl_1.0.1g.bb | |||
@@ -36,6 +36,12 @@ SRC_URI += "file://configure-targets.patch \ | |||
36 | file://find.pl \ | 36 | file://find.pl \ |
37 | file://openssl-fix-des.pod-error.patch \ | 37 | file://openssl-fix-des.pod-error.patch \ |
38 | file://openssl-CVE-2014-0198-fix.patch \ | 38 | file://openssl-CVE-2014-0198-fix.patch \ |
39 | file://0001-Fix-for-CVE-2014-0195.patch \ | ||
40 | file://0001-Fix-CVE-2014-0221.patch \ | ||
41 | file://0001-Fix-for-CVE-2014-0224.patch \ | ||
42 | file://0002-Additional-CVE-2014-0224-protection.patch \ | ||
43 | file://0003-Make-tls_session_secret_cb-work-with-CVE-2014-0224-f.patch \ | ||
44 | file://0001-Fix-CVE-2014-3470.patch \ | ||
39 | file://run-ptest \ | 45 | file://run-ptest \ |
40 | " | 46 | " |
41 | 47 | ||