[Bug 1066032] Re: Deadlock when reading a public key
Adam Koczur
1066032 at bugs.launchpad.net
Tue Mar 5 16:15:11 UTC 2013
This is a real shame and embarrassment that this bug is still not fixed
in the LTS even with the upstream patch being available for so long.
Importance should be high as opposed to undecided. This bug was
affecting my reverse proxy - Apache would fail every few hours which in
a production environment is absurd. To produce fixed packages it took me
half an hour, apparently Canonical need half a year.
--
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to openssl in Ubuntu.
https://bugs.launchpad.net/bugs/1066032
Title:
Deadlock when reading a public key
Status in OpenSSL cryptography and SSL/TLS toolkit:
Fix Released
Status in “openssl” package in Ubuntu:
Confirmed
Status in “openssl” source package in Precise:
Confirmed
Status in “openssl” source package in Quantal:
Confirmed
Bug description:
We're experiencing deadlocks in Ubuntu 12.04 at our customers. After
some investigation, a known bug in OpenSSL 1.0.1c (and other versions)
is causing this. The bug itself was known since one day after this
release (11th of May this year).
OpenSSL bug report:
http://rt.openssl.org/Ticket/Display.html?id=2813&user=guest&pass=guest
Commit that fixes the issue in OpenSSL 1.0.1:
http://cvs.openssl.org/chngview?cn=22570
For now, we're distributing a modified version of the OpenSSL packages
for Ubuntu, but of course we're not the only ones with this bug.
To manage notifications about this bug go to:
https://bugs.launchpad.net/openssl/+bug/1066032/+subscriptions
More information about the foundations-bugs
mailing list