Skip to content

Bump openssl version to 1.0.2l

Balasankar 'Balu' Crequested to merge
bump-openssl into master

Nothing looks problematic in upstream changelog.

## Major changes between OpenSSL 1.0.2k and OpenSSL 1.0.2l
 * config now recognises 64-bit mingw and chooses mingw64 instead of mingw
## Major changes between OpenSSL 1.0.2j and OpenSSL 1.0.2k
 * Truncated packet could crash via OOB read (CVE-2017-3731)
 * BN_mod_exp may produce incorrect results on x86_64 (CVE-2017-3732)
 * Montgomery multiplication may produce incorrect results (CVE-2016-7055)
Edited by Balasankar 'Balu' C

Merge request reports