[ubuntu/trusty-security] openssl 1.0.1f-1ubuntu2.25 (Accepted)

Leonidas S. Barbosa leo.barbosa at canonical.com
Thu Apr 19 13:58:45 UTC 2018

openssl (1.0.1f-1ubuntu2.25) trusty-security; urgency=medium

  * SECURITY UPDATE: Cache timing side channel
    - debian/patches/CVE-2018-0737.patch: ensure BN_mod_inverse
      and BN_mod_exp_mont get called with BN_FLG_CONSTTIME flag set
      in crypto/rsa/rsa_gen.c.
    - CVE-2018-0737

Date: 2018-04-18 18:19:13.616796+00:00
Changed-By: leo.barbosa at canonical.com (Leonidas S. Barbosa)
-------------- next part --------------
Sorry, changesfile not available.

More information about the Trusty-changes mailing list