mirror of
https://github.com/openwrt/packages.git
synced 2026-01-10 19:54:50 +00:00
9101a21e53
This is a security release. Notable Changes The following CVEs are fixed in this release: * CVE-2023-44487: nghttp2 Security Release (High) (Depends on shared library provided by OpenWrt) * CVE-2023-45143: undici Security Release (High) * CVE-2023-38552: Integrity checks according to policies can be circumvented (Medium) * CVE-2023-39333: Code injection via WebAssembly export names (Low) More detailed information on each of the vulnerabilities can be found in October 2023 Security Releases blog post. Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>