[ubuntu/dapper-security] openssl (delayed), openssl 0.9.8a-7ubuntu0.14 (Accepted)
Ubuntu Installer
archive at ubuntu.com
Wed Dec 8 00:05:04 GMT 2010
openssl (0.9.8a-7ubuntu0.14) dapper-security; urgency=low
* SECURITY UPDATE: ciphersuite downgrade vulnerability
- ssl/s3_clnt.c, ssl/s3_srvr.c: disable workaround for Netscape
cipher suite bug
- http://openssl.org/news/secadv_20101202.txt
- CVE-2010-4180
Date: Fri, 03 Dec 2010 13:15:15 -0800
Changed-By: Steve Beattie <sbeattie at ubuntu.com>
Maintainer: Debian OpenSSL Team <pkg-openssl-devel at lists.alioth.debian.org>
https://launchpad.net/ubuntu/dapper/+source/openssl/0.9.8a-7ubuntu0.14
-------------- next part --------------
Format: 1.7
Date: Fri, 03 Dec 2010 13:15:15 -0800
Source: openssl
Binary: libssl-dev openssl libssl0.9.8-dbg libcrypto0.9.8-udeb libssl0.9.8
Architecture: source
Version: 0.9.8a-7ubuntu0.14
Distribution: dapper-security
Urgency: low
Maintainer: Debian OpenSSL Team <pkg-openssl-devel at lists.alioth.debian.org>
Changed-By: Steve Beattie <sbeattie at ubuntu.com>
Description:
libcrypto0.9.8-udeb - crypto shared library - udeb
libssl-dev - SSL development libraries, header files and documentation
libssl0.9.8 - SSL shared libraries
libssl0.9.8-dbg - Symbol tables for libssl and libcrypt
openssl - Secure Socket Layer (SSL) binary and related cryptographic tools
Changes:
openssl (0.9.8a-7ubuntu0.14) dapper-security; urgency=low
.
* SECURITY UPDATE: ciphersuite downgrade vulnerability
- ssl/s3_clnt.c, ssl/s3_srvr.c: disable workaround for Netscape
cipher suite bug
- http://openssl.org/news/secadv_20101202.txt
- CVE-2010-4180
Files:
a5f93020840f693044eb64af528fd01e 1465 utils optional openssl_0.9.8a-7ubuntu0.14.dsc
3de8e480bcec0653b94001366e2f1f27 67296 utils optional openssl_0.9.8a-7ubuntu0.14.diff.gz
Package-Type: udeb
More information about the dapper-changes
mailing list