polarssl 1.3.9-2.1+deb8u3 source package in Debian
Changelog
polarssl (1.3.9-2.1+deb8u3) jessie-security; urgency=medium
* Fix CVE-2017-18187:
Unsafe bounds check in ssl_parse_client_psk_identity().
* Fix CVE-2018-0487:
Buffer overflow when verifying RSASSA-PSS signatures. (Closes: #890288)
* Fix CVE-2018-0488:
Buffer overflow when truncated HMAC is enabled. (Closes: #890287)
-- James Cowgill <email address hidden> Tue, 20 Mar 2018 17:59:03 +0000
Upload details
- Uploaded by:
- Roland Stigge
- Uploaded to:
- Jessie
- Original maintainer:
- Roland Stigge
- Architectures:
- any
- Section:
- libs
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section | |
|---|---|---|---|---|
| Jessie | release | main | libs |
Builds
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| polarssl_1.3.9-2.1+deb8u3.dsc | 1.9 KiB | 66