[Bug 1978093] Re: openssl: FTBFS due to expired certificates

Launchpad Bug Tracker 1978093 at bugs.launchpad.net
Tue Jun 21 14:32:33 UTC 2022 

This bug was fixed in the package openssl - 1.1.1-1ubuntu2.1~18.04.19

---------------
openssl (1.1.1-1ubuntu2.1~18.04.19) bionic-security; urgency=medium

  [ Simon Chopin ]
  * d/p/lp1978093/*: renew some expiring test certificates (LP: #1978093)

  [ Marc Deslauriers ]
  * SECURITY UPDATE: c_rehash script allows command injection
    - debian/patches/CVE-2022-1292.patch: switch to upstream patch, and
      apply it before c_rehash-compat.patch.
    - debian/patches/CVE-2022-2068.patch: fix file operations in
      tools/c_rehash.in.
    - debian/patches/c_rehash-compat.patch: updated patch to apply after
      the security updates.
    - CVE-2022-2068

 -- Simon Chopin <schopin at ubuntu.com>  Tue, 14 Jun 2022 13:37:45 +0200

** Changed in: openssl (Ubuntu Focal)
       Status: Fix Committed => Fix Released

-- 
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to openssl in Ubuntu.
https://bugs.launchpad.net/bugs/1978093

Title:
  openssl: FTBFS due to expired certificates

Status in openssl package in Ubuntu:
  Fix Released
Status in openssl source package in Bionic:
  Fix Released
Status in openssl source package in Focal:
  Fix Released
Status in openssl source package in Impish:
  Fix Released
Status in openssl source package in Jammy:
  Fix Released
Status in openssl source package in Kinetic:
  Fix Released

Bug description:
  [Impact]

  Some certificates in the openssl package expired on 2022-06-01, making
  the test suite fail. This needs to be fixed to facilitate future
  security updates.

  [Test Plan]

  Build the package. It currently fails with the following test summary:

  80-test_ssl_new.t                (Wstat: 256 Tests: 30 Failed: 1)
    Failed test:  12
    Non-zero exit status: 1

  [Where problems could occur]

  I supposed this could break the build even worse.

  [Other Info]
   
  This currently prevents 3.0.2-0ubuntu1.3 in Jammy from publication.

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/openssl/+bug/1978093/+subscriptions

More information about the foundations-bugs mailing list