mirror/openwrt
1
0
Fork 1
mirror of https://git.openwrt.org/openwrt/openwrt.git synced 2026-02-02 10:53:19 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions 4
openwrt/package/libs
History
Ivan Pavlov 90b8ed725a openssl: update to 3.5.5 
This release incorporates the following bug fixes and mitigations:

  fixed Improper validation of PBMAC1 parameters in PKCS#12 MAC verification.
  (CVE-2025-11187)

  fixed Stack buffer overflow in CMS AuthEnvelopedData parsing.
  (CVE-2025-15467)

  fixed NULL dereference in SSL_CIPHER_find  () function on unknown cipher ID.
  (CVE-2025-15468)

  fixed openssl dgst one-shot codepath silently truncates inputs >16 MiB.
  (CVE-2025-15469)

  fixed TLS 1.3 CompressedCertificate excessive memory allocation.
  (CVE-2025-66199)

  fixed Heap out-of-bounds write in BIO_f_linebuffer on short writes.
  (CVE-2025-68160)

  fixed Unauthenticated/unencrypted trailing bytes with low-level OCB function calls.
  (CVE-2025-69418)

  fixed Out of bounds write in PKCS12_get_friendlyname  () UTF-8 conversion.
  (CVE-2025-69419)

  fixed Missing ASN1_TYPE validation in TS_RESP_verify_response  () function.
  (CVE-2025-69420)

  fixed NULL Pointer Dereference in PKCS12_item_decrypt_d2i_ex  () function.
  (CVE-2025-69421)

  fixed Missing ASN1_TYPE validation in PKCS#12 parsing.
  (CVE-2026-22795)

  fixed ASN1_TYPE Type Confusion in the PKCS7_digest_from_attributes  () function.
  (CVE-2026-22796)

Adjust patches due to formatting changes.

Link: https://github.com/openwrt/openwrt/pull/21752
Signed-off-by: Ivan Pavlov <AuthorReflex@gmail.com>
Link: https://github.com/openwrt/openwrt/pull/21755
Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
(cherry picked from commit df6db01f4f)
2026-01-29 00:39:55 +01:00
..
argp-standalone treewide: opt-out of tree-wide LTO usage 2023-03-21 18:28:23 +01:00
elfutils elfutils: drop libelf1 provide 2026-01-16 17:13:00 +01:00
gettext-full package/libs/gettext-full: fix license 2025-09-08 14:51:35 +02:00
gmp gmp: fix compilation with GCC 15.1 2025-06-08 12:46:17 +02:00
gnulib-l10n gnulib-l10n: add package 2025-07-26 14:38:09 +02:00
jansson jansson: update to 2.14.1 2025-11-23 23:55:25 +01:00
libbpf libbpf: update to 1.6.2 2025-11-23 21:13:09 +01:00
libbsd libbsd: update to 0.12.2 2025-11-24 09:38:37 +01:00
libcap libcap: Revert "libcap: update to 2.77" 2025-12-16 01:26:24 +01:00
libevent2 libevent2: adjust for cmake 4.x compatibility 2025-11-04 15:14:54 +01:00
libiconv-full libiconv-full: update to 1.18 2025-05-04 20:50:33 +02:00
libjson-c libjson-c: patch for cmake 4.x compatibility 2025-11-04 15:14:53 +01:00
libmd libmd: update to 1.1.0 2023-10-12 09:50:25 +02:00
libmnl libmnl: add PKG_CPE_ID 2022-09-06 16:36:44 +01:00
libnetfilter-conntrack libnetfilter-conntrack: bump to 1.1.0 2025-07-04 15:15:07 +02:00
libnfnetlink libnfnetlink: add PKG_CPE_ID 2022-09-06 16:36:45 +01:00
libnftnl libnftnl: update to version 1.3.1 2025-12-10 23:26:31 +01:00
libnl libnl: update to version 3.12 2025-12-10 23:24:22 +01:00
libnl-tiny libnl-tiny: update to Git HEAD (2025-12-02) 2025-12-09 20:37:39 +01:00
libpcap libpcap: bump PKG_RELEASE 2025-07-19 18:54:05 +02:00
libselinux libselinux: update to 3.9 2025-11-27 00:02:26 +01:00
libsemanage libsemanage: update to 3.9 2025-11-27 00:02:26 +01:00
libsepol libsepol: update to 3.9 2025-11-27 00:02:26 +01:00
libtool libtool: update to 2.5.4 2025-11-23 21:11:51 +01:00
libtraceevent libtraceevent: switch to meson and add missing dep for libtraceevent-extra 2025-11-27 13:39:57 +01:00
libtracefs libtracefs: update to 1.8.2 2025-05-13 16:48:49 +02:00
libubox libubox: update to Git HEAD (2025-12-08) 2025-12-09 20:41:58 +01:00
libunistring libunistring: fix compilation error with MUSL 2025-11-25 13:41:11 +01:00
libunwind libunwind: fix complie for PPC32 2025-12-06 01:49:16 +01:00
libusb libusb: update to 1.0.29 2025-11-23 23:50:47 +01:00
libxml2 libxml2: update to 2.15.1 2025-11-24 09:40:35 +01:00
mbedtls mbedtls: update to 3.6.5 2025-10-18 01:27:52 +02:00
mpfr mpfr: update to 4.2.2 2025-11-23 23:53:50 +01:00
musl-fts musl-fts: remove shared libraries from host 2022-03-27 14:38:13 +02:00
ncurses Revert "ncurses: update to 6.5" 2025-07-09 11:51:01 +02:00
nettle nettle: update to 3.10.2 2025-11-23 23:52:11 +01:00
openssl openssl: update to 3.5.5 2026-01-29 00:39:55 +01:00
pcre2 libpcre2: Default enable JIT support for aarch64 2025-11-23 13:55:31 +01:00
popt treewide: Add extra CPE identifier 2023-09-25 23:06:33 +02:00
readline readline: add $(FPIC) to LDFLAGS 2026-01-13 00:23:38 +01:00
sysfsutils treewide: Add extra CPE identifier 2023-09-25 23:06:33 +02:00
toolchain toolchain: fix libgcc ABI for libc 2025-12-24 19:39:54 +01:00
uclient uclient: provide virtual wget-any 2026-01-16 17:12:59 +01:00
udebug udebug: update to Git HEAD (2025-10-21) 2025-11-11 00:23:22 +01:00
ustream-ssl ustream-ssl: update to Git HEAD (2025-10-03) 2025-10-04 00:00:52 +02:00
wolfssl wolfssl: update to 5.8.4 2025-11-26 09:35:04 +01:00
xcrypt package: xcrypt: add missing PKG_NAME 2025-11-07 12:23:52 +01:00
zlib zlib: switch to git source 2025-02-24 12:44:02 +01:00