public inbox for buildroot@busybox.net
 help / color / mirror / Atom feed
* [Buildroot] [Bug 12796] New: Update OpenSSL to Version 1.1.1g to patch CVE-2020-1967
@ 2020-04-21 20:55 bugzilla at busybox.net
  2020-04-22  5:09 ` [Buildroot] [Bug 12796] " bugzilla at busybox.net
  0 siblings, 1 reply; 2+ messages in thread
From: bugzilla at busybox.net @ 2020-04-21 20:55 UTC (permalink / raw)
  To: buildroot

https://bugs.busybox.net/show_bug.cgi?id=12796

            Bug ID: 12796
           Summary: Update OpenSSL to Version 1.1.1g to patch
                    CVE-2020-1967
           Product: buildroot
           Version: 2020.02.1
          Hardware: All
                OS: Linux
            Status: NEW
          Severity: critical
          Priority: P5
         Component: Outdated package
          Assignee: unassigned at buildroot.uclibc.org
          Reporter: pmorici at dev295.com
                CC: buildroot at uclibc.org
  Target Milestone: ---

See:
    https://www.openssl.org/news/secadv/20200421.txt

Recent versions of Buildroot use version 1.1.1f

-- 
You are receiving this mail because:
You are on the CC list for the bug.

^ permalink raw reply	[flat|nested] 2+ messages in thread
* [Buildroot] [Bug 12796] Update OpenSSL to Version 1.1.1g to patch CVE-2020-1967
  2020-04-21 20:55 [Buildroot] [Bug 12796] New: Update OpenSSL to Version 1.1.1g to patch CVE-2020-1967 bugzilla at busybox.net
@ 2020-04-22  5:09 ` bugzilla at busybox.net
  0 siblings, 0 replies; 2+ messages in thread
From: bugzilla at busybox.net @ 2020-04-22  5:09 UTC (permalink / raw)
  To: buildroot

https://bugs.busybox.net/show_bug.cgi?id=12796

Thomas Petazzoni <thomas.petazzoni@free-electrons.com> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
             Status|NEW                         |RESOLVED
         Resolution|---                         |FIXED

--- Comment #1 from Thomas Petazzoni <thomas.petazzoni@free-electrons.com> ---
Thanks, it's already fixed by
https://git.buildroot.org/buildroot/commit/?id=849aee4f8805cce89376c0cd1ce23721436a90ac.
As it is a security bump, it will be backported to our 2020.02.x LTS branch.

-- 
You are receiving this mail because:
You are on the CC list for the bug.

^ permalink raw reply	[flat|nested] 2+ messages in thread
end of thread, other threads:[~2020-04-22  5:09 UTC | newest]

Thread overview: 2+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2020-04-21 20:55 [Buildroot] [Bug 12796] New: Update OpenSSL to Version 1.1.1g to patch CVE-2020-1967 bugzilla at busybox.net
2020-04-22  5:09 ` [Buildroot] [Bug 12796] " bugzilla at busybox.net

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox