[Bug 581167] Re: Please merge openssl 0.9.8n-1 into ubuntu
** CVE removed: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2009-3555 -- Please merge openssl 0.9.8n-1 into ubuntu https://bugs.launchpad.net/bugs/581167 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 581167] Re: Please merge openssl 0.9.8n-1 into ubuntu
This bug was fixed in the package openssl - 0.9.8o-1ubuntu1 --- openssl (0.9.8o-1ubuntu1) maverick; urgency=low * Merge from debian unstable, remaining changes (LP: #581167): - debian/patches/Bsymbolic-functions.patch: Link using -Bsymbolic-functions - Ship documentation in openssl-doc, suggested by the package. - Use a different priority for libssl0.9.8/restart-services depending on whether a desktop, or server dist-upgrade is being performed. - Display a system restart required notification bubble on libssl0.9.8 upgrade. - Replace duplicate files in the doc directory with symlinks. - Move runtime libraries to /lib, for the benefit of wpasupplicant - Use host compiler when cross-building (patch from Neil Williams in Debian #465248). - Don't run 'make test' when cross-building. - Create libssl0.9.8-udeb, for the benefit of wget-udeb (LP: #503339). - debian/patches/aesni.patch: Backport Intel AES-NI support from http://rt.openssl.org/Ticket/Display.html?id=2067 (LP: #485518). - debian/patches/perlpath-quilt.patch: Don't change perl #! paths under .pc. * Dropped patches, now upstream: - debian/patches/CVE-2009-3245.patch - debian/patches/CVE-2010-0740.patch - debian/patches/dtls-compatibility.patch - debian/patches/CVE-2009-4355.patch * Dropped Add support for lpia. * Dropped Disable SSLv2 during compile as this had never actually disabled SSLv2. * Don't disable CVE-2009-3555.patch for Maverick. openssl (0.9.8o-1) unstable; urgency=low * New upstream version - Add SHA2 algorithms to SSL_library_init(). - aes-x86_64.pl is now PIC, update pic.patch. * Add sparc64 support (Closes: #560240) openssl (0.9.8n-1) unstable; urgency=high * New upstream version. - Fixes CVE-2010-0740. - Drop cfb.patch, applied upstream. openssl (0.9.8m-2) unstable; urgency=low * Revert CFB block length change preventing reading older files. (Closes: #571810, #571940) openssl (0.9.8m-1) unstable; urgency=low * New upstream version - Implements RFC5746, reenables renegotiation but requires the extension. - Fixes CVE-2009-3245 - Drop patches CVE-2009-4355.patch, CVE-2009-1378.patch, CVE-2009-1377.patch, CVE-2009-1379.patch, CVE-2009-3555.patch, CVE-2009-2409.patch, CVE-2009-1387.patch, tls_ext_v3.patch, no_check_self_signed.patch: applied upstream - pk7_mime_free.patch removed, code rewritten - ca.diff partially applied upstream - engines-path.patch adjusted, upstream made some minor changes to the build system. - some flags changed values, bump shlibs. * Switch to 3.0 (quilt) source package. * Make sure the package is properly cleaned. * Add ${misc:Depends} to the Depends on all packages. * Fix spelling of extension in the changelog file. openssl (0.9.8k-8) unstable; urgency=high * Clean up zlib state so that it will be reinitialized on next use and not cause a memory leak. (CVE-2009-4355, CVE-2008-1678) -- Marc Deslauriers marc.deslauri...@ubuntu.com Mon, 14 Jun 2010 09:08:29 -0400 ** Changed in: openssl (Ubuntu) Status: Confirmed = Fix Released ** Bug watch added: OpenSSL RT #2067 http://rt.openssl.org/Ticket/Display.html?id=2067 ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2008-1678 ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2009-1377 ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2009-1378 ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2009-1379 ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2009-1387 ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2009-2409 ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2009-3245 ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2009-3555 ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2009-4355 ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2010-0740 -- Please merge openssl 0.9.8n-1 into ubuntu https://bugs.launchpad.net/bugs/581167 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 581167] Re: Please merge openssl 0.9.8n-1 into ubuntu
