Commit 32678194 authored by Gustavo Zacarias's avatar Gustavo Zacarias Committed by Peter Korsgaard
Browse files

openssl: security bump to version 1.0.1j 



Fixes:
CVE-2014-3513 - SRTP memory leak
CVE-2014-3567 - Session ticket memory leak
CVE-2014-3568 - Build option no-ssl3 is incomplete
And adds SSL3 fallback protection against POODLE.

Signed-off-by: default avatarGustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: default avatarPeter Korsgaard <peter@korsgaard.com>
parent 20cff964

package/openssl/openssl.hash

+4 −4
Original line number Diff line number Diff line 
# From https://www.openssl.org/source/openssl-1.0.1i.tar.gz.md5

# From https://www.openssl.org/source/openssl-1.0.1i.tar.gz.sha1

md5	c8dc151a671b9b92ff3e4c118b174972	openssl-1.0.1i.tar.gz

sha1	74eed314fa2c93006df8d26cd9fc630a101abd76	openssl-1.0.1i.tar.gz
 
# From https://www.openssl.org/source/openssl-1.0.1j.tar.gz.md5

# From https://www.openssl.org/source/openssl-1.0.1j.tar.gz.sha1

md5	f7175c9cd3c39bb1907ac8bba9df8ed3	openssl-1.0.1j.tar.gz

sha1	cff86857507624f0ad42d922bb6f77c4f1c2b819	openssl-1.0.1j.tar.gz

package/openssl/openssl.mk

+1 −1
Original line number Diff line number Diff line
@@ -4,7 +4,7 @@ 
#

################################################################################



OPENSSL_VERSION = 1.0.1i

OPENSSL_VERSION = 1.0.1j

OPENSSL_SITE = http://www.openssl.org/source

OPENSSL_LICENSE = OpenSSL or SSLeay

OPENSSL_LICENSE_FILES = LICENSE