libcoap

pool/libcoap

SHA256

Fork 1

Commit Graph

Author	SHA256	Message	Date
Andreas Stieger	14ca44e74b	- Update to 4.3.5a: * CVE-2025-65493: null pointer dereference in BIO_get_data() can cause a denial of service (boo#1254187) * CVE-2025-65494: null pointer dereference in sk_GENERAL_NAME_value() can cause a denial of service (boo#1254188) * CVE-2025-65495: integer signedness error in tls_verify_call_back() can cause a denial of service (boo#1254191) * CVE-2025-65496: null pointer dereference in coap_dtls_generate_cookie() can cause a denial of service (boo#1254189) * CVE-2025-65497: null pointer dereference in coap_dtls_generate_cookie() can cause a denial of service (boo#1254190) * CVE-2025-65498: null pointer dereference in SSL_get_SSL_CTX() can cause a denial of service (boo#1254186) * CVE-2025-65499: array index error in tls_verify_call_back() can cause a denial of service (boo#1254194) * CVE-2025-65500: null pointer dereference in coap_dtls_generate_cookie() can cause a denial of service (boo#1254192) * CVE-2025-65501: null pointer dereference in coap_dtls_info_callback() can cause a denial of service (boo#1254193) * Support for RIOT update changes * Functional bug fixes - Expand CoAP acronym; remove extraneous dashes since English uses spaces for compounds. - initial version OBS-URL: https://build.opensuse.org/package/show/systemsmanagement/libcoap?expand=0&rev=6	2025-11-27 18:48:04 +00:00

Author

SHA256

Message

Date

Andreas Stieger

14ca44e74b

- Update to 4.3.5a:

* CVE-2025-65493: null pointer dereference in BIO_get_data() can cause a denial of service (boo#1254187)
  * CVE-2025-65494: null pointer dereference in sk_GENERAL_NAME_value() can cause a denial of service (boo#1254188)
  * CVE-2025-65495: integer signedness error in tls_verify_call_back() can cause a denial of service (boo#1254191)
  * CVE-2025-65496: null pointer dereference in coap_dtls_generate_cookie() can cause a denial of service (boo#1254189)
  * CVE-2025-65497: null pointer dereference in coap_dtls_generate_cookie() can cause a denial of service (boo#1254190)
  * CVE-2025-65498: null pointer dereference in SSL_get_SSL_CTX() can cause a denial of service (boo#1254186)
  * CVE-2025-65499: array index error in tls_verify_call_back() can cause a denial of service (boo#1254194)
  * CVE-2025-65500: null pointer dereference in coap_dtls_generate_cookie() can cause a denial of service (boo#1254192)
  * CVE-2025-65501: null pointer dereference in coap_dtls_info_callback() can cause a denial of service (boo#1254193)
  * Support for RIOT update changes
  * Functional bug fixes
- Expand CoAP acronym; remove extraneous dashes since English uses
  spaces for compounds.
- initial version

OBS-URL: https://build.opensuse.org/package/show/systemsmanagement/libcoap?expand=0&rev=6

2025-11-27 18:48:04 +00:00

1 Commits