commit | 8de200895c9ee06d6d8e20fb5809a143dcead6a5 | [log] [tgz] |
---|---|---|
author | Bernd Kuhls <bernd@kuhls.net> | Wed Sep 04 07:37:01 2024 +0200 |
committer | Peter Korsgaard <peter@korsgaard.com> | Thu Sep 05 08:04:28 2024 +0200 |
tree | 4af533e074be00ca3bbbbeca70f0b002e23c4513 | |
parent | efd5f1aae45e841bf1a40c977253f1cb5e229396 [diff] |
package/libopenssl: security bump version to 3.3.2 Fixes the following security issues: - CVE-2024-6119: Possible denial of service in X.509 name checks [Moderate severity] https://openssl-library.org/news/secadv/20240903.txt - CVE-2024-5535: SSL_select_next_proto buffer overread [Low severity] https://openssl-library.org/news/secadv/20240528.txt Updated _SITE and project URL according to https://openssl-library.org/post/2024-04-30-releases-distribution-changes/ Signed-off-by: Bernd Kuhls <bernd@kuhls.net> [Peter: add CVE details] Signed-off-by: Peter Korsgaard <peter@korsgaard.com>