[ubuntu/karmic-security] openssl_0.9.8g-16ubuntu3.3_i386_translations.tar.gz, openssl_0.9.8g-16ubuntu3.3_ia64_translations.tar.gz, openssl_0.9.8g-16ubuntu3.3_powerpc_translations.tar.gz, openssl_0.9.8g-16ubuntu3.3_lpia_translations.tar.gz, openssl, openssl_0.9.8g-16ubuntu3.3_armel_translations.tar.gz, openssl_0.9.8g-16ubuntu3.3_amd64_translations.tar.gz, openssl_0.9.8g-16ubuntu3.3_sparc_translations.tar.gz (delayed) 0.9.8g-16ubuntu3.3 (Accepted)

Thu, 07 Oct 2010 07:24:42 -0700 

openssl (0.9.8g-16ubuntu3.3) karmic-security; urgency=low

  * SECURITY UPDATE: denial of service and possible code execution via
    unchecked bn_wexpand return values. (LP: #655884)
    - crypto/bn/{bn_mul,bn_div,bn_gf2m}.c, crypto/ec/ec2_smpl.c,
      engines/e_ubsec.c: check return values.
    - http://cvs.openssl.org/chngview?cn=18936
    - http://cvs.openssl.org/chngview?cn=19309
    - CVE-2009-3245
  * SECURITY UPDATE: denial of service and possible code execution via
    crafted private key with an invalid prime.
    - ssl/s3_clnt.c: set bn_ctx to NULL after freeing it.
    - http://www.mail-archive.com/[email protected]/msg28049.html
    - CVE-2010-2939

Date: Wed, 06 Oct 2010 17:38:20 -0400
Changed-By: Marc Deslauriers <[email protected]>
Maintainer: Ubuntu Core Developers <[email protected]>
https://launchpad.net/ubuntu/karmic/+source/openssl/0.9.8g-16ubuntu3.3

Format: 1.8
Date: Wed, 06 Oct 2010 17:38:20 -0400
Source: openssl
Binary: openssl openssl-doc libssl0.9.8 libcrypto0.9.8-udeb libssl-dev 
libssl0.9.8-dbg
Architecture: source
Version: 0.9.8g-16ubuntu3.3
Distribution: karmic-security
Urgency: low
Maintainer: Ubuntu Core Developers <[email protected]>
Changed-By: Marc Deslauriers <[email protected]>
Description: 
 libcrypto0.9.8-udeb - crypto shared library - udeb (udeb)
 libssl-dev - SSL development libraries, header files and documentation
 libssl0.9.8 - SSL shared libraries
 libssl0.9.8-dbg - Symbol tables for libssl and libcrypto
 openssl    - Secure Socket Layer (SSL) binary and related cryptographic tools
 openssl-doc - Secure Socket Layer (SSL) documentation
Changes: 
 openssl (0.9.8g-16ubuntu3.3) karmic-security; urgency=low
 .
   * SECURITY UPDATE: denial of service and possible code execution via
     unchecked bn_wexpand return values. (LP: #655884)
     - crypto/bn/{bn_mul,bn_div,bn_gf2m}.c, crypto/ec/ec2_smpl.c,
       engines/e_ubsec.c: check return values.
     - http://cvs.openssl.org/chngview?cn=18936
     - http://cvs.openssl.org/chngview?cn=19309
     - CVE-2009-3245
   * SECURITY UPDATE: denial of service and possible code execution via
     crafted private key with an invalid prime.
     - ssl/s3_clnt.c: set bn_ctx to NULL after freeing it.
     - http://www.mail-archive.com/[email protected]/msg28049.html
     - CVE-2010-2939
Checksums-Sha1: 
 3d1c326ab6458d8b61b98617370e186b0d9929dd 2078 openssl_0.9.8g-16ubuntu3.3.dsc
 3e90302257343a97a4279a40ba33e4f4c7dc00e8 76466 
openssl_0.9.8g-16ubuntu3.3.diff.gz
Checksums-Sha256: 
 590d94ed6f4515276cfeb436fdd1ca16ef6ca2cb1cb57e2a0411eb08a45cabbd 2078 
openssl_0.9.8g-16ubuntu3.3.dsc
 1b0247a9293c8fa03433d1b8528c5907fdd7654d9c2a2e6f61007f9db577f4d5 76466 
openssl_0.9.8g-16ubuntu3.3.diff.gz
Files: 
 80e5d4dc5237d6b27a5a9fa8ee2c7599 2078 utils optional 
openssl_0.9.8g-16ubuntu3.3.dsc
 d0c364cf8057acb34f1d00072f695507 76466 utils optional 
openssl_0.9.8g-16ubuntu3.3.diff.gz
Launchpad-Bugs-Fixed: 655884
Original-Maintainer: Debian OpenSSL Team 
<[email protected]>

-- 
Karmic-changes mailing list
[email protected]
Modify settings or unsubscribe at: 
https://lists.ubuntu.com/mailman/listinfo/karmic-changes

Reply via email to