diff options
| author | Petr Štetiar <ynezz@true.cz> | 2022-10-03 19:03:15 +0200 |
|---|---|---|
| committer | Rosen Penev <rosenp@gmail.com> | 2022-10-04 00:58:29 -0700 |
| commit | 845d81ca0976c82829addc23e9e8b95885c910ee (patch) | |
| tree | 811c53272e04a9031818b99f3487f9d321168de2 /net | |
| parent | cc6bf5f71e25926d081402041ab426667479e50f (diff) | |
treewide: fix security issues by bumping all packages using libwolfssl
As wolfSSL is having hard time maintaining ABI compatibility between
releases, we need to manually force rebuild of packages depending on
libwolfssl and thus force their upgrade. Otherwise due to the ABI
handling we would endup with possibly two libwolfssl libraries in the
system, including the patched libwolfssl-5.5.1, but still have
vulnerable services running using the vulnerable libwolfssl-5.4.0.
So in order to propagate update of libwolfssl to latest stable release
done in commit ec8fb542ec3e4 ("wolfssl: fix TLSv1.3 RCE in uhttpd by
using 5.5.1-stable (CVE-2022-39173)") which fixes several remotely
exploitable vulnerabilities, we need to bump PKG_RELEASE of all packages
using wolfSSL library.
Same bump has been done in buildroot in commit f1b7e1434f66 ("treewide:
fix security issues by bumping all packages using libwolfssl").
Signed-off-by: Petr Štetiar <ynezz@true.cz>
Diffstat (limited to 'net')
| -rw-r--r-- | net/coova-chilli/Makefile | 2 | ||||
| -rw-r--r-- | net/curl/Makefile | 2 | ||||
| -rw-r--r-- | net/lighttpd/Makefile | 2 | ||||
| -rw-r--r-- | net/openvpn/Makefile | 2 | ||||
| -rw-r--r-- | net/strongswan/Makefile | 2 | ||||
| -rw-r--r-- | net/wifidog/Makefile | 2 |
6 files changed, 6 insertions, 6 deletions
diff --git a/net/coova-chilli/Makefile b/net/coova-chilli/Makefile index ece113869..88b98ab44 100644 --- a/net/coova-chilli/Makefile +++ b/net/coova-chilli/Makefile @@ -9,7 +9,7 @@ include $(TOPDIR)/rules.mk PKG_NAME:=coova-chilli PKG_VERSION:=1.6 -PKG_RELEASE:=$(AUTORELEASE) +PKG_RELEASE:=$(AUTORELEASE).1 PKG_SOURCE:=$(PKG_NAME)-$(PKG_VERSION).tar.gz PKG_SOURCE_URL:=https://codeload.github.com/coova/coova-chilli/tar.gz/$(PKG_VERSION)? diff --git a/net/curl/Makefile b/net/curl/Makefile index 53916b044..6d0c48484 100644 --- a/net/curl/Makefile +++ b/net/curl/Makefile @@ -9,7 +9,7 @@ include $(TOPDIR)/rules.mk PKG_NAME:=curl PKG_VERSION:=7.85.0 -PKG_RELEASE:=$(AUTORELEASE) +PKG_RELEASE:=$(AUTORELEASE).1 PKG_SOURCE:=$(PKG_NAME)-$(PKG_VERSION).tar.xz PKG_SOURCE_URL:=https://github.com/curl/curl/releases/download/curl-$(subst .,_,$(PKG_VERSION))/ \ diff --git a/net/lighttpd/Makefile b/net/lighttpd/Makefile index 9943969b9..1b882d47a 100644 --- a/net/lighttpd/Makefile +++ b/net/lighttpd/Makefile @@ -9,7 +9,7 @@ include $(TOPDIR)/rules.mk PKG_NAME:=lighttpd PKG_VERSION:=1.4.67 -PKG_RELEASE:=1 +PKG_RELEASE:=2 # release candidate ~rcX testing; remove for release #PKG_BUILD_DIR:=$(BUILD_DIR)/$(PKG_NAME)-1.4.67 diff --git a/net/openvpn/Makefile b/net/openvpn/Makefile index 86c7e88f5..489145327 100644 --- a/net/openvpn/Makefile +++ b/net/openvpn/Makefile @@ -10,7 +10,7 @@ include $(TOPDIR)/rules.mk PKG_NAME:=openvpn PKG_VERSION:=2.5.7 -PKG_RELEASE:=2 +PKG_RELEASE:=3 PKG_SOURCE_URL:=\ https://build.openvpn.net/downloads/releases/ \ diff --git a/net/strongswan/Makefile b/net/strongswan/Makefile index 76c08fc3d..711641fc8 100644 --- a/net/strongswan/Makefile +++ b/net/strongswan/Makefile @@ -9,7 +9,7 @@ include $(TOPDIR)/rules.mk PKG_NAME:=strongswan PKG_VERSION:=5.9.7 -PKG_RELEASE:=$(AUTORELEASE) +PKG_RELEASE:=$(AUTORELEASE).1 PKG_SOURCE:=$(PKG_NAME)-$(PKG_VERSION).tar.bz2 PKG_SOURCE_URL:=https://download.strongswan.org/ https://download2.strongswan.org/ diff --git a/net/wifidog/Makefile b/net/wifidog/Makefile index 900d8a648..28af32498 100644 --- a/net/wifidog/Makefile +++ b/net/wifidog/Makefile @@ -9,7 +9,7 @@ include $(TOPDIR)/rules.mk PKG_NAME:=wifidog PKG_VERSION:=1.3.0 -PKG_RELEASE:=7 +PKG_RELEASE:=8 PKG_SOURCE_PROTO:=git PKG_SOURCE_URL:=https://github.com/wifidog/wifidog-gateway |