[ubuntu/bionic-proposed] openssl1.0 1.0.2n-1ubuntu5 (Accepted)
Marc Deslauriers
marc.deslauriers at ubuntu.com
Tue Mar 27 18:14:13 UTC 2018
openssl1.0 (1.0.2n-1ubuntu5) bionic; urgency=medium
* SECURITY UPDATE: DoS via ASN.1 types with a recursive definition
- debian/patches/CVE-2018-0739.patch: limit stack depth in
crypto/asn1/asn1.h, crypto/asn1/asn1_err.c, crypto/asn1/tasn_dec.c.
- CVE-2018-0739
Date: Tue, 27 Mar 2018 13:48:57 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/openssl1.0/1.0.2n-1ubuntu5
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Tue, 27 Mar 2018 13:48:57 -0400
Source: openssl1.0
Binary: libssl1.0.0 libssl1.0-dev libcrypto1.0.0-udeb libssl1.0.0-udeb openssl1.0
Architecture: source
Version: 1.0.2n-1ubuntu5
Distribution: bionic
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description:
libcrypto1.0.0-udeb - Secure Sockets Layer toolkit - libcrypto udeb (udeb)
libssl1.0-dev - Secure Sockets Layer toolkit - development files
libssl1.0.0 - Secure Sockets Layer toolkit - shared libraries
libssl1.0.0-udeb - ssl shared library - udeb (udeb)
openssl1.0 - Secure Sockets Layer toolkit 1.0 - cryptographic utility
Changes:
openssl1.0 (1.0.2n-1ubuntu5) bionic; urgency=medium
.
* SECURITY UPDATE: DoS via ASN.1 types with a recursive definition
- debian/patches/CVE-2018-0739.patch: limit stack depth in
crypto/asn1/asn1.h, crypto/asn1/asn1_err.c, crypto/asn1/tasn_dec.c.
- CVE-2018-0739
Checksums-Sha1:
ea725052e73603983d2ce5cf6af22eb877cf9a06 2673 openssl1.0_1.0.2n-1ubuntu5.dsc
97489213c1993f7e3275a3f0293293797c93717c 101784 openssl1.0_1.0.2n-1ubuntu5.debian.tar.xz
52b2f76ddda2000754e176c635252591fdf23698 5667 openssl1.0_1.0.2n-1ubuntu5_source.buildinfo
Checksums-Sha256:
affc81dc04c215df6ddf9a2a56c578cc4454971335c7781d3e5823d99eba353d 2673 openssl1.0_1.0.2n-1ubuntu5.dsc
57fb6cdbf184e10d2cd63922b31c929dc4b1b61a11d258cd8284f354b354d724 101784 openssl1.0_1.0.2n-1ubuntu5.debian.tar.xz
336ce17a83efd80fff619998f9011083018598e176a12754e2e08f095dacd840 5667 openssl1.0_1.0.2n-1ubuntu5_source.buildinfo
Files:
5e8ec0f209c20bf80ae7b066250044eb 2673 utils optional openssl1.0_1.0.2n-1ubuntu5.dsc
f2cbddcddaed08ebf628cfb1c6f0d37d 101784 utils optional openssl1.0_1.0.2n-1ubuntu5.debian.tar.xz
00134eb8afbe78b18eb5d53ba124ffae 5667 utils optional openssl1.0_1.0.2n-1ubuntu5_source.buildinfo
Original-Maintainer: Debian OpenSSL Team <pkg-openssl-devel at lists.alioth.debian.org>
-----BEGIN PGP SIGNATURE-----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=INGm
-----END PGP SIGNATURE-----
More information about the Bionic-changes
mailing list