[ubuntu/oracular-proposed] openssl 3.0.13-0ubuntu4 (Accepted)
David Fernandez Gonzalez
david.fernandezgonzalez at canonical.com
Wed May 22 15:18:17 UTC 2024
openssl (3.0.13-0ubuntu4) oracular; urgency=medium
* SECURITY UPDATE: Implicit rejection for RSA PKCS#1 (LP: #2054090)
- debian/patches/openssl-pkcs1-implicit-rejection.patch:
Return deterministic random output instead of an error in case
there is a padding error in crypto/cms/cms_env.c,
crypto/evp/ctrl_params_translate.c, crypto/pkcs7/pk7_doit.c,
crypto/rsa/rsa_ossl.c, crypto/rsa/rsa_pk1.c,
crypto/rsa/rsa_pmeth.c, doc/man1/openssl-pkeyutl.pod.in,
doc/man1/openssl-rsautl.pod.in, doc/man3/EVP_PKEY_CTX_ctrl.pod,
doc/man3/EVP_PKEY_decrypt.pod,
doc/man3/RSA_padding_add_PKCS1_type_1.pod,
doc/man3/RSA_public_encrypt.pod, doc/man7/provider-asym_cipher.pod,
include/crypto/rsa.h, include/openssl/core_names.h,
include/openssl/rsa.h,
providers/implementations/asymciphers/rsa_enc.c and
test/recipes/30-test_evp_data/evppkey_rsa_common.txt.
Date: Wed, 15 May 2024 09:54:00 +0200
Changed-By: David Fernandez Gonzalez <david.fernandezgonzalez at canonical.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Signed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/+source/openssl/3.0.13-0ubuntu4
-------------- next part --------------
Format: 1.8
Date: Wed, 15 May 2024 09:54:00 +0200
Source: openssl
Built-For-Profiles: noudeb
Architecture: source
Version: 3.0.13-0ubuntu4
Distribution: oracular
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: David Fernandez Gonzalez <david.fernandezgonzalez at canonical.com>
Launchpad-Bugs-Fixed: 2054090
Changes:
openssl (3.0.13-0ubuntu4) oracular; urgency=medium
.
* SECURITY UPDATE: Implicit rejection for RSA PKCS#1 (LP: #2054090)
- debian/patches/openssl-pkcs1-implicit-rejection.patch:
Return deterministic random output instead of an error in case
there is a padding error in crypto/cms/cms_env.c,
crypto/evp/ctrl_params_translate.c, crypto/pkcs7/pk7_doit.c,
crypto/rsa/rsa_ossl.c, crypto/rsa/rsa_pk1.c,
crypto/rsa/rsa_pmeth.c, doc/man1/openssl-pkeyutl.pod.in,
doc/man1/openssl-rsautl.pod.in, doc/man3/EVP_PKEY_CTX_ctrl.pod,
doc/man3/EVP_PKEY_decrypt.pod,
doc/man3/RSA_padding_add_PKCS1_type_1.pod,
doc/man3/RSA_public_encrypt.pod, doc/man7/provider-asym_cipher.pod,
include/crypto/rsa.h, include/openssl/core_names.h,
include/openssl/rsa.h,
providers/implementations/asymciphers/rsa_enc.c and
test/recipes/30-test_evp_data/evppkey_rsa_common.txt.
Checksums-Sha1:
6267e3a8c79828cb61dc8441caabc5b6cfac8c3d 2504 openssl_3.0.13-0ubuntu4.dsc
4352c3f8c810f588707787b9cb4c8d9815ea130f 154680 openssl_3.0.13-0ubuntu4.debian.tar.xz
e9c51a6551547c9d1b3963082bb6b6a99191669d 6320 openssl_3.0.13-0ubuntu4_source.buildinfo
Checksums-Sha256:
efc4474f43da543caa5fc2d19e87d2457f98407edddd84a66d2abd64d5ceb3b6 2504 openssl_3.0.13-0ubuntu4.dsc
ceb22d42a12a0142af8fdfbcd0a8a8bda5404591b853412a790a6032e4368e0d 154680 openssl_3.0.13-0ubuntu4.debian.tar.xz
ce26e471177160b731014043fc68e8cc84088b5132f58515be3a0aed8e4e3783 6320 openssl_3.0.13-0ubuntu4_source.buildinfo
Files:
29977b3c2be6fdc587d8147b9da8e961 2504 utils optional openssl_3.0.13-0ubuntu4.dsc
2e606efccfe9ae1e99a1b706c62b94d7 154680 utils optional openssl_3.0.13-0ubuntu4.debian.tar.xz
11f00ca803fd2e803683fd61efe91474 6320 utils optional openssl_3.0.13-0ubuntu4_source.buildinfo
Original-Maintainer: Debian OpenSSL Team <pkg-openssl-devel at alioth-lists.debian.net>
More information about the oracular-changes
mailing list