[ubuntu/oracular-proposed] openssl 3.2.2-1ubuntu1 (Accepted)

Adrien Nader adrien.nader at canonical.com
Mon Jul 8 10:09:13 UTC 2024 

openssl (3.2.2-1ubuntu1) oracular; urgency=medium

  * Merge 3.2.2-1 from Debian unstable
    - Remaining changes:
      + Symlink changelog.Debian.gz and copyright.gz from libssl-dev and
        openssl to the ones in libssl3t64
      + Use perl:native in the autopkgtest for installability on i386.
      + Disable LTO with which the codebase is generally incompatible
        (LP: #2058017)
      + Add fips-mode detection and adjust defaults when running in fips mode
  * The changelog.gz symlink was broken (LP: #1297025)
  * The copyright symlink was broken (LP: #2067672)
  * Default configuration includes two paths:
    - /var/lib/crypto-config/profiles/current/openssl.conf.d
    - /etc/ssl/openssl.conf.d
    First one is to read configuration through the crypto-config framework.
    Second one is for customization by sysadmin.

openssl (3.2.2-1) unstable; urgency=medium

  * Import 3.2.2
    - CVE-2024-2511 (Unbounded memory growth with session handling in
      TLSv1.3). (Closes: #1068658).
    - CVE-2024-4603 (Excessive time spent checking DSA keys and parameters)
      (Closes: #1071972).
    - CVE-2024-4741 (Use After Free with SSL_free_buffers)
      (Closes: #1072113).

Date: Mon, 01 Jul 2024 17:04:32 +0200
Changed-By: Adrien Nader <adrien.nader at canonical.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Signed-By: Simon Chopin <simon.chopin at canonical.com>
https://launchpad.net/ubuntu/+source/openssl/3.2.2-1ubuntu1
-------------- next part --------------
Format: 1.8
Date: Mon, 01 Jul 2024 17:04:32 +0200
Source: openssl
Built-For-Profiles: noudeb
Architecture: source
Version: 3.2.2-1ubuntu1
Distribution: oracular
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Adrien Nader <adrien.nader at canonical.com>
Closes: 1068658 1071972 1072113
Launchpad-Bugs-Fixed: 1297025 2058017 2067672
Changes:
 openssl (3.2.2-1ubuntu1) oracular; urgency=medium
 .
   * Merge 3.2.2-1 from Debian unstable
     - Remaining changes:
       + Symlink changelog.Debian.gz and copyright.gz from libssl-dev and
         openssl to the ones in libssl3t64
       + Use perl:native in the autopkgtest for installability on i386.
       + Disable LTO with which the codebase is generally incompatible
         (LP: #2058017)
       + Add fips-mode detection and adjust defaults when running in fips mode
   * The changelog.gz symlink was broken (LP: #1297025)
   * The copyright symlink was broken (LP: #2067672)
   * Default configuration includes two paths:
     - /var/lib/crypto-config/profiles/current/openssl.conf.d
     - /etc/ssl/openssl.conf.d
     First one is to read configuration through the crypto-config framework.
     Second one is for customization by sysadmin.
 .
 openssl (3.2.2-1) unstable; urgency=medium
 .
   * Import 3.2.2
     - CVE-2024-2511 (Unbounded memory growth with session handling in
       TLSv1.3). (Closes: #1068658).
     - CVE-2024-4603 (Excessive time spent checking DSA keys and parameters)
       (Closes: #1071972).
     - CVE-2024-4741 (Use After Free with SSL_free_buffers)
       (Closes: #1072113).
Checksums-Sha1:
 0e69dd8496f97e0237f98acc3c134a2e01fbc1a7 2589 openssl_3.2.2-1ubuntu1.dsc
 b12311372a0277ca0eb218a68a7fd9f5ce66d162 17744472 openssl_3.2.2.orig.tar.gz
 b106e3f747d4a30c01b60d72b8602be8579c460e 833 openssl_3.2.2.orig.tar.gz.asc
 0ad2ca93fdaaba9b495159dc28102859e3ad032e 81128 openssl_3.2.2-1ubuntu1.debian.tar.xz
 a7ad4307b80d770fd994aac70120e07388c4007a 8673 openssl_3.2.2-1ubuntu1_source.buildinfo
Checksums-Sha256:
 9c95f2affff792a990590724c0339330960c3f833cce422a705e956397bb132c 2589 openssl_3.2.2-1ubuntu1.dsc
 197149c18d9e9f292c43f0400acaba12e5f52cacfe050f3d199277ea738ec2e7 17744472 openssl_3.2.2.orig.tar.gz
 e236f8871cb18de290430e257dadd06732e7a4f8d8c6f8ffa6abb4686050ac51 833 openssl_3.2.2.orig.tar.gz.asc
 0928f032b45f7776e83a53c1a79fd64d203c023dfa1fc148d8879d24a990b585 81128 openssl_3.2.2-1ubuntu1.debian.tar.xz
 403fa620f57554be3474473f7933b3f108a018d1a696741fef582bb0575fe904 8673 openssl_3.2.2-1ubuntu1_source.buildinfo
Files:
 e94e68b1cf21bde8bb6914612285b3d2 2589 utils optional openssl_3.2.2-1ubuntu1.dsc
 68848a5aa5a4b4ef5c5374368b3ade6b 17744472 utils optional openssl_3.2.2.orig.tar.gz
 0c5139da0d7a3a9e1763d1d35e8a4669 833 utils optional openssl_3.2.2.orig.tar.gz.asc
 bcd07e9ee8096333db8cd86ea742fd28 81128 utils optional openssl_3.2.2-1ubuntu1.debian.tar.xz
 804e8804d35a4734e300b0fee78d8f3a 8673 utils optional openssl_3.2.2-1ubuntu1_source.buildinfo
Original-Maintainer: Debian OpenSSL Team <pkg-openssl-devel at alioth-lists.debian.net>
Vcs-Git: https://git.launchpad.net/~schopin/ubuntu/+source/openssl
Vcs-Git-Commit: 614d11b5a435d0527fa810cf9bc77f0afd06f20f
Vcs-Git-Ref: refs/heads/merge-3.2.2-1

More information about the oracular-changes mailing list