[ubuntu/natty] openssl 0.9.8o-5ubuntu1 (Accepted)

Artur Rona ari-tczew at ubuntu.com
Wed Feb 23 00:35:34 UTC 2011


openssl (0.9.8o-5ubuntu1) natty; urgency=low

  * Merge from debian unstable.  Remaining changes: (LP: #718205)
    - d/libssl0.9.8.postinst:
      + Display a system restart required notification bubble
        on libssl0.9.8 upgrade.
      + Use a different priority for libssl0.9.8/restart-services
        depending on whether a desktop, or server dist-upgrade
        is being performed.
    - d/{libssl0.9.8-udeb.dirs, control, rules}: Create
      libssl0.9.8-udeb, for the benefit of wget-udeb (no wget-udeb
      package in Debian).
    - d/{libcrypto0.9.8-udeb.dirs, libssl0.9.8.dirs, libssl0.9.8.files,
      rules}: Move runtime libraries to /lib, for the benefit of wpasupplicant.
    - d/{control, openssl-doc.docs, openssl.docs, openssl.dirs}:
      + Ship documentation in openssl-doc, suggested by the package.
       (Closes: #470594)
    - d/p/aesni.patch: Backport Intel AES-NI support from
      http://rt.openssl.org/Ticket/Display.html?id=2067 (refreshed)
    - d/p/Bsymbolic-functions.patch: Link using -Bsymbolic-functions.
    - d/p/perlpath-quilt.patch: Don't change perl #! paths under .pc.
    - d/p/no-sslv2.patch: Disable SSLv2 to match NSS and GnuTLS.
      The protocol is unsafe and extremely deprecated. (Closes: #589706)
    - d/rules:
      + Disable SSLv2 during compile. (Closes: #589706)
      + Don't run 'make test' when cross-building.
      + Use host compiler when cross-building. Patch from Neil Williams.
        (Closes: #465248)
      + Don't build for processors no longer supported: i486, i586
        (on i386), v8 (on sparc).
      + Fix Makefile to properly clean up libs/ dirs in clean target.
        (Closes: #611667)
      + Replace duplicate files in the doc directory with symlinks.
  * This upload fixed CVE: (LP: #718208)
    - CVE-2011-0014

openssl (0.9.8o-5) unstable; urgency=low

  * Fix OCSP stapling parse error (CVE-2011-0014)

Date: Sun, 13 Feb 2011 16:10:24 +0100
Changed-By: Artur Rona <ari-tczew at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Signed-By: Kees Cook <kees at ubuntu.com>
https://launchpad.net/ubuntu/natty/+source/openssl/0.9.8o-5ubuntu1
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sun, 13 Feb 2011 16:10:24 +0100
Source: openssl
Binary: openssl openssl-doc libssl0.9.8 libcrypto0.9.8-udeb libssl0.9.8-udeb libssl-dev libssl0.9.8-dbg
Architecture: source
Version: 0.9.8o-5ubuntu1
Distribution: natty
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Artur Rona <ari-tczew at ubuntu.com>
Description: 
 libcrypto0.9.8-udeb - crypto shared library - udeb (udeb)
 libssl-dev - SSL development libraries, header files and documentation
 libssl0.9.8 - SSL shared libraries
 libssl0.9.8-dbg - Symbol tables for libssl and libcrypto
 libssl0.9.8-udeb - ssl shared library - udeb (udeb)
 openssl    - Secure Socket Layer (SSL) binary and related cryptographic tools
 openssl-doc - Secure Socket Layer (SSL) documentation
Closes: 465248 470594 589706 611667
Launchpad-Bugs-Fixed: 718205 718208
Changes: 
 openssl (0.9.8o-5ubuntu1) natty; urgency=low
 .
   * Merge from debian unstable.  Remaining changes: (LP: #718205)
     - d/libssl0.9.8.postinst:
       + Display a system restart required notification bubble
         on libssl0.9.8 upgrade.
       + Use a different priority for libssl0.9.8/restart-services
         depending on whether a desktop, or server dist-upgrade
         is being performed.
     - d/{libssl0.9.8-udeb.dirs, control, rules}: Create
       libssl0.9.8-udeb, for the benefit of wget-udeb (no wget-udeb
       package in Debian).
     - d/{libcrypto0.9.8-udeb.dirs, libssl0.9.8.dirs, libssl0.9.8.files,
       rules}: Move runtime libraries to /lib, for the benefit of wpasupplicant.
     - d/{control, openssl-doc.docs, openssl.docs, openssl.dirs}:
       + Ship documentation in openssl-doc, suggested by the package.
        (Closes: #470594)
     - d/p/aesni.patch: Backport Intel AES-NI support from
       http://rt.openssl.org/Ticket/Display.html?id=2067 (refreshed)
     - d/p/Bsymbolic-functions.patch: Link using -Bsymbolic-functions.
     - d/p/perlpath-quilt.patch: Don't change perl #! paths under .pc.
     - d/p/no-sslv2.patch: Disable SSLv2 to match NSS and GnuTLS.
       The protocol is unsafe and extremely deprecated. (Closes: #589706)
     - d/rules:
       + Disable SSLv2 during compile. (Closes: #589706)
       + Don't run 'make test' when cross-building.
       + Use host compiler when cross-building. Patch from Neil Williams.
         (Closes: #465248)
       + Don't build for processors no longer supported: i486, i586
         (on i386), v8 (on sparc).
       + Fix Makefile to properly clean up libs/ dirs in clean target.
         (Closes: #611667)
       + Replace duplicate files in the doc directory with symlinks.
   * This upload fixed CVE: (LP: #718208)
     - CVE-2011-0014
 .
 openssl (0.9.8o-5) unstable; urgency=low
 .
   * Fix OCSP stapling parse error (CVE-2011-0014)
Checksums-Sha1: 
 54ea5864fcd348175231cb8a977d571ae0cd35e2 2143 openssl_0.9.8o-5ubuntu1.dsc
 b63e8953ae121df642bdf3dec7dc95d465775691 93015 openssl_0.9.8o-5ubuntu1.debian.tar.gz
Checksums-Sha256: 
 fc8a56f38451a73f435733c35e686327d6c2d043710387b9c3244e798dacfebf 2143 openssl_0.9.8o-5ubuntu1.dsc
 59159c018b7040efd3cbb37b3cb44fe0c849dec0ba0305cee11e57c2cd8deebd 93015 openssl_0.9.8o-5ubuntu1.debian.tar.gz
Files: 
 2dd02bba0cee21ab43d4f271a78f7b85 2143 utils optional openssl_0.9.8o-5ubuntu1.dsc
 823fb023cd0ead639bce04dbd8447ce2 93015 utils optional openssl_0.9.8o-5ubuntu1.debian.tar.gz
Original-Maintainer: Debian OpenSSL Team <pkg-openssl-devel at lists.alioth.debian.org>

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
Comment: Kees Cook <kees at outflux.net>
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=aT1k
-----END PGP SIGNATURE-----


More information about the Natty-changes mailing list