mirror/openwrt
1
0
Fork 1
mirror of https://git.openwrt.org/openwrt/openwrt.git synced 2026-01-28 03:37:17 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions 4
openwrt/package/libs
History
Magnus Kroken 1a8d3ea89c mbedtls: update to 3.6.5 
This release includes fixes for security issues.

Mbed TLS 3.6 is a long-term support (LTS) branch. It will be supported
with bug-fixes and security fixes until at least March 2027.

The two issues fixed were timing side channels:
* Padding oracle through timing of cipher error reporting
  (CVE-2025-59438) [1]
* Side channel in RSA key generation and operations (SSBleed, M-Step)
  (CVE-2025-54764) [2]

Bug fixes:
* Fix potential CMake parallel build failure when building both the static and shared libraries.
* Fix a build error or incorrect TLS session lifetime on platforms where mbedtls_time_t is not time_t.

[1]: https://mbed-tls.readthedocs.io/en/latest/security-advisories/mbedtls-security-advisory-2025-10-invalid-padding-error/
[2]: https://mbed-tls.readthedocs.io/en/latest/security-advisories/mbedtls-security-advisory-2025-10-ssbleed-mstep/

Full release announcement:
https://github.com/Mbed-TLS/mbedtls/releases/tag/mbedtls-3.6.5

Tested-by: Edoardo Pinci <epinci@outlook.com>
Signed-off-by: Magnus Kroken <mkroken@gmail.com>
Link: https://github.com/openwrt/openwrt/pull/20425
Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
(cherry picked from commit eb370a7d02)
2025-10-18 14:25:48 +02:00
..
argp-standalone treewide: opt-out of tree-wide LTO usage 2023-03-21 18:28:23 +01:00
elfutils package/libs/elfutils: fix license 2025-09-10 00:07:33 +02:00
gettext-full package/libs/gettext-full: fix license 2025-09-10 00:07:36 +02:00
gmp gmp: update to 6.3 2023-10-17 11:05:16 +02:00
jansson treewide: add support for "lto" in PKG_BUILD_FLAGS 2023-03-21 18:28:22 +01:00
libbpf libbpf: Update to v1.5.0 2025-01-01 21:19:05 +01:00
libbsd libbsd: update to 0.11.8 2024-01-30 10:39:21 +01:00
libcap libcap: update to 2.69 2023-05-22 18:51:31 +02:00
libevent2 libevent2: make cmake use relative imported path 2024-03-13 00:24:43 +00:00
libiconv-full libiconv: fix compilation on hosts GCC=15 2025-05-30 13:10:11 +02:00
libjson-c libjson-c: update to 0.18 2024-10-05 12:29:20 +02:00
libmd libmd: update to 1.1.0 2023-10-12 09:50:25 +02:00
libmnl libmnl: add PKG_CPE_ID 2022-09-06 16:36:44 +01:00
libnetfilter-conntrack packages: assign PKG_CPE_ID for all missing packages 2023-09-19 20:21:13 +02:00
libnfnetlink libnfnetlink: add PKG_CPE_ID 2022-09-06 16:36:45 +01:00
libnftnl libnftnl: update to 1.2.8 2024-11-16 00:11:27 +01:00
libnl libnl: update to 3.10.0 2024-10-05 12:33:38 +02:00
libnl-tiny libnl-tiny: update to Git HEAD (2025-03-19) 2025-03-19 13:20:21 +01:00
libpcap libpcap: backport support for various DSA tags 2025-03-13 23:07:35 +00:00
libselinux libselinux: opt-out of lto usage 2023-10-29 19:42:32 +01:00
libsemanage libaudit: update to 3.1.4, join with daemon and utils, rename 2024-04-29 00:53:43 +02:00
libsepol libsepol: opt-out of lto usage 2023-10-29 19:42:32 +01:00
libtool libtool: update to 2.4.7 2022-07-10 19:07:47 +02:00
libtraceevent libtraceevent: update to 1.8.2 2024-01-25 17:31:50 +01:00
libtracefs libtracefs: update to 1.8 2024-01-25 17:31:50 +01:00
libubox libubox: update to Git HEAD (2025-07-23) 2025-07-23 12:04:47 +02:00
libunistring libunistring: update to 1.2 2024-08-07 18:05:32 +02:00
libunwind libunwind: add support for loongarch64 2024-05-04 14:14:24 +08:00
libusb libusb: update to 1.0.27 2024-09-22 18:20:44 +02:00
libxml2 libxml2: correct PKG_LICENSE_FILES 2025-09-19 22:44:54 +02:00
mbedtls mbedtls: update to 3.6.5 2025-10-18 14:25:48 +02:00
mpfr mpfr: import from packages feed 2024-01-04 22:40:05 +01:00
musl-fts musl-fts: remove shared libraries from host 2022-03-27 14:38:13 +02:00
ncurses ncurses: Fix path in ncursesw.pc 2024-07-28 19:30:35 +02:00
nettle nettle: update to 3.9.1 2023-07-19 15:25:35 +02:00
openssl openssl: Update to version 3.0.18 2025-10-13 23:41:16 +02:00
pcre2 package/libs/pcre2: fix PKG_CPE_ID 2024-04-27 12:05:43 +02:00
popt treewide: Add extra CPE identifier 2023-09-25 23:06:33 +02:00
readline libreadlne: create symlinks for .so 2024-11-28 18:47:29 +00:00
sysfsutils treewide: Add extra CPE identifier 2023-09-25 23:06:33 +02:00
toolchain libquadmath: Add libquadmath to the toolchain 2024-06-17 13:12:29 +02:00
uclient uclient: update to Git HEAD (2024-10-22) 2024-10-22 13:15:54 +02:00
udebug udebug: update to Git HEAD (2025-08-24) 2025-08-26 19:22:13 +02:00
ustream-ssl ustream-ssl: update to Git HEAD (2024-07-28) 2024-08-25 17:27:32 +02:00
wolfssl wolfssl: Update to version 5.7.6 2025-01-27 23:53:29 +01:00
zlib zlib: update to 1.3.1 2024-02-02 17:26:29 +01:00