Accepted openssl 0.9.8b-2ubuntu2.1 (source)
Ubuntu Installer
archive at ubuntu.com
Sat Sep 29 00:55:29 BST 2007
Accepted:
OK: openssl_0.9.8b.orig.tar.gz
OK: openssl_0.9.8b-2ubuntu2.1.diff.gz
OK: openssl_0.9.8b-2ubuntu2.1.dsc
-> Component: main Section: utils
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Fri, 28 Sep 2007 13:02:19 -0700
Source: openssl
Binary: libssl-dev openssl libssl0.9.8-dbg libcrypto0.9.8-udeb libssl0.9.8
Architecture: source
Version: 0.9.8b-2ubuntu2.1
Distribution: edgy-security
Urgency: low
Maintainer: Debian OpenSSL Team <pkg-openssl-devel at lists.alioth.debian.org>
Changed-By: Kees Cook <kees at ubuntu.com>
Description:
libcrypto0.9.8-udeb - crypto shared library - udeb
libssl-dev - SSL development libraries, header files and documentation
libssl0.9.8 - SSL shared libraries
libssl0.9.8-dbg - Symbol tables for libssl and libcrypt
openssl - Secure Socket Layer (SSL) binary and related cryptographic tools
Changes:
openssl (0.9.8b-2ubuntu2.1) edgy-security; urgency=low
.
[ Jamie Strandboge ]
* SECURITY UPDATE: off-by-one error in SSL_get_shared_ciphers() results in
buffer overflow
* ssl/ssl_lib.c: applied upstream patch from openssl CVS thanks to
Stephan Hermann
* References:
CVE-2007-5135
http://www.securityfocus.com/archive/1/archive/1/480855/100/0/threaded
Fixes LP: #146269
.
[ Kees Cook ]
* SECURITY UPDATE: side-channel attacks via BN_from_montgomery function.
* crypto/bn/bn_mont.c: upstream patch from openssl CVS thanks to Debian.
* References
CVE-2007-3108
Files:
0edc3573b1bf7cb3fcee66dfb5531030 815 utils optional openssl_0.9.8b-2ubuntu2.1.dsc
11e24acb96e5a9ab984a7f0f52eaccee 47085 utils optional openssl_0.9.8b-2ubuntu2.1.diff.gz
Package-Type: udeb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
iD8DBQFG/WnsH/9LqRcGPm0RAjKDAJ4nCaCRBkz6mHModEdddZ2u5BPK6gCgh42j
D7cxXI50SU1jyHPbxWp5xfQ=
=Iqxw
-----END PGP SIGNATURE-----
More information about the edgy-changes
mailing list