Commits
Bernd Kuhls committed 8a673badcb1
package/botan: security bump to version 1.10.16 Fixes CVE-2017-2801: A programming error exists in a way Randombit Botan cryptographic library version 2.0.1 implements x500 string comparisons which could lead to certificate verification issues and abuse. A specially crafted X509 certificate would need to be delivered to the client or server application in order to trigger this vulnerability. [Peter: extend commit message with security fixes info] Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> (cherry picked from commit 033aa8d4e9ad13ee56dbb372ad45a7d83bca4f53) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>