[ubuntu/xenial-proposed] openssl 1.0.2e-1ubuntu2 (Accepted)
Marc Deslauriers
marc.deslauriers at ubuntu.com
Thu Jan 28 15:25:16 UTC 2016
openssl (1.0.2e-1ubuntu2) xenial; urgency=medium
* SECURITY UPDATE: DH small subgroups issue
- debian/patches/CVE-2016-0701.patch: add a test for small subgroup
attacks in crypto/dh/dhtest.c, always generate DH keys for ephemeral
DH cipher suites in doc/ssl/SSL_CTX_set_tmp_dh_callback.pod,
ssl/s3_lib.c, ssl/s3_srvr.c, ssl/ssl.h, prevent small subgroup
attacks on DH/DHE in crypto/dh/dh.h, crypto/dh/dh_check.c.
- CVE-2016-0701
Date: Mon, 25 Jan 2016 13:39:46 -0500
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/openssl/1.0.2e-1ubuntu2
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Mon, 25 Jan 2016 13:39:46 -0500
Source: openssl
Binary: openssl libssl1.0.0 libcrypto1.0.0-udeb libssl1.0.0-udeb libssl-dev libssl-doc libssl1.0.0-dbg
Architecture: source
Version: 1.0.2e-1ubuntu2
Distribution: xenial
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description:
libcrypto1.0.0-udeb - Secure Sockets Layer toolkit - libcrypto udeb (udeb)
libssl-dev - Secure Sockets Layer toolkit - development files
libssl-doc - Secure Sockets Layer toolkit - development documentation
libssl1.0.0 - Secure Sockets Layer toolkit - shared libraries
libssl1.0.0-dbg - Secure Sockets Layer toolkit - debug information
libssl1.0.0-udeb - ssl shared library - udeb (udeb)
openssl - Secure Sockets Layer toolkit - cryptographic utility
Changes:
openssl (1.0.2e-1ubuntu2) xenial; urgency=medium
.
* SECURITY UPDATE: DH small subgroups issue
- debian/patches/CVE-2016-0701.patch: add a test for small subgroup
attacks in crypto/dh/dhtest.c, always generate DH keys for ephemeral
DH cipher suites in doc/ssl/SSL_CTX_set_tmp_dh_callback.pod,
ssl/s3_lib.c, ssl/s3_srvr.c, ssl/ssl.h, prevent small subgroup
attacks on DH/DHE in crypto/dh/dh.h, crypto/dh/dh_check.c.
- CVE-2016-0701
Checksums-Sha1:
27a8c8b14529dbbe6221073a9287fc0be7d2b018 2424 openssl_1.0.2e-1ubuntu2.dsc
63125c3dc9ea83fd9a869034b36390431b0cfb2e 89632 openssl_1.0.2e-1ubuntu2.debian.tar.xz
Checksums-Sha256:
e271459f2730f0347f8b98905005d342d12d2b2bed67f8c7ed392e7d1bedd8cb 2424 openssl_1.0.2e-1ubuntu2.dsc
1e5ad9c2e787158f571192c89cd726b7191915882a3cabb13e748eca78f78667 89632 openssl_1.0.2e-1ubuntu2.debian.tar.xz
Files:
1e4158f61db1240bed28dced990b3c1a 2424 utils optional openssl_1.0.2e-1ubuntu2.dsc
68b523d52d1f49ed4b7fc4d44bb88a2c 89632 utils optional openssl_1.0.2e-1ubuntu2.debian.tar.xz
Original-Maintainer: Debian OpenSSL Team <pkg-openssl-devel at lists.alioth.debian.org>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=C8QW
-----END PGP SIGNATURE-----
More information about the Xenial-changes
mailing list