[ubuntu/hardy-security] openssl_0.9.8g-4ubuntu3.13_sparc_translations.tar.gz (delayed), openssl_0.9.8g-4ubuntu3.13_i386_translations.tar.gz, openssl, openssl_0.9.8g-4ubuntu3.13_powerpc_translations.tar.gz, openssl_0.9.8g-4ubuntu3.13_hppa_translations.tar.gz, openssl_0.9.8g-4ubuntu3.13_lpia_translations.tar.gz, openssl_0.9.8g-4ubuntu3.13_amd64_translations.tar.gz, openssl_0.9.8g-4ubuntu3.13_ia64_translations.tar.gz 0.9.8g-4ubuntu3.13 (Accepted)

Ubuntu Installer archive at ubuntu.com
Wed Dec 8 00:04:42 GMT 2010


openssl (0.9.8g-4ubuntu3.13) hardy-security; urgency=low

  * SECURITY UPDATE: ciphersuite downgrade vulnerability
    - ssl/s3_clnt.c, ssl/s3_srvr.c: disable workaround for Netscape
      cipher suite bug
    - http://openssl.org/news/secadv_20101202.txt
    - CVE-2010-4180

Date: Fri, 03 Dec 2010 12:44:09 -0800
Changed-By: Steve Beattie <sbeattie at ubuntu.com>
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/hardy/+source/openssl/0.9.8g-4ubuntu3.13
-------------- next part --------------
Format: 1.7
Date: Fri, 03 Dec 2010 12:44:09 -0800
Source: openssl
Binary: openssl openssl-doc libssl0.9.8 libcrypto0.9.8-udeb libssl-dev libssl0.9.8-dbg
Architecture: source
Version: 0.9.8g-4ubuntu3.13
Distribution: hardy-security
Urgency: low
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Steve Beattie <sbeattie at ubuntu.com>
Description: 
 libcrypto0.9.8-udeb - crypto shared library - udeb
 libssl-dev - SSL development libraries, header files and documentation
 libssl0.9.8 - SSL shared libraries
 libssl0.9.8-dbg - Symbol tables for libssl and libcrypto
 openssl    - Secure Socket Layer (SSL) binary and related cryptographic tools
 openssl-doc - Secure Socket Layer (SSL) documentation
Changes: 
 openssl (0.9.8g-4ubuntu3.13) hardy-security; urgency=low
 .
   * SECURITY UPDATE: ciphersuite downgrade vulnerability
     - ssl/s3_clnt.c, ssl/s3_srvr.c: disable workaround for Netscape
       cipher suite bug
     - http://openssl.org/news/secadv_20101202.txt
     - CVE-2010-4180
Files: 
 40d181ca10759fb3d78a24d3b61d6055 1563 utils optional openssl_0.9.8g-4ubuntu3.13.dsc
 2e4386a45d0f3a7e3bbf13f1cd4f62fb 73984 utils optional openssl_0.9.8g-4ubuntu3.13.diff.gz
Original-Maintainer: Debian OpenSSL Team <pkg-openssl-devel at lists.alioth.debian.org>


More information about the Hardy-changes mailing list