Bug#653495: marked as done (Please enabled hardened build flags)

Mon, 19 Mar 2012 11:09:23 -0700 

Your message dated Mon, 19 Mar 2012 18:05:28 +0000
with message-id <[email protected]>
and subject line Bug#653495: fixed in openssl 1.0.1-1
has caused the Debian Bug report #653495,
regarding Please enabled hardened build flags
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)


-- 
653495: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=653495
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message --- 
Package: openssl
Version: 1.0.0e-3
Severity: important

Please enable hardened build flags through dpkg-buildflags
(for CFLAGS, CPPFLAGS and LDFLAGS)

Cheers,
        Moritz

--- End Message ---
--- Begin Message --- 
Source: openssl
Source-Version: 1.0.1-1

We believe that the bug you reported is fixed in the latest version of
openssl, which is due to be installed in the Debian FTP archive:

libcrypto1.0.0-udeb_1.0.1-1_amd64.udeb
  to main/o/openssl/libcrypto1.0.0-udeb_1.0.1-1_amd64.udeb
libssl-dev_1.0.1-1_amd64.deb
  to main/o/openssl/libssl-dev_1.0.1-1_amd64.deb
libssl-doc_1.0.1-1_all.deb
  to main/o/openssl/libssl-doc_1.0.1-1_all.deb
libssl1.0.0-dbg_1.0.1-1_amd64.deb
  to main/o/openssl/libssl1.0.0-dbg_1.0.1-1_amd64.deb
libssl1.0.0_1.0.1-1_amd64.deb
  to main/o/openssl/libssl1.0.0_1.0.1-1_amd64.deb
openssl_1.0.1-1.debian.tar.gz
  to main/o/openssl/openssl_1.0.1-1.debian.tar.gz
openssl_1.0.1-1.dsc
  to main/o/openssl/openssl_1.0.1-1.dsc
openssl_1.0.1-1_amd64.deb
  to main/o/openssl/openssl_1.0.1-1_amd64.deb
openssl_1.0.1.orig.tar.gz
  to main/o/openssl/openssl_1.0.1.orig.tar.gz



