[Bug 1879533] Re: busybox does not verify TLS connections with CONFIG_FEATURE_WGET_OPENSSL=y and CONFIG_FEATURE_WGET_HTTPS unset, and doesn't warn either about it

This bug was fixed in the package busybox - 1:1.30.1-4ubuntu6.1 --- busybox (1:1.30.1-4ubuntu6.1) focal; urgency=medium * Enable TLS verification with OpenSSL. LP: #1879533 * Enable TLS in initramfs flavour of wget applet, requires openssl. LP: #1879525 -- Dimitri John

[Bug 1879533] Re: busybox does not verify TLS connections with CONFIG_FEATURE_WGET_OPENSSL=y and CONFIG_FEATURE_WGET_HTTPS unset, and doesn't warn either about it

Build focal subiquity image with proposed enabled and busybox version 1:1.30.1-4ubuntu6.1 at https://launchpad.net/~xnox/+livefs/ubuntu/focal/any/+build/221093 downloaded just the initrd & vmlinuz. Waited for it to fail to boot, and sourced /scripts/functions and executed configure_networking.

[Bug 1879533] Re: busybox does not verify TLS connections with CONFIG_FEATURE_WGET_OPENSSL=y and CONFIG_FEATURE_WGET_HTTPS unset, and doesn't warn either about it

Hello Dimitri, or anyone else affected, Accepted busybox into focal-proposed. The package will build now and be available at https://launchpad.net/ubuntu/+source/busybox/1:1.30.1-4ubuntu6.1 in a few hours, and then in the -proposed repository. Please help us by testing this new package. See

[Bug 1879533] Re: busybox does not verify TLS connections with CONFIG_FEATURE_WGET_OPENSSL=y and CONFIG_FEATURE_WGET_HTTPS unset, and doesn't warn either about it

Ok, xnox cleared out the situation for me. This is not needed in -security. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1879533 Title: busybox does not verify TLS connections with

[Bug 1879533] Re: busybox does not verify TLS connections with CONFIG_FEATURE_WGET_OPENSSL=y and CONFIG_FEATURE_WGET_HTTPS unset, and doesn't warn either about it

Seeing that this is a fix for a documented CVE, do we also want to upload this to -security? Should we build this first in a security enabled PPA? -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1879533

[Bug 1879533] Re: busybox does not verify TLS connections with CONFIG_FEATURE_WGET_OPENSSL=y and CONFIG_FEATURE_WGET_HTTPS unset, and doesn't warn either about it

This bug was fixed in the package busybox - 1:1.30.1-4ubuntu8 --- busybox (1:1.30.1-4ubuntu8) groovy; urgency=medium * Enable TLS verification with OpenSSL. LP: #1879533 busybox (1:1.30.1-4ubuntu7) groovy; urgency=medium * Enable TLS in initramfs flavour of wget applet,

[Bug 1879533] Re: busybox does not verify TLS connections with CONFIG_FEATURE_WGET_OPENSSL=y and CONFIG_FEATURE_WGET_HTTPS unset, and doesn't warn either about it

** Tags added: id-5ec405c08ffc87364ab8cf50 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1879533 Title: busybox does not verify TLS connections with CONFIG_FEATURE_WGET_OPENSSL=y and

[Bug 1879533] Re: busybox does not verify TLS connections with CONFIG_FEATURE_WGET_OPENSSL=y and CONFIG_FEATURE_WGET_HTTPS unset, and doesn't warn either about it

** Tags added: patch -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1879533 Title: busybox does not verify TLS connections with CONFIG_FEATURE_WGET_OPENSSL=y and CONFIG_FEATURE_WGET_HTTPS unset,

[Bug 1879533] Re: busybox does not verify TLS connections with CONFIG_FEATURE_WGET_OPENSSL=y and CONFIG_FEATURE_WGET_HTTPS unset, and doesn't warn either about it

** Information type changed from Private Security to Public Security ** Changed in: busybox (Ubuntu Groovy) Status: New => Fix Committed -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1879533