[ubuntu/precise] openssl 1.0.0g-1ubuntu1 (Accepted)

Marc Deslauriers marc.deslauriers at ubuntu.com
Mon Feb 13 14:25:20 UTC 2012 

openssl (1.0.0g-1ubuntu1) precise; urgency=low

  * Resynchronise with Debian. Remaining changes:
    - debian/libssl1.0.0.postinst:
      + Display a system restart required notification on libssl1.0.0
        upgrade on servers.
      + Use a different priority for libssl1.0.0/restart-services depending
        on whether a desktop, or server dist-upgrade is being performed.
    - debian/{libssl1.0.0-udeb.dirs, control, rules}: Create
      libssl1.0.0-udeb, for the benefit of wget-udeb (no wget-udeb package
      in Debian).
    - debian/{libcrypto1.0.0-udeb.dirs, libssl1.0.0.dirs, libssl1.0.0.files,
      rules}: Move runtime libraries to /lib, for the benefit of
      wpasupplicant.
    - debian/patches/aesni.patch: Backport Intel AES-NI support, now from
      http://rt.openssl.org/Ticket/Display.html?id=2065 rather than the
      0.9.8 variant.
    - debian/patches/Bsymbolic-functions.patch: Link using
      -Bsymbolic-functions.
    - debian/patches/perlpath-quilt.patch: Don't change perl #! paths under
      .pc.
    - debian/rules:
      + Don't run 'make test' when cross-building.
      + Use host compiler when cross-building.  Patch from Neil Williams.
      + Don't build for processors no longer supported: i586 (on i386)
      + Fix Makefile to properly clean up libs/ dirs in clean target.
      + Replace duplicate files in the doc directory with symlinks.
    - Unapply patch c_rehash-multi and comment it out in the series as it
      breaks parsing of certificates with CRLF line endings and other cases
      (see Debian #642314 for discussion), it also changes the semantics of
      c_rehash directories by requiring applications to parse hash link
      targets as files containing potentially *multiple* certificates
      rather than exactly one.

openssl (1.0.0g-1) unstable; urgency=high

  * New upstream version
    - Fixes CVE-2012-0050

openssl (1.0.0f-1) unstable; urgency=high

  * New upstream version
    - Fixes CVE-2011-4108, CVE-2011-4576, CVE-2011-4619, CVE-2012-0027,
      CVE-2011-4577

Date: Sat, 11 Feb 2012 13:27:31 -0500
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/precise/+source/openssl/1.0.0g-1ubuntu1
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sat, 11 Feb 2012 13:27:31 -0500
Source: openssl
Binary: openssl libssl1.0.0 libcrypto1.0.0-udeb libssl1.0.0-udeb libssl-dev libssl-doc libssl1.0.0-dbg
Architecture: source
Version: 1.0.0g-1ubuntu1
Distribution: precise
Urgency: high
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description: 
 libcrypto1.0.0-udeb - crypto shared library - udeb (udeb)
 libssl-dev - SSL development libraries, header files and documentation
 libssl-doc - SSL development documentation documentation
 libssl1.0.0 - SSL shared libraries
 libssl1.0.0-dbg - Symbol tables for libssl and libcrypto
 libssl1.0.0-udeb - ssl shared library - udeb (udeb)
 openssl    - Secure Socket Layer (SSL) binary and related cryptographic tools
Changes: 
 openssl (1.0.0g-1ubuntu1) precise; urgency=low
 .
   * Resynchronise with Debian. Remaining changes:
     - debian/libssl1.0.0.postinst:
       + Display a system restart required notification on libssl1.0.0
         upgrade on servers.
       + Use a different priority for libssl1.0.0/restart-services depending
         on whether a desktop, or server dist-upgrade is being performed.
     - debian/{libssl1.0.0-udeb.dirs, control, rules}: Create
       libssl1.0.0-udeb, for the benefit of wget-udeb (no wget-udeb package
       in Debian).
     - debian/{libcrypto1.0.0-udeb.dirs, libssl1.0.0.dirs, libssl1.0.0.files,
       rules}: Move runtime libraries to /lib, for the benefit of
       wpasupplicant.
     - debian/patches/aesni.patch: Backport Intel AES-NI support, now from
       http://rt.openssl.org/Ticket/Display.html?id=2065 rather than the
       0.9.8 variant.
     - debian/patches/Bsymbolic-functions.patch: Link using
       -Bsymbolic-functions.
     - debian/patches/perlpath-quilt.patch: Don't change perl #! paths under
       .pc.
     - debian/rules:
       + Don't run 'make test' when cross-building.
       + Use host compiler when cross-building.  Patch from Neil Williams.
       + Don't build for processors no longer supported: i586 (on i386)
       + Fix Makefile to properly clean up libs/ dirs in clean target.
       + Replace duplicate files in the doc directory with symlinks.
     - Unapply patch c_rehash-multi and comment it out in the series as it
       breaks parsing of certificates with CRLF line endings and other cases
       (see Debian #642314 for discussion), it also changes the semantics of
       c_rehash directories by requiring applications to parse hash link
       targets as files containing potentially *multiple* certificates
       rather than exactly one.
 .
 openssl (1.0.0g-1) unstable; urgency=high
 .
   * New upstream version
     - Fixes CVE-2012-0050
 .
 openssl (1.0.0f-1) unstable; urgency=high
 .
   * New upstream version
     - Fixes CVE-2011-4108, CVE-2011-4576, CVE-2011-4619, CVE-2012-0027,
       CVE-2011-4577
Checksums-Sha1: 
 c1f6f9e630bb455067053a30ba3e118b0d2c9b8a 2355 openssl_1.0.0g-1ubuntu1.dsc
 2b517baada2338663c27314cb922f9755e73e07f 4046513 openssl_1.0.0g.orig.tar.gz
 296d781a4579545a52d2ae3d337bdcac15ed0622 110960 openssl_1.0.0g-1ubuntu1.debian.tar.gz
Checksums-Sha256: 
 25e8c30838a0f199cec675b100e409c3d597599128260fb3fc6dfbdeaa1acc51 2355 openssl_1.0.0g-1ubuntu1.dsc
 905106a1505e7d9f7c36ee81408d3aa3d41aac291a9603d0c290c9530c92fc2c 4046513 openssl_1.0.0g.orig.tar.gz
 059b98fdd6ee4a3e0f2739bb2d14f3cf4e9e02fecd3d7f3f67ed23af8c8919a5 110960 openssl_1.0.0g-1ubuntu1.debian.tar.gz
Files: 
 fe1cd32ea192e04b5ced1070694b6854 2355 utils optional openssl_1.0.0g-1ubuntu1.dsc
 07ecbe4324f140d157478637d6beccf1 4046513 utils optional openssl_1.0.0g.orig.tar.gz
 edd08c9497e01c3cafefdb3d0f18b516 110960 utils optional openssl_1.0.0g-1ubuntu1.debian.tar.gz
Original-Maintainer: Debian OpenSSL Team <pkg-openssl-devel at lists.alioth.debian.org>

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
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=NspY
-----END PGP SIGNATURE-----

More information about the Precise-changes mailing list