diff options
| author | Peter Marko <peter.marko@siemens.com> | 2023-08-01 18:36:41 +0200 |
|---|---|---|
| committer | Steve Sakoman <steve@sakoman.com> | 2023-08-30 04:52:35 -1000 |
| commit | 8c1aae83a567bd34041c10a8885735bcf13ed995 (patch) | |
| tree | 12d230e921409dfa25edf93d2b8c4b2af64b29e3 /scripts/lib/devtool/deploy.py | |
| parent | 5568bc0585eba5d0c57e5c2a0a8e98ef6da5ad8f (diff) | |
| download | poky-8c1aae83a567bd34041c10a8885735bcf13ed995.tar.gz | |
openssl: Upgrade 3.1.1 -> 3.1.2
https://github.com/openssl/openssl/blob/openssl-3.1/NEWS.md#major-changes-between-openssl-311-and-openssl-312-1-aug-2023
Major changes between OpenSSL 3.1.1 and OpenSSL 3.1.2 [1 Aug 2023]
* Fix excessive time spent checking DH q parameter value (CVE-2023-3817)
* Fix DH_check() excessive time with over sized modulus (CVE-2023-3446)
* Do not ignore empty associated data entries with AES-SIV (CVE-2023-2975)
* When building with the enable-fips option and using the resulting FIPS provider, TLS 1.2 will, by default, mandate the use of an extended master secret and the Hash and HMAC DRBGs will not operate with truncated digests.
(From OE-Core rev: e8b876d6514f6257eaaddb7b44489367666504ba)
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit e65802383b02df6f502af859a927309d881bbb27)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Diffstat (limited to 'scripts/lib/devtool/deploy.py')
0 files changed, 0 insertions, 0 deletions