diff options
author | Bryan McLellan <btm@loftninjas.org> | 2020-05-07 13:09:47 -0400 |
---|---|---|
committer | Bryan McLellan <btm@loftninjas.org> | 2020-05-07 13:09:47 -0400 |
commit | fbaaefaffd51aa0f669b36c8b6f20d8d5d844aed (patch) | |
tree | b71c8983d3a63cc392273d8d9eced94302076769 | |
parent | 5258d04855d2442b8be1b68588a7d85e34cd922a (diff) | |
download | chef-fbaaefaffd51aa0f669b36c8b6f20d8d5d844aed.tar.gz |
Update omnibus-software to 74e9d0
- openssl 1.0.2v
> Changes between 1.0.2u and 1.0.2v [5 May 2020]
>
> *) Implemented coordinate blinding for the generic implementations of both
> binary and prime elliptic curves to avoid leaking bits of the scalar and,
> potentially, bug attacks. A group of security researchers and
> cryptographers from academia and industry, listed below, reported a
> successful cache timing attack in OpenSSL 1.0.2u against specific prime and
> binary curves whose order or field length is close to a word boundary. They
> also provided the fix. This attack does not fit the OpenSSL threat model
> and so no CVE is assigned, but a fix is implemented nonetheless.
> [Diego F. Aranha, Akira Takahashi, Mehdi Tibouchi, Yuval Yarom]
- removes lalr1.java on windows
https://github.com/chef/customer-bugs/issues/91
Signed-off-by: Bryan McLellan <btm@loftninjas.org>
-rw-r--r-- | omnibus/Gemfile.lock | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/omnibus/Gemfile.lock b/omnibus/Gemfile.lock index eda4f7ee6c..763dc49f2f 100644 --- a/omnibus/Gemfile.lock +++ b/omnibus/Gemfile.lock @@ -18,7 +18,7 @@ GIT GIT remote: https://github.com/chef/omnibus-software - revision: 8f4f31ca9548c18808b038975f957351ec40dfd5 + revision: 74e9d02cf7f9b164d67789a0a0a7e167143db6fb branch: master specs: omnibus-software (4.0.0) @@ -32,7 +32,7 @@ GEM artifactory (3.0.12) awesome_print (1.8.0) aws-eventstream (1.1.0) - aws-partitions (1.309.0) + aws-partitions (1.310.0) aws-sdk-core (3.94.1) aws-eventstream (~> 1, >= 1.0.2) aws-partitions (~> 1, >= 1.239.0) |