Steve, could you attach debdiff debian - ubuntu? ** Summary changed:
- Merge openssl 0.9.8o-3 from debian unstable + Merge openssl 0.9.8o-3 (main) from Debian unstable (main) ** Description changed: Binary package hint: openssl This version includes a fix for CVE-2010-3864 as well as re-enabling the engines in openssl. + + openssl (0.9.8o-3) unstable; urgency=high + + * Fix TLS extension parsing race condition (CVE-2010-3864) (Closes: #603709) + * Re-add the engines. They were missing since 0.9.8m-1. + Patch by Joerg Schneider. (Closes: #603693) + * Not all architectures were build using -g (Closes: #570702) + * Add powerpcspe support (Closes: #579805) + * Add armhf support (Closes: #596881) + * Update translations: + - Brazilian Portuguese (Closes: #592154) + - Danish (Closes: #599459) + - Vietnamese (Closes: #601536) + - Arabic (Closes: #596166) + * Generate the proper stamp file so that everything doesn't get build twice. + + -- Kurt Roeckx <[email protected]> Tue, 16 Nov 2010 19:20:55 +0100 + openssl (0.9.8o-2) unstable; urgency=high + + * Fix CVE-2010-2939: Double free using ECDH. (Closes: #594415) + + -- Kurt Roeckx <[email protected]> Thu, 26 Aug 2010 18:25:29 +0200 -- Merge openssl 0.9.8o-3 (main) from Debian unstable (main) https://bugs.launchpad.net/bugs/677756 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
