diff options
author | Armin Kuster <akuster808@gmail.com> | 2019-01-02 08:36:13 -0800 |
---|---|---|
committer | Richard Purdie <richard.purdie@linuxfoundation.org> | 2019-01-02 16:39:57 +0000 |
commit | 90aa187c1ee4f8a452a03be0d8cccd1008f425b3 (patch) | |
tree | 643d6e78c5aeb5446d7b1ab47a86946e6da9b225 /meta/recipes-support/libcap-ng | |
parent | 85090a69296a9cbde1c6ad17d891c325678eadd0 (diff) | |
download | openembedded-core-contrib-90aa187c1ee4f8a452a03be0d8cccd1008f425b3.tar.gz |
nss: update to 3.41
Bug fix only update.
Bug 1252891 - Implemented EKU handling for IPsec IKE.
Bug 1423043 - Enable half-closed states for TLS.
Bug 1493215 - Enabled the following ciphersuites by default:
TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
TLS_RSA_WITH_AES_256_GCM_SHA384
Bug 1412829, Reject empty supported_signature_algorithms in Certificate Request in TLS 1.2
Bug 1485864 - Cache side-channel variant of the Bleichenbacher attack (CVE-2018-12404)
Bug 1481271 - Resend the same ticket in ClientHello after HelloRetryRequest
Bug 1493769 - Set session_id for external resumption tokens
Bug 1507179 - Reject CCS after handshake is complete in TLS 1.3
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Diffstat (limited to 'meta/recipes-support/libcap-ng')
0 files changed, 0 insertions, 0 deletions