[ubuntu/artful-security] openssl 1.0.2g-1ubuntu13.2 (Accepted)
Marc Deslauriers
marc.deslauriers at canonical.com
Mon Nov 6 18:28:30 UTC 2017
openssl (1.0.2g-1ubuntu13.2) artful-security; urgency=medium
* SECURITY UPDATE: Malformed X.509 IPAddressFamily could cause OOB read
- debian/patches/CVE-2017-3735.patch: avoid out-of-bounds read in
crypto/x509v3/v3_addr.c.
- CVE-2017-3735
* SECURITY UPDATE: bn_sqrx8x_internal carry bug on x86_64
- debian/patches/CVE-2017-3736.patch: fix carry bug in
bn_sqrx8x_internal in crypto/bn/asm/x86_64-mont5.pl.
- CVE-2017-3736
* debian/patches/fix_armhf_ftbfs.patch: fix build with gcc-7.2 on armhf.
(LP: #1729850)
Date: 2017-11-06 14:16:27.927526+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/+source/openssl/1.0.2g-1ubuntu13.2
-------------- next part --------------
Sorry, changesfile not available.
More information about the Artful-changes
mailing list