[ubuntu/lucid-security] openssl_0.9.8k-7ubuntu8.11_ia64_translations.tar.gz, openssl_0.9.8k-7ubuntu8.11_i386_translations.tar.gz, openssl_0.9.8k-7ubuntu8.11_powerpc_translations.tar.gz, openssl_0.9.8k-7ubuntu8.11_amd64_translations.tar.gz, openssl, openssl_0.9.8k-7ubuntu8.11_armel_translations.tar.gz, openssl_0.9.8k-7ubuntu8.11_sparc_translations.tar.gz 0.9.8k-7ubuntu8.11 (Accepted)
Jamie Strandboge
jamie at ubuntu.com
Tue Apr 24 18:34:39 UTC 2012
openssl (0.9.8k-7ubuntu8.11) lucid-security; urgency=low
* SECURITY UPDATE: incomplete fix for CVE-2012-2110
- debian/patches/CVE-2012-2131.patch: also verify 'len' in BUF_MEM_grow
and BUF_MEM_grow_clean is non-negative
- CVE-2012-2131
* debian/patches/CVE-2012-2110b.patch: Use correct error code in
BUF_MEM_grow_clean()
Date: Tue, 24 Apr 2012 08:32:06 -0500
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/lucid/+source/openssl/0.9.8k-7ubuntu8.11
-------------- next part --------------
Format: 1.8
Date: Tue, 24 Apr 2012 08:32:06 -0500
Source: openssl
Binary: openssl openssl-doc libssl0.9.8 libcrypto0.9.8-udeb libssl0.9.8-udeb libssl-dev libssl0.9.8-dbg
Architecture: source
Version: 0.9.8k-7ubuntu8.11
Distribution: lucid-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Description:
libcrypto0.9.8-udeb - crypto shared library - udeb (udeb)
libssl-dev - SSL development libraries, header files and documentation
libssl0.9.8 - SSL shared libraries
libssl0.9.8-dbg - Symbol tables for libssl and libcrypto
libssl0.9.8-udeb - ssl shared library - udeb (udeb)
openssl - Secure Socket Layer (SSL) binary and related cryptographic tools
openssl-doc - Secure Socket Layer (SSL) documentation
Changes:
openssl (0.9.8k-7ubuntu8.11) lucid-security; urgency=low
.
* SECURITY UPDATE: incomplete fix for CVE-2012-2110
- debian/patches/CVE-2012-2131.patch: also verify 'len' in BUF_MEM_grow
and BUF_MEM_grow_clean is non-negative
- CVE-2012-2131
* debian/patches/CVE-2012-2110b.patch: Use correct error code in
BUF_MEM_grow_clean()
Checksums-Sha1:
116792ad5974140c9dfd301953e1c138f21c5e70 2101 openssl_0.9.8k-7ubuntu8.11.dsc
adb54ee665576d462aef0419ff502e6102c06679 125671 openssl_0.9.8k-7ubuntu8.11.diff.gz
Checksums-Sha256:
f7e51c84c33ef53d20678ae7e1dd834abf1173e1b3dc1c58017c55053af5ab8c 2101 openssl_0.9.8k-7ubuntu8.11.dsc
8873b0039a3bbbb047035360b9af4381dfba381f464a95eaa9324fae15d73b92 125671 openssl_0.9.8k-7ubuntu8.11.diff.gz
Files:
d239d693a3b5c5ad5d3065da555e7238 2101 utils optional openssl_0.9.8k-7ubuntu8.11.dsc
a82db0d39dbc976909fb3601dd613e31 125671 utils optional openssl_0.9.8k-7ubuntu8.11.diff.gz
Original-Maintainer: Debian OpenSSL Team <pkg-openssl-devel at lists.alioth.debian.org>
More information about the Lucid-changes
mailing list