[Bug 1331452] Re: Please backport current CVEs for Precise LTS openssl098
Marc Deslauriers
marc.deslauriers at canonical.com
Fri Jun 20 18:59:53 UTC 2014
There is a regression fix that got published upstream which I'll release
an update for on monday. I suspect you're going to need to add it. Here
is the upstream commit:
https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=70d923fb0359ed68e59b8c59d1687ebff6f8d952
And here is my planned lucid debdiff:
** Patch added: "openssl_0.9.8k-7ubuntu8.19.debdiff"
https://bugs.launchpad.net/ubuntu/+source/openssl/+bug/1331452/+attachment/4135833/+files/openssl_0.9.8k-7ubuntu8.19.debdiff
--
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to openssl in Ubuntu.
https://bugs.launchpad.net/bugs/1331452
Title:
Please backport current CVEs for Precise LTS openssl098
Status in “openssl” package in Ubuntu:
Invalid
Status in “openssl” source package in Precise:
In Progress
Bug description:
Please backport the CVS listed here to openssl098 :
http://people.canonical.com/~ubuntu-security/cve/pkg/openssl098.html
* CVE-2012-0884
* CVE-2012-2333
* CVE-2013-0166
* CVE-2013-0169
* CVE-2014-0195
* CVE-2014-0221
* CVE-2014-0224
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/openssl/+bug/1331452/+subscriptions
More information about the foundations-bugs
mailing list