[Bug 1332643] Re: pg_dump: Error message from server: SSL error: ccs received early

Launchpad Bug Tracker 1332643 at bugs.launchpad.net
Mon Jun 23 11:43:20 UTC 2014 

This bug was fixed in the package openssl - 1.0.1f-1ubuntu2.4

---------------
openssl (1.0.1f-1ubuntu2.4) trusty-security; urgency=medium

  * SECURITY UPDATE: regression with certain renegotiations (LP: #1332643)
    - debian/patches/CVE-2014-0224-regression2.patch: accept CCS after
      sending finished ssl/s3_clnt.c.
 -- Marc Deslauriers <marc.deslauriers at ubuntu.com>   Fri, 20 Jun 2014 13:55:11 -0400

** Changed in: openssl (Ubuntu Saucy)
       Status: Confirmed => Fix Released

-- 
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to openssl in Ubuntu.
https://bugs.launchpad.net/bugs/1332643

Title:
  pg_dump: Error message from server: SSL error: ccs received early

Status in OpenSSL cryptography and SSL/TLS toolkit:
  Fix Released
Status in “openssl” package in Ubuntu:
  Confirmed
Status in “openssl” source package in Lucid:
  Fix Released
Status in “openssl” source package in Precise:
  Fix Released
Status in “openssl” source package in Saucy:
  Fix Released
Status in “openssl” source package in Trusty:
  Fix Released
Status in “openssl” source package in Utopic:
  Confirmed
Status in “openssl” package in Debian:
  Fix Released

Bug description:
  See Debian bug #751093

  Extra commit is needed on top of openssl_1.0.1f-1ubuntu2.3:
  https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=9beb75d3c4ce9a93ba07951e8595c09f07496ba8

  Reproduction instructions
  1. Take a large postgres DB (~200GiB here),                                                                                                                                                                                                                                                                                
  2. require hostssl in pg_hba to connect.                                                                                                                                                                                                                                                                                   
  3. pg_dump over that hostssl connection.                                                                                                                                                                                                                                                                                   
  4. fail out somewhere between 74MiB and 190GiB with:
      pg_dump: Error message from server: SSL error: ccs received early

  ProblemType: Bug
  DistroRelease: Ubuntu 14.04
  Package: openssl 1.0.1f-1ubuntu2.3
  ProcVersionSignature: Ubuntu 3.13.0-27.50-generic 3.13.11
  Uname: Linux 3.13.0-27-generic x86_64
  ApportVersion: 2.14.1-0ubuntu3.2
  Architecture: amd64
  Date: Fri Jun 20 17:27:02 2014
  InstallationDate: Installed on 2014-03-21 (91 days ago)
  InstallationMedia: Ubuntu-Server 13.10 "Saucy Salamander" - Release amd64 (20131016)
  ProcEnviron:
   TERM=rxvt-unicode
   PATH=(custom, no user)
   XDG_RUNTIME_DIR=<set>
   LANG=en_US.UTF-8
   SHELL=/bin/bash
  SourcePackage: openssl
  UpgradeStatus: Upgraded to trusty on 2014-04-03 (78 days ago)

To manage notifications about this bug go to:
https://bugs.launchpad.net/openssl/+bug/1332643/+subscriptions

More information about the foundations-bugs mailing list