Dear All,
I'm using "Chaos Calmer 15.05.1" together with OpenVPN and OpenSSL (opkg openvpn-openssl).
Due to the fact that many critical security issues have been fixed in OpenSSL recently, I'd like to update my OpenWRT installation.
I tried to find out the "intended way" to do that, but I wasn't successful.
Can someone please tell me how to update OpenSSL (in my setup) to the latest version?
I already found changeset 49295 (see below) which seem to cover that issue. But when I tried "opkg update / opkg list-upgradable" no new package showed up.
Do I just have to wait a little bit longer? Where can I see, when the new package will be released?
Do I have to compile and upgrade the package manually?
Do I have to install the latest build of 15.05.01?
Do I have to install the latest trunk build?
I'm only interested in the "intended way"... of course, there might be several ways, but what is the "security design" of OpenWRT?
Thank you in advance
oil_lamp
Changeset 49295
---
" openssl: Update to version 1.0.2h
Bump to the latest version, fixes several security issues:
CVE-2016-2107, CVE-2016-2105, CVE-2016-2106, CVE-2016-2109, CVE-2016-2176 "
---