[ubuntu/resolute-proposed] pyopenssl 25.3.0-1ubuntu1 (Accepted)

Marc Deslauriers marc.deslauriers at ubuntu.com
Wed Mar 18 23:00:15 UTC 2026 

pyopenssl (25.3.0-1ubuntu1) resolute; urgency=medium

  * SECURITY UPDATE: Unhandled exceptions in set_tlsext_servername_callback
    - debian/patches/CVE-2026-27448.patch: handle exceptions in callbacks
      in src/OpenSSL/SSL.py, tests/test_ssl.py.
    - CVE-2026-27448
  * SECURITY UPDATE: Buffer overflow via DTLS cookie callback
    - debian/patches/CVE-2026-27459.patch: fix buffer overflow in DTLS
      cookie generation callback in src/OpenSSL/SSL.py, tests/test_ssl.py.
    - CVE-2026-27459

Date: Wed, 18 Mar 2026 13:22:16 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/pyopenssl/25.3.0-1ubuntu1
-------------- next part --------------
Format: 1.8
Date: Wed, 18 Mar 2026 13:22:16 -0400
Source: pyopenssl
Built-For-Profiles: derivative.ubuntu noudeb
Architecture: source
Version: 25.3.0-1ubuntu1
Distribution: resolute
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Changes:
 pyopenssl (25.3.0-1ubuntu1) resolute; urgency=medium
 .
   * SECURITY UPDATE: Unhandled exceptions in set_tlsext_servername_callback
     - debian/patches/CVE-2026-27448.patch: handle exceptions in callbacks
       in src/OpenSSL/SSL.py, tests/test_ssl.py.
     - CVE-2026-27448
   * SECURITY UPDATE: Buffer overflow via DTLS cookie callback
     - debian/patches/CVE-2026-27459.patch: fix buffer overflow in DTLS
       cookie generation callback in src/OpenSSL/SSL.py, tests/test_ssl.py.
     - CVE-2026-27459
Checksums-Sha1:
 83c4086dfbd1d9336c7198875033ea8c6ad8f12c 2608 pyopenssl_25.3.0-1ubuntu1.dsc
 0387ebe8c119f5b3d9a01b07e46073ca9a707ca4 12392 pyopenssl_25.3.0-1ubuntu1.debian.tar.xz
 41d50f2499d11e9181033bb16a761694e5abd165 8975 pyopenssl_25.3.0-1ubuntu1_source.buildinfo
Checksums-Sha256:
 7de3832dc1d3ad284e9014cf29312aa88f6bb42f37f53e54f55d280b58de3947 2608 pyopenssl_25.3.0-1ubuntu1.dsc
 7076c7a9ff075201c86d56a337cfd418fa28a7a2cdd32e6ddbb7c43691dd6e8c 12392 pyopenssl_25.3.0-1ubuntu1.debian.tar.xz
 881e4905d3dacd68ada672cbdfba67165033f3d7faf7f8d9dfb1166a98860a7d 8975 pyopenssl_25.3.0-1ubuntu1_source.buildinfo
Files:
 250e29bd47e7ee7e2fdbd9792e29a54e 2608 python optional pyopenssl_25.3.0-1ubuntu1.dsc
 0817107794e94b5ab6966057fb402880 12392 python optional pyopenssl_25.3.0-1ubuntu1.debian.tar.xz
 5d6f41b19b54c27775245aa05570b176 8975 python optional pyopenssl_25.3.0-1ubuntu1_source.buildinfo
Original-Maintainer: Debian Python Team <team+python at tracker.debian.org>

More information about the Resolute-changes mailing list