https://ubuntu.com/security/notices/USN-5051-4
** Changed in: openssl (Ubuntu Trusty)
Status: Confirmed => Fix Released
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to openssl in Ubuntu.
https://bugs.launchpad.net/bugs/1942357
Title:
Regression in openssl 1.0.1f for trusty/esm after last update
Status in openssl package in Ubuntu:
In Progress
Status in openssl source package in Trusty:
Fix Released
Bug description:
A security regression was reported by Johannes Wegener that is causing
a regression in the last openssl1.0.1f in trusty/esm.
[How to reproduce]
1. Install Openssl/libssl1.0.0 Version 1.0.1f-1ubuntu2.27+esm3 on
ubuntu 14.04
2. openssl s_client -connect wikipedia.org:443 2>&1 < /dev/null | sed -n
'/-----BEGIN/,/-----END/p' > wikipedia.pem
3. openssl x509 -noout -ocsp_uri -in wikipedia.pem
Expected it prints: http://r3.o.lencr.org
Issue: it's not printing anything.
Thanks Johannes for report this issue.
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/openssl/+bug/1942357/+subscriptions
--
Mailing list: https://launchpad.net/~touch-packages
Post to : touch-packages@lists.launchpad.net
Unsubscribe : https://launchpad.net/~touch-packages
More help : https://help.launchpad.net/ListHelp
