[ubuntu/quantal] openssl 1.0.1-4ubuntu6 (Accepted)

Steve Beattie sbeattie at ubuntu.com
Fri Jun 1 12:30:24 UTC 2012


openssl (1.0.1-4ubuntu6) quantal; urgency=low

  * SECURITY UPDATE: denial of service attack in DTLS, TLS v1.1 and
    TLS v1.2 implementation
    - debian/patches/CVE_2012-2333.patch: guard for integer overflow
      before skipping explicit IV
    - CVE-2012-2333
  * debian/patches/CVE-2012-0884-extra.patch: initialize tkeylen
    properly when encrypting CMS messages.

Date: Thu, 24 May 2012 16:05:04 -0700
Changed-By: Steve Beattie <sbeattie at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Signed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/quantal/+source/openssl/1.0.1-4ubuntu6
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Thu, 24 May 2012 16:05:04 -0700
Source: openssl
Binary: openssl libssl1.0.0 libcrypto1.0.0-udeb libssl1.0.0-udeb libssl-dev libssl-doc libssl1.0.0-dbg
Architecture: source
Version: 1.0.1-4ubuntu6
Distribution: quantal
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Steve Beattie <sbeattie at ubuntu.com>
Description: 
 libcrypto1.0.0-udeb - crypto shared library - udeb (udeb)
 libssl-dev - SSL development libraries, header files and documentation
 libssl-doc - SSL development documentation documentation
 libssl1.0.0 - SSL shared libraries
 libssl1.0.0-dbg - Symbol tables for libssl and libcrypto
 libssl1.0.0-udeb - ssl shared library - udeb (udeb)
 openssl    - Secure Socket Layer (SSL) binary and related cryptographic tools
Changes: 
 openssl (1.0.1-4ubuntu6) quantal; urgency=low
 .
   * SECURITY UPDATE: denial of service attack in DTLS, TLS v1.1 and
     TLS v1.2 implementation
     - debian/patches/CVE_2012-2333.patch: guard for integer overflow
       before skipping explicit IV
     - CVE-2012-2333
   * debian/patches/CVE-2012-0884-extra.patch: initialize tkeylen
     properly when encrypting CMS messages.
Checksums-Sha1: 
 e359ef9d98a5c5d35af2609f20374f02db3f9d30 2370 openssl_1.0.1-4ubuntu6.dsc
 19c3e01eeeed78d742fac2a83057b500be5ccd5e 102400 openssl_1.0.1-4ubuntu6.debian.tar.gz
Checksums-Sha256: 
 2af31f8cb7b90d6b270faad0e3caaa5e38d997f610de3e77ef31a4b9eec39c22 2370 openssl_1.0.1-4ubuntu6.dsc
 40a8da1a1a2c51d0109f8d75f0561ad8c3286bf12db9c7834e614324b22e60ce 102400 openssl_1.0.1-4ubuntu6.debian.tar.gz
Files: 
 29080c62997962a0e1f59f6b9fbce645 2370 utils optional openssl_1.0.1-4ubuntu6.dsc
 443a8846cad88b9315b97750cb4ee1f5 102400 utils optional openssl_1.0.1-4ubuntu6.debian.tar.gz
Original-Maintainer: Debian OpenSSL Team <pkg-openssl-devel at lists.alioth.debian.org>

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
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=c+Pa
-----END PGP SIGNATURE-----


More information about the Quantal-changes mailing list