diff options
| author | fox <fox@pkgsrc.org> | 2021-07-24 04:45:06 +0000 |
|---|---|---|
| committer | fox <fox@pkgsrc.org> | 2021-07-24 04:45:06 +0000 |
| commit | daf1f1c204972534a8d1e7f92af477f9926a4b72 (patch) | |
| tree | fd1739aae0751a1df6aa57939bcb2902412ea7cd /security | |
| parent | 2e72e6dfe287ab51b4d48365503dc7f09c8dda0b (diff) | |
| download | pkgsrc-daf1f1c204972534a8d1e7f92af477f9926a4b72.tar.gz | |
security/wolfssl: Updates to v4.8.1
Changes since v4.8.0:
wolfSSL Release 4.8.1 (July 16, 2021)
Release 4.8.1 of wolfSSL embedded TLS has an OCSP vulnerability fix:
Vulnerabilities
* [High] OCSP verification issue when response is for a certificate with no
relation to the chain in question BUT that response contains the NoCheck
extension which effectively disables ALL verification of that one cert.
Users who should upgrade to 4.8.1 are TLS client users doing OCSP, TLS
server users doing mutual auth with OCSP, and CertManager users doing OCSP
independent of TLS. Thanks to Jan Nauber, Marco Smeets, Werner Rueschenbaum
and Alissa Kim of Volkswagen Infotainment for the report.
Diffstat (limited to 'security')
| -rw-r--r-- | security/wolfssl/Makefile | 4 | ||||
| -rw-r--r-- | security/wolfssl/distinfo | 10 |
2 files changed, 7 insertions, 7 deletions
diff --git a/security/wolfssl/Makefile b/security/wolfssl/Makefile index 70d4f61b8e8..941c975aa6a 100644 --- a/security/wolfssl/Makefile +++ b/security/wolfssl/Makefile @@ -1,6 +1,6 @@ -# $NetBSD: Makefile,v 1.7 2021/07/15 04:39:31 fox Exp $ +# $NetBSD: Makefile,v 1.8 2021/07/24 04:45:06 fox Exp $ -DISTNAME= wolfssl-4.8.0 +DISTNAME= wolfssl-4.8.1 CATEGORIES= security MASTER_SITES= https://www.wolfssl.com/ EXTRACT_SUFX= .zip diff --git a/security/wolfssl/distinfo b/security/wolfssl/distinfo index dc53a9fd76a..160b1d72dea 100644 --- a/security/wolfssl/distinfo +++ b/security/wolfssl/distinfo @@ -1,8 +1,8 @@ -$NetBSD: distinfo,v 1.6 2021/07/15 04:39:31 fox Exp $ +$NetBSD: distinfo,v 1.7 2021/07/24 04:45:06 fox Exp $ -SHA1 (wolfssl-4.8.0.zip) = 93e008c2b2a961cc0387e32de4fc8f9dc1718dee -RMD160 (wolfssl-4.8.0.zip) = b2a9c72a1519329b6e63f29e5722712b0428ef41 -SHA512 (wolfssl-4.8.0.zip) = 269839bc178df5b73a412764824d18775a01fb16439cf15d61a32a7cb2d806a3d80b9924047a929ab48bc9d2859b236fd60c9222b889e67b97dd05439602a8b7 -Size (wolfssl-4.8.0.zip) = 11835511 bytes +SHA1 (wolfssl-4.8.1.zip) = 66d53663131fc38be1bacd223b8fa9ed57a23394 +RMD160 (wolfssl-4.8.1.zip) = 7e5da115eb663fbd06da99ea8c3b92358986d866 +SHA512 (wolfssl-4.8.1.zip) = fb31eda1ffb60d6a82d94cbca6af63cb1dac4262fc3a7529eb71e183953f1800f9a5a118a3dad6ecad8d36a8703084753cbd18654875d79d3140156885601a52 +Size (wolfssl-4.8.1.zip) = 11836201 bytes SHA1 (patch-certs_intermediate_genintcerts.sh) = bdcf9a1fd14170aaf780ab9677fd8bc6e4ddc75c SHA1 (patch-configure) = 48030cea4854db8abe0712566dbba6d85939d7b9 |