gluon

nils/gluon

History

Matthias Schiffer 74148a8464 ecdsautils: verify: fix signature verification (CVE-2022-24884) A vulnerability was found in ecdsautils which allows forgery of ECDSA signatures. An adversary exploiting this vulnerability can create an update manifest accepted by the autoupdater, which can be used to distribute malicious firmware updates by spoofing a Gluon node's connection to the update server.	2022-05-03 18:47:08 +02:00
..
openwrt	modules: bump OpenWrt	2020-02-02 01:32:02 +01:00
packages	ecdsautils: verify: fix signature verification (CVE-2022-24884)	2022-05-03 18:47:08 +02:00

Matthias Schiffer 74148a8464

ecdsautils: verify: fix signature verification (CVE-2022-24884)

A vulnerability was found in ecdsautils which allows forgery of ECDSA
signatures. An adversary exploiting this vulnerability can create an update
manifest accepted by the autoupdater, which can be used to distribute
malicious firmware updates by spoofing a Gluon node's connection to the
update server.

2022-05-03 18:47:08 +02:00

openwrt

modules: bump OpenWrt

2020-02-02 01:32:02 +01:00

packages

ecdsautils: verify: fix signature verification (CVE-2022-24884)

2022-05-03 18:47:08 +02:00