On Thu, 2015-05-21 at 00:19 +0200, Hauke Mehrtens wrote: > On 05/20/2015 11:42 PM, Daniel Gimpelevich wrote: > > This patch introduces a new build error into coova-chilli, but > > coova-chilli already fails to build even without it anyway. CyaSSL is > > now called wolfSSL, and all the API's have been renamed, and > > backward-compatibility headers added. > > Does this fix any security Issues? Otherwise I would wait till the > branch to update this library. > > Hauke >
It's mostly new features and many bug fixes, though there are a few minor security-related changes relating to obsolete algorithms and protocols. The changelog contains the following note: - No high level security fixes that requires an update though we always recommend updating to the latest (except note 6 use case of ecc/normal math) It should be noted that since version 3.3.0, there have been versions 3.3.2, 3.4.0, and 3.4.6 now. It might be worth fixing the coova-chilli package to build before the branch so that it isn't stuck with a broken package, but if anyone does that without this patch, applying this patch will re-break it, so it might pay to do this a priori. If you disagree, I believe the branch is scheduled for this week, so the wait wouldn't be long. _______________________________________________ openwrt-devel mailing list [email protected] https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-devel
