pkgsrc/security/wolfssl
fox 9d39fefc3b security/wolfssl: Updates to v4.8.1
Changes since v4.8.0:

wolfSSL Release 4.8.1 (July 16, 2021)

Release 4.8.1 of wolfSSL embedded TLS has an OCSP vulnerability fix:
Vulnerabilities

  * [High] OCSP verification issue when response is for a certificate with no
    relation to the chain in question BUT that response contains the NoCheck
    extension which effectively disables ALL verification of that one cert.
    Users who should upgrade to 4.8.1 are TLS client users doing OCSP, TLS
    server users doing mutual auth with OCSP, and CertManager users doing OCSP
    independent of TLS. Thanks to Jan Nauber, Marco Smeets, Werner Rueschenbaum
    and Alissa Kim of Volkswagen Infotainment for the report.
2021-07-24 04:45:06 +00:00
..
patches security/wolfssl: Updates to v4.8.0 2021-07-15 04:39:31 +00:00
buildlink3.mk
DESCR
distinfo security/wolfssl: Updates to v4.8.1 2021-07-24 04:45:06 +00:00
Makefile security/wolfssl: Updates to v4.8.1 2021-07-24 04:45:06 +00:00
PLIST security/wolfssl: Updates to v4.8.0 2021-07-15 04:39:31 +00:00