[ubuntu/xenial-updates] openssl 1.0.2g-1ubuntu4.12 (Accepted)
Ubuntu Archive Robot
cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk
Thu Apr 19 15:28:16 UTC 2018
openssl (1.0.2g-1ubuntu4.12) xenial-security; urgency=medium
* SECURITY UPDATE: Cache timing side channel
- debian/patches/CVE-2018-0737.patch: ensure BN_mod_inverse
and BN_mod_exp_mont get called with BN_FLG_CONSTTIME flag set
in crypto/rsa/rsa_gen.c.
- CVE-2018-0737
Date: 2018-04-18 19:20:14.934003+00:00
Changed-By: leo.barbosa at canonical.com (Leonidas S. Barbosa)
Signed-By: Ubuntu Archive Robot <cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk>
https://launchpad.net/ubuntu/+source/openssl/1.0.2g-1ubuntu4.12
-------------- next part --------------
Sorry, changesfile not available.
More information about the Xenial-changes
mailing list