Accepted openssl 0.9.8c-3 (source)

Ubuntu Installer archive at ubuntu.com
Tue Nov 14 23:51:54 GMT 2006 

Accepted:
 OK: openssl_0.9.8c-3.diff.gz
 OK: openssl_0.9.8c.orig.tar.gz
 OK: openssl_0.9.8c-3.dsc
     -> Component: main Section: utils

Origin: Debian/unstable
Format: 1.7
Date: Tue,  14 Nov 2006 23:10:40 +0000
Source: openssl
Binary: libssl-dev, openssl, libssl0.9.8-dbg, libssl0.9.8, libcrypto0.9.8-udeb
Architecture: source
Version: 0.9.8c-3
Distribution: feisty
Urgency: high
Maintainer: Debian OpenSSL Team <pkg-openssl-devel at lists.alioth.debian.org>
Changed-By: Martin Pitt <martin.pitt at ubuntu.com>
Description: 
 openssl    - Secure Socket Layer (SSL) binary and related cryptographic tools
Closes: 215618 374364 378689 386365 386400 386513
Changes: 
 openssl (0.9.8c-3) unstable; urgency=low
 .
   * Fix patch for CVE-2006-2940, it left ctx unintiliased.
 .
 openssl (0.9.8c-2) unstable; urgency=high
 .
   * Fix security vulnerabilities (CVE-2006-2937, CVE-2006-2940,
     CVE-2006-3738, CVE-2006-4343).  Urgency set to high.
 .
 openssl (0.9.8c-1) unstable; urgency=low
 .
   * New upstream release
     - block padding bug with compression now fixed upstream, using
       their patch.
     - Includes the RSA Signature Forgery (CVE-2006-4339) patch.
     - New functions AES_bi_ige_encrypt and AES_ige_encrypt:
       bumping shlibs to require 0.9.8c-1.
   * Change the postinst script to check that ntp is installed instead
     of ntp-refclock and ntp-simple.  The binary is now in the ntp
     package.
   * Move the modified rand/md_rand.c file to the right place,
     really fixing #363516.
   * Add partimage-server conserver-server and tor to the list of service
     to check for restart.  Add workaround for openssh-server so it finds
     the init script.  (Closes: #386365, #386400, #386513)
   * Add manpage for c_rehash.
     Thanks to James Westby <jw+debian at jameswestby.net> (Closes: #215618)
   * Add Lithuanian debconf translation.
     Thanks to Gintautas Miliauskas <gintas at akl.lt>  (Closes: #374364)
   * Add m32r support.
     Thanks to Kazuhiro Inaoka <inaoka.kazuhiro at renesas.com>
     (Closes: #378689)
 .
 openssl (0.9.8b-3) unstable; urgency=high
 .
   * Fix RSA Signature Forgery (CVE-2006-4339) using patch provided
     by upstream.
   * Restart services using a smaller version that 0.9.8b-3, so
     they get the fixed version.
   * Change the postinst to check for postfix instead of postfix-tls.
Files: 
 b07e1d623745f24e8b4b330ef69ff77f 41920 utils optional openssl_0.9.8c-3.diff.gz
 78454bec556bcb4c45129428a766c886 3313857 utils optional openssl_0.9.8c.orig.tar.gz
 e5de2efd966e4ca8099a5b52c637d81a 797 utils optional openssl_0.9.8c-3.dsc

More information about the feisty-changes mailing list