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Kurt Roeckx <[email protected]> (supplier of updated openssl package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Mon, 19 Mar 2012 18:23:32 +0100
Source: openssl
Binary: openssl libssl1.0.0 libcrypto1.0.0-udeb libssl-dev libssl-doc 
libssl1.0.0-dbg
Architecture: source all amd64
Version: 1.0.1-1
Distribution: unstable
Urgency: low
Maintainer: Debian OpenSSL Team <[email protected]>
Changed-By: Kurt Roeckx <[email protected]>
Description: 
 libcrypto1.0.0-udeb - crypto shared library - udeb (udeb)
 libssl-dev - SSL development libraries, header files and documentation
 libssl-doc - SSL development documentation documentation
 libssl1.0.0 - SSL shared libraries
 libssl1.0.0-dbg - Symbol tables for libssl and libcrypto
 openssl    - Secure Socket Layer (SSL) binary and related cryptographic tools
Closes: 644743 653495 663977 664454
Changes: 
 openssl (1.0.1-1) unstable; urgency=low
 .
   * New upstream version
     - Remove kfreebsd-pipe.patch, fixed upstream
     - Update pic.patch, openssl-pod-misspell.patch and make-targets.patch
     - Add OPENSSL_1.0.1 to version-script.patch and libssl1.0.0.symbols for
       the new functions.
     - AES-NI support (Closes: #644743)
   * pic.patch: upstream made OPENSSL_ia32cap_P and OPENSSL_cpuid_setup
     hidden on amd64, no need to access it PIC anymore.
   * pic.patch: Make OPENSSL_ia32cap_P hidden on i386 too (Closes: #663977)
   * Enable hardening using dpkg-buildflags (Closes: #653495)
   * s_client and s_server were forcing SSLv3 only connection when SSLv2 was
     disabled instead of the SSLv2 with upgrade method.  (Closes: #664454)
   * Add Beaks on openssh < 1:5.9p1-4, it has a too strict version check.
Checksums-Sha1: 
 1e7fd62d6753a1d4a4bbd758cfd363f07e8a193c 2193 openssl_1.0.1-1.dsc
 a6476d33fd38c2e7dfb438d1e3be178cc242c907 4453920 openssl_1.0.1.orig.tar.gz
 ee5340bea285718f9a0b89cb80f37f8e78ac0f94 88836 openssl_1.0.1-1.debian.tar.gz
 e9119c2f1091aa5ec9373a9598d50232e92b5b22 1197254 libssl-doc_1.0.1-1_all.deb
 f022365f593899abece8806f43f94f2312db994f 694554 openssl_1.0.1-1_amd64.deb
 7fd626cb91c40ac24813b4a8e9b6604a4e77d957 1208576 libssl1.0.0_1.0.1-1_amd64.deb
 e8a219fe25428d4bf05f8c9a028f95c9e02e5a71 771058 
libcrypto1.0.0-udeb_1.0.1-1_amd64.udeb
 3efee966faf6b5583efa635d0ab19aabd0da97e9 1693438 libssl-dev_1.0.1-1_amd64.deb
 6af138f21492348d6aee1f38a6c233223056a71d 2305472 
libssl1.0.0-dbg_1.0.1-1_amd64.deb
Checksums-Sha256: 
 02f6fbd702d963f07f6d3f25caadb5d2fab6037ea03e89a8b1435593316282d5 2193 
openssl_1.0.1-1.dsc
 4d9f0a594a9a89b28e1a04a9504c04104f6508ee27ad1e0efdd17a7a6dbbeeee 4453920 
openssl_1.0.1.orig.tar.gz
 c7c50f7900460537dc349ad82c03e145d7230a0e3d22c99cedaac31883ae973c 88836 
openssl_1.0.1-1.debian.tar.gz
 0a1b9aa74910791135e94086031742cf0e6d46d582fc95bb4e338eec58163209 1197254 
libssl-doc_1.0.1-1_all.deb
 f9a5887e1e20d1bf7e05c1bef420fc7758907081180fc861479519321d7b3113 694554 
openssl_1.0.1-1_amd64.deb
 65d562466afd86e190db65b88cc7bd2df8f6c1a5a95fbe69871adecb184f6215 1208576 
libssl1.0.0_1.0.1-1_amd64.deb
 30c56892792446fa8c4f97e752e190901a776248b83a3b9d090ac44b691680de 771058 
libcrypto1.0.0-udeb_1.0.1-1_amd64.udeb
 75c9a234cc4b1d8ea9cca5c1b5c7043818dcc615b2627d3593567207c5f4094d 1693438 
libssl-dev_1.0.1-1_amd64.deb
 891290b078dfbcdc8a76b04916c8818d4fdd6d950970cb72110e76d6e984ead5 2305472 
libssl1.0.0-dbg_1.0.1-1_amd64.deb
Files: 
 7901bc8f286b44918c2992d1093f9c18 2193 utils optional openssl_1.0.1-1.dsc
 134f168bc2a8333f19f81d684841710b 4453920 utils optional 
openssl_1.0.1.orig.tar.gz
 14a0c0dd3b3d19525f788e72d7dba014 88836 utils optional 
openssl_1.0.1-1.debian.tar.gz
 7e241cdf741b9daf8ad85737a889e77b 1197254 doc optional 
libssl-doc_1.0.1-1_all.deb
 83c9b517ae482b77a420fb45f7366366 694554 utils optional 
openssl_1.0.1-1_amd64.deb
 43561087bb30eaa8daddd052ad71aaab 1208576 libs important 
libssl1.0.0_1.0.1-1_amd64.deb
 d998a1c63a9a5d53e7ad738e3ff091a7 771058 debian-installer optional 
libcrypto1.0.0-udeb_1.0.1-1_amd64.udeb
 e3419dff8457c7ad07ea993ef805a6c0 1693438 libdevel optional 
libssl-dev_1.0.1-1_amd64.deb
 ff26f310bba99229d4d60a7e65d27543 2305472 debug extra 
libssl1.0.0-dbg_1.0.1-1_amd64.deb
Package-Type: udeb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
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=OWEw
-----END PGP SIGNATURE-----

--- End Message ---

Reply via email to