mirrors/meta-openembedded
1
0
Fork 0
mirror of https://github.com/openembedded/meta-openembedded.git synced 2026-05-30 00:50:00 +00:00
Code Issues Projects Releases Wiki Activity

leancrypto: upgrade 1.7.0 -> 1.7.1

Browse Source 
Contains fix for CVE-2026-34610 (which is however tracked without
a version by NVD, so it is marked as patched explicitly)

Changelog:
- Offer a means to select the AES-C constant time / S-Box
  implementation via lc_init API
- use the AES-C constant time implementation by default - it is
  about 3 times slower than the AES-C S-Box implementation, but
  more secure. As the leancrypto library is about secure by default,
  the CT implementation is just right. Furthermore, if a caller
  wants to have the faster AES-C S-Box, he can call
  lc_init(LC_INIT_AES_SBOX) at the beginning.
- X.509: fix security issue (CVE-2026-34610)

Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
This commit is contained in:
Gyorgy Sarvari
2026-04-06 14:03:13 +02:00
committed by Khem Raj
parent a0531bc55a
commit 082c108e6e
1 changed files with 3 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files
meta-oe/recipes-crypto/leancrypto/leancrypto_1.7.0.bb → meta-oe/recipes-crypto/leancrypto/leancrypto_1.7.1.bb
+3 -2
View File
@@ -14,11 +14,12 @@ SECTION = "libs"
SRC_URI = "git://github.com/smuellerDD/leancrypto.git;branch=master;protocol=https;tag=v${PV} \ SRC_URI = "git://github.com/smuellerDD/leancrypto.git;branch=master;protocol=https;tag=v${PV} \
file://leancrypto-tests.sh \ file://leancrypto-tests.sh \
" "
# SRCREV tagged v1.7.0 SRCREV = "e7fa8c87a46c5787174c18fac385aa08eecdedd1"
SRCREV = "e60fba94e8cabf1661a1da488b78b84a4fba56e9"
inherit pkgconfig meson inherit pkgconfig meson
CVE_STATUS[CVE-2026-34610] = "fixed-version: fixed since v1.7.1"
EXTRA_OEMESON = "-Dstrip=false" EXTRA_OEMESON = "-Dstrip=false"
TARGET_LDFLAGS:append = " ${DEBUG_PREFIX_MAP}" TARGET_LDFLAGS:append = " ${DEBUG_PREFIX_MAP}"