[ubuntu/lucid-security] openssl_0.9.8k-7ubuntu8.5_amd64_translations.tar.gz, openssl_0.9.8k-7ubuntu8.5_i386_translations.tar.gz, openssl, openssl_0.9.8k-7ubuntu8.5_powerpc_translations.tar.gz, openssl_0.9.8k-7ubuntu8.5_ia64_translations.tar.gz, openssl_0.9.8k-7ubuntu8.5_armel_translations.tar.gz, openssl_0.9.8k-7ubuntu8.5_sparc_translations.tar.gz (delayed) 0.9.8k-7ubuntu8.5 (Accepted)

Ubuntu Installer archive at ubuntu.com
Wed Dec 8 00:04:04 GMT 2010


openssl (0.9.8k-7ubuntu8.5) lucid-security; urgency=low

  * SECURITY UPDATE: ciphersuite downgrade vulnerability
    - openssl-CVE-2010-4180-secadv_20101202-0.9.8.patch:
      disable workaround for Netscape cipher suite bug in ssl/s3_clnt.c
      and ssl/s3_srvr.c
    - CVE-2010-4180

Date: Fri, 03 Dec 2010 11:31:43 -0800
Changed-By: Steve Beattie <sbeattie at ubuntu.com>
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/lucid/+source/openssl/0.9.8k-7ubuntu8.5
-------------- next part --------------
Format: 1.8
Date: Fri, 03 Dec 2010 11:31:43 -0800
Source: openssl
Binary: openssl openssl-doc libssl0.9.8 libcrypto0.9.8-udeb libssl0.9.8-udeb libssl-dev libssl0.9.8-dbg
Architecture: source
Version: 0.9.8k-7ubuntu8.5
Distribution: lucid-security
Urgency: low
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Steve Beattie <sbeattie at ubuntu.com>
Description: 
 libcrypto0.9.8-udeb - crypto shared library - udeb (udeb)
 libssl-dev - SSL development libraries, header files and documentation
 libssl0.9.8 - SSL shared libraries
 libssl0.9.8-dbg - Symbol tables for libssl and libcrypto
 libssl0.9.8-udeb - ssl shared library - udeb (udeb)
 openssl    - Secure Socket Layer (SSL) binary and related cryptographic tools
 openssl-doc - Secure Socket Layer (SSL) documentation
Changes: 
 openssl (0.9.8k-7ubuntu8.5) lucid-security; urgency=low
 .
   * SECURITY UPDATE: ciphersuite downgrade vulnerability
     - openssl-CVE-2010-4180-secadv_20101202-0.9.8.patch:
       disable workaround for Netscape cipher suite bug in ssl/s3_clnt.c
       and ssl/s3_srvr.c
     - CVE-2010-4180
Checksums-Sha1: 
 a18eab471a773efc58bd7cb52a32b0a4f13732c4 2102 openssl_0.9.8k-7ubuntu8.5.dsc
 01a65685c47a8466cea6949ac712a943f2a214fe 112331 openssl_0.9.8k-7ubuntu8.5.diff.gz
Checksums-Sha256: 
 8f2a8e29d485bb5eaa47c0c116f65e980265668fc72ff72b5bad9f78cca584a7 2102 openssl_0.9.8k-7ubuntu8.5.dsc
 1ad1b3e34c434092d5c5ca0a7ad552b38633e3e62d1198b8b9fdcf9e884e35b2 112331 openssl_0.9.8k-7ubuntu8.5.diff.gz
Files: 
 de69229286f2c7eb52183e2ededb0a48 2102 utils optional openssl_0.9.8k-7ubuntu8.5.dsc
 02b0f3bdc024b25dc2cb168628a42dac 112331 utils optional openssl_0.9.8k-7ubuntu8.5.diff.gz
Original-Maintainer: Debian OpenSSL Team <pkg-openssl-devel at lists.alioth.debian.org>


More information about the Lucid-changes mailing list