Upgrade to OpenSSL-1.0.2m (!16691) · Merge requests · Rodrigo Test / Test Group-nodejs / node

Rodrigo Muino Tomonari requested to merge github/fork/shigeki/upgrade_openssl102m into master Nov 02, 2017

This upgrades to OpenSSL-1.0.2m . It includes the fix of the moderate severity of CVE-2017-3736 that affects Node in RSA calculations of TLS and crypto modules but the attack is said to be very difficult.

This upgrades have no changes in opensslconf.h in the config dir.

Checklist

make -j4 test (UNIX), or vcbuild test (Windows) passes
tests and/or benchmarks are included
documentation is changed or added
commit message follows commit guidelines

Affected core subsystem(s)

deps/openssl

R @nodejs/crypto or others.

Admin message

Admin message

Upgrade to OpenSSL-1.0.2m

Checklist

Affected core subsystem(s)

Merge request reports