./security/mbedtls, Lightweight, modular cryptographic and SSL/TLS library

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]

Branch: pkgsrc-2020Q1, Version: 2.16.6, Package name: mbedtls-2.16.6, Maintainer: pkgsrc-users

mbed TLS (formerly known as PolarSSL) makes it trivially easy for developers
to include cryptographic and SSL/TLS capabilities in their (embedded)
products, facilitating this functionality with a minimal coding footprint.


Required to build:
[pkgtools/cwrappers]

Package options: mbedtls-tools

Master sites:

SHA1: 3cb5b681597a5bd798d31038c129c0dc911d8a2c
RMD160: da5ede944292874afdb24a8fe21c643b34255206
Filesize: 2635.957 KB

Version history: (Expand)

CVS history: (Expand)


   2020-04-28 18:23:53 by Benny Siegert | Files touched by this commit (2) 
Log message:
Pullup ticket #6170 - requested by nia
security/mbedtls: security fix

Revisions pulled up:
- security/mbedtls/Makefile                                     1.14
- security/mbedtls/distinfo                                     1.9

---
   Module Name:	pkgsrc
   Committed By:	nia
   Date:		Sat Apr 18 14:21:56 UTC 2020

   Modified Files:
   	pkgsrc/security/mbedtls: Makefile distinfo

   Log message:
   mbedtls: Update to 2.16.6

   = mbed TLS 2.16.6 branch released 2020-04-14

   Security
      * Fix side channel in ECC code that allowed an adversary with access to
        precise enough timing and memory access information (typically an
        untrusted operating system attacking a secure enclave) to fully recover
        an ECDSA private key. Found and reported by Alejandro Cabrera Aldaya,
        Billy Brumley and Cesar Pereida Garcia. CVE-2020-10932
      * Fix a potentially remotely exploitable buffer overread in a
        DTLS client when parsing the Hello Verify Request message.

   Bugfix
      * Fix compilation failure when both MBEDTLS_SSL_PROTO_DTLS and
        MBEDTLS_SSL_HW_RECORD_ACCEL are enabled.
      * Fix a function name in a debug message. Contributed by Ercan Ozturk in
        #3013.