gluon

nils/gluon

History

Matthias Schiffer 2b5d4b88b4 ecdsautils: verify: fix signature verification (CVE-2022-24884) A vulnerability was found in ecdsautils which allows forgery of ECDSA signatures. An adversary exploiting this vulnerability can create an update manifest accepted by the autoupdater, which can be used to distribute malicious firmware updates by spoofing a Gluon node's connection to the update server.	2022-05-03 07:36:23 +02:00
..
packages	ecdsautils: verify: fix signature verification (CVE-2022-24884)	2022-05-03 07:36:23 +02:00
routing	batman-adv: Introduce no noflood mark	2021-05-01 22:33:59 +02:00

Matthias Schiffer 2b5d4b88b4

ecdsautils: verify: fix signature verification (CVE-2022-24884)

A vulnerability was found in ecdsautils which allows forgery of ECDSA
signatures. An adversary exploiting this vulnerability can create an update
manifest accepted by the autoupdater, which can be used to distribute
malicious firmware updates by spoofing a Gluon node's connection to the
update server.

2022-05-03 07:36:23 +02:00

packages

ecdsautils: verify: fix signature verification (CVE-2022-24884)

2022-05-03 07:36:23 +02:00

routing

batman-adv: Introduce no noflood mark

2021-05-01 22:33:59 +02:00