[Bug 1331452] Re: Please backport current CVEs for Precise LTS openssl098
Louis Bouchard
louis.bouchard at canonical.com
Thu Jun 19 11:53:53 UTC 2014
@mdeslaur:
Not that I was aware of that, but after trying to import the patch, it
turns out that that fix_renegotiation patch is already present in the
upstream tarball. So I think that removing that mention out of the
changelog remains valid.
--
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to openssl in Ubuntu.
https://bugs.launchpad.net/bugs/1331452
Title:
Please backport current CVEs for Precise LTS openssl098
Status in “openssl” package in Ubuntu:
Invalid
Status in “openssl” source package in Precise:
In Progress
Bug description:
Please backport the CVS listed here to openssl098 :
http://people.canonical.com/~ubuntu-security/cve/pkg/openssl098.html
* CVE-2012-0884
* CVE-2012-2333
* CVE-2013-0166
* CVE-2013-0169
* CVE-2014-0195
* CVE-2014-0221
* CVE-2014-0224
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/openssl/+bug/1331452/+subscriptions
More information about the foundations-bugs
mailing list