treewide: fix security issues by bumping all packages using libwolfssl
As wolfSSL is having hard time maintaining ABI compatibility between releases, we need to manually force rebuild of packages depending on libwolfssl and thus force their upgrade. Otherwise due to the ABI handling we would endup with possibly two libwolfssl libraries in the system, including the patched libwolfssl-5.5.1, but still have vulnerable services running using the vulnerable libwolfssl-5.4.0. So in order to propagate update of libwolfssl to latest stable release done in commit ec8fb542ec3e4 ("wolfssl: fix TLSv1.3 RCE in uhttpd by using 5.5.1-stable (CVE-2022-39173)") which fixes several remotely exploitable vulnerabilities, we need to bump PKG_RELEASE of all packages using wolfSSL library. Same bump has been done in buildroot in commit f1b7e1434f66 ("treewide: fix security issues by bumping all packages using libwolfssl"). Signed-off-by:Petr Štetiar <ynezz@true.cz> (cherry picked from commit 845d81ca) (cherry picked from commit f624e41f) (cherry picked from commit c8447b8a3829349822c9d26c978959042d697d0a)
parent
f60ea47e
No related branches found
No related tags found
Showing
- libs/libuhttpd/Makefile 1 addition, 1 deletionlibs/libuhttpd/Makefile
- libs/libuwsc/Makefile 1 addition, 1 deletionlibs/libuwsc/Makefile
- net/coova-chilli/Makefile 1 addition, 1 deletionnet/coova-chilli/Makefile
- net/curl/Makefile 1 addition, 1 deletionnet/curl/Makefile
- net/lighttpd/Makefile 1 addition, 1 deletionnet/lighttpd/Makefile
- net/openvpn/Makefile 1 addition, 1 deletionnet/openvpn/Makefile
- net/strongswan/Makefile 1 addition, 1 deletionnet/strongswan/Makefile
- net/wifidog/Makefile 1 addition, 1 deletionnet/wifidog/Makefile
- utils/rtty/Makefile 1 addition, 1 deletionutils/rtty/Makefile
Loading
Please register or sign in to comment