openssl: actually apply Use-SHA256-not-MD5-as-default-digest.patch - openembedded-core-contrib - OpenEmbedded Core user contribution trees

diff options

author	Ross Burton <ross.burton@intel.com>	2017-03-14 12:49:47 +0000
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2017-03-14 14:32:27 +0000
commit	8791800f84321b3f46772bc2d9e4f754e6213946 (patch)
tree	bbe89dae2c40bd74e6c7b027d0fcf3b0b1f33cb0 /meta/recipes-devtools/go/go-cross.inc
parent	bf00e5e265d3f878d2af36a48d597ce477bd6f4f (diff)
download	openembedded-core-contrib-8791800f84321b3f46772bc2d9e4f754e6213946.tar.gz

openssl: actually apply Use-SHA256-not-MD5-as-default-digest.patch

This patch was added to fix a CVE, but wasn't actually added to SRC_URI: CVE: CVE-2004-2761 The MD5 Message-Digest Algorithm is not collision resistant, which makes it easier for context-dependent attackers to conduct spoofing attacks, as demonstrated by attacks on the use of MD5 in the signature algorithm of an X.509 certificate. Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

Diffstat (limited to 'meta/recipes-devtools/go/go-cross.inc')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: