[ubuntu/eoan-proposed] wolfssl 4.1.0+dfsg-1ubuntu1 (Accepted)

[Unit 193]

wolfssl (4.1.0+dfsg-1ubuntu1) devel; urgency=medium

  * SECURITY UPDATE: wolfSSL 4.1.0 has a one-byte heap-based buffer over-read
    - d/p/CVE-2019-15651.patch: Cherry-pick upstream commits fixing the issue.
    - CVE-2019-15651

Date: Fri, 13 Sep 2019 19:00:12 -0400
Changed-By: Unit 193 <unit193 at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/wolfssl/4.1.0+dfsg-1ubuntu1
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA384

Format: 1.8
Date: Fri, 13 Sep 2019 19:00:12 -0400
Source: wolfssl
Binary: libwolfssl19 libwolfssl-dev
Architecture: source
Version: 4.1.0+dfsg-1ubuntu1
Distribution: devel
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Unit 193 <unit193 at ubuntu.com>
Description:
 libwolfssl-dev - Development files for the wolfSSL encryption library
 libwolfssl19 - wolfSSL encryption library
Changes:
 wolfssl (4.1.0+dfsg-1ubuntu1) devel; urgency=medium
 .
   * SECURITY UPDATE: wolfSSL 4.1.0 has a one-byte heap-based buffer over-read
     - d/p/CVE-2019-15651.patch: Cherry-pick upstream commits fixing the issue.
     - CVE-2019-15651
Checksums-Sha1:
 7d8625fbeeb81f9fdf7fd973f5aa26df12e7ba7b 2331 wolfssl_4.1.0+dfsg-1ubuntu1.dsc
 d22a7c05b8d9e4fb91c628bec172506dc30104fc 3372856 wolfssl_4.1.0+dfsg.orig.tar.xz
 ddc609a6d7b79b3d75b213fe60eb66c75cf1ba50 18836 wolfssl_4.1.0+dfsg-1ubuntu1.debian.tar.xz
 5e767404a9de2a1b00b52e635d8ecff49801829e 6488 wolfssl_4.1.0+dfsg-1ubuntu1_source.buildinfo
Checksums-Sha256:
 c2521b1ae7cda03ebf7e967a8d588c31309c00ab5d73b78081437c0717721d8d 2331 wolfssl_4.1.0+dfsg-1ubuntu1.dsc
 a24389413ec02df88c2dee3de4f4751a743f567da92e927f480959934621adc9 3372856 wolfssl_4.1.0+dfsg.orig.tar.xz
 1f0025b768250a61db0476333ff61044e954b697a8017a835be7eb2578bb12ad 18836 wolfssl_4.1.0+dfsg-1ubuntu1.debian.tar.xz
 3ce29512dcc5c4c46c2a1af70acfc8e75d3cd86a2385e0973d11630138542697 6488 wolfssl_4.1.0+dfsg-1ubuntu1_source.buildinfo
Files:
 419e12760d305496d0f618124fca1556 2331 libs optional wolfssl_4.1.0+dfsg-1ubuntu1.dsc
 2e169d525e1f5824433a5bff828ff3ad 3372856 libs optional wolfssl_4.1.0+dfsg.orig.tar.xz
 55c9c3056f439fae3d4b89ecbdeb370c 18836 libs optional wolfssl_4.1.0+dfsg-1ubuntu1.debian.tar.xz
 0a9df798c8cca5eee897615c7733f826 6488 libs optional wolfssl_4.1.0+dfsg-1ubuntu1_source.buildinfo
Checksums-Sha512:
 31b36df0ab88e41a29dfb7a6622660378d7f634d0529f95e94400686472b4573bd63db452d7ed802d5a06a189a18227f3c9c887f90b36bd3daf1e6cee1169742 2331 wolfssl_4.1.0+dfsg-1ubuntu1.dsc
 4a74b6df75754da1036b504573834580913b497fef0d52e09b20b2437d2984c1e560824591cda54ae93ecaecfcd833f4e54b38d8f3fb12c25bd98d22eabd8bb6 3372856 wolfssl_4.1.0+dfsg.orig.tar.xz
 8a437a529fcb687876704f869779298df6cb5623d8606a38d9b56f2f9baddaac74f8ec1c004bf1e911da21357212c4b22de0966d75ba36092c7e542885a63db7 18836 wolfssl_4.1.0+dfsg-1ubuntu1.debian.tar.xz
 50667930f68999f2fb4fb2b2e9ec979981e9d09c76720a3b51c9c400348472de89210535319cc90b9ae831a99d134932ce3179cd083cc51ddb5f53565a0bc938 6488 wolfssl_4.1.0+dfsg-1ubuntu1_source.buildinfo
Original-Maintainer: Felix Lechner <felix.lechner at lease-up.com>

-----BEGIN PGP SIGNATURE-----
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=Vlv0
-----END PGP SIGNATURE-----