[ubuntu/hardy-security] openssl_0.9.8g-4ubuntu3.18_i386_translations.tar.gz, openssl_0.9.8g-4ubuntu3.18_amd64_translations.tar.gz, openssl_0.9.8g-4ubuntu3.18_sparc_translations.tar.gz, openssl_0.9.8g-4ubuntu3.18_lpia_translations.tar.gz, openssl_0.9.8g-4ubuntu3.18_hppa_translations.tar.gz, openssl, openssl_0.9.8g-4ubuntu3.18_powerpc_translations.tar.gz, openssl_0.9.8g-4ubuntu3.18_ia64_translations.tar.gz 0.9.8g-4ubuntu3.18 (Accepted)
Jamie Strandboge
jamie at ubuntu.com
Tue Apr 24 18:35:37 UTC 2012
openssl (0.9.8g-4ubuntu3.18) hardy-security; urgency=low
* SECURITY UPDATE: incomplete fix for CVE-2012-2110
- crypto/buffer/buffer.c: also verify 'len' in BUF_MEM_grow and
BUF_MEM_grow_clean is non-negative
- http://cvs.openssl.org/chngview?cn=22479
- CVE-2012-2131
* crypto/buffer/buffer.c: Use correct error code in BUF_MEM_grow_clean()
- http://cvs.openssl.org/chngview?cn=22476
Date: Tue, 24 Apr 2012 08:33:44 -0500
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/hardy/+source/openssl/0.9.8g-4ubuntu3.18
-------------- next part --------------
Format: 1.7
Date: Tue, 24 Apr 2012 08:33:44 -0500
Source: openssl
Binary: openssl openssl-doc libssl0.9.8 libcrypto0.9.8-udeb libssl-dev libssl0.9.8-dbg
Architecture: source
Version: 0.9.8g-4ubuntu3.18
Distribution: hardy-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Description:
libcrypto0.9.8-udeb - crypto shared library - udeb
libssl-dev - SSL development libraries, header files and documentation
libssl0.9.8 - SSL shared libraries
libssl0.9.8-dbg - Symbol tables for libssl and libcrypto
openssl - Secure Socket Layer (SSL) binary and related cryptographic tools
openssl-doc - Secure Socket Layer (SSL) documentation
Changes:
openssl (0.9.8g-4ubuntu3.18) hardy-security; urgency=low
.
* SECURITY UPDATE: incomplete fix for CVE-2012-2110
- crypto/buffer/buffer.c: also verify 'len' in BUF_MEM_grow and
BUF_MEM_grow_clean is non-negative
- http://cvs.openssl.org/chngview?cn=22479
- CVE-2012-2131
* crypto/buffer/buffer.c: Use correct error code in BUF_MEM_grow_clean()
- http://cvs.openssl.org/chngview?cn=22476
Files:
0ec43d409199a1c2514259e1aa6c26f8 1558 utils optional openssl_0.9.8g-4ubuntu3.18.dsc
b00b3d88fd94cd1799a70d3a24b056d7 86686 utils optional openssl_0.9.8g-4ubuntu3.18.diff.gz
Original-Maintainer: Debian OpenSSL Team <pkg-openssl-devel at lists.alioth.debian.org>
More information about the Hardy-changes
mailing list