* Just removed them * Those can't be striped out, please see changelog entry for 0.9.8k-7ubuntu2 and 0.9.8k-7ubuntu3 for more information * Sorry about that, i forgot to update the branch. * Sadly, yes, gpg complaining if not * Deleted, but it should be there in the main branch aswell, since i didn't add it... * Yes, planning on doing that. -- Please merge openssl 0.9.8n-1 into ubuntu https://bugs.launchpad.net/bugs/581167 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 581167] Re: Please merge openssl 0.9.8n-1 into ubuntu
1. Those can't be striped out, please see changelog entry for 0.9.8k-7ubuntu2 and 0.9.8k-7ubuntu3 for more information Due to dpkg-source 3.0 (quilt), they can be stripped out. debian/patches/debian-changes-0.9.8n-1ubuntu1 is created containing those patches. Please split them and give them propper DEP-3 headers. 2. The clean rules is not clean enough. Running debuild twice does not work (log attached). 3. Please have a look at the Lintian errors and warnings (attached). Some of them should be resolved upstream (for example, spelling-error- in-binary). All Lintian warnings imported from Debian [1] should be resolved there first and then merged to Ubuntu. For merging 0.9.8n-1 you should fix the Ubuntu specific Lintian warnings. Please resubscribe ubuntu-sponsors once these three points are addressed. We are at the beginning of the release cycle and therefore I am more picky. 4. debian/rules could get more love (e.g. using dh 7). This should be done in Debian first. [1] http://lintian.debian.org/full/pkg-openssl- de...@lists.alioth.debian.org.html -- Please merge openssl 0.9.8n-1 into ubuntu https://bugs.launchpad.net/bugs/581167 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 581167] Re: Please merge openssl 0.9.8n-1 into ubuntu
log from second debuild run ** Attachment added: build.log http://launchpadlibrarian.net/48631575/build.log -- Please merge openssl 0.9.8n-1 into ubuntu https://bugs.launchpad.net/bugs/581167 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 581167] Re: Please merge openssl 0.9.8n-1 into ubuntu
** Attachment added: lintian.report http://launchpadlibrarian.net/48631577/lintian.report -- Please merge openssl 0.9.8n-1 into ubuntu https://bugs.launchpad.net/bugs/581167 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 581167] Re: Please merge openssl 0.9.8n-1 into ubuntu
1. Done -- Please merge openssl 0.9.8n-1 into ubuntu https://bugs.launchpad.net/bugs/581167 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 581167] Re: Please merge openssl 0.9.8n-1 into ubuntu
Uploaded to my ppa: https://edge.launchpad.net/~nvalcarcel/+archive/ppa -- Please merge openssl 0.9.8n-1 into ubuntu https://bugs.launchpad.net/bugs/581167 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 581167] Re: Please merge openssl 0.9.8n-1 into ubuntu
* There are around six additional patches compared to the Debian version, but only one is applied in debian/patches/series. You should remove old, unused patches. * There are direct changes to the source. Please convert them to proper described patches. * debian/changelog: Please target maverick instead of lucid. * Do you really want to have (Canonical) in the debian/changelog stanza? The email address indicates that already. * The bzr branch contains the .pc directory (files from quilt). I think that the .pc directory shouldn't be part of the branch. * You may want to forward some Ubuntu changes to Debian to ease the merge next time (for example the openssl-doc package split). Please resubscribe ubuntu-sponsors once you have addressed these issues. -- Please merge openssl 0.9.8n-1 into ubuntu https://bugs.launchpad.net/bugs/581167 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 581167] Re: Please merge openssl 0.9.8n-1 into ubuntu
** Branch linked: lp:~nvalcarcel/ubuntu/maverick/openssl/openssl-merge -- Please merge openssl 0.9.8n-1 into ubuntu https://bugs.launchpad.net/bugs/581167 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 581167] Re: Please merge openssl 0.9.8n-1 into ubuntu
** Changed in: openssl (Ubuntu) Status: New = Confirmed -- Please merge openssl 0.9.8n-1 into ubuntu https://bugs.launchpad.net/bugs/581167 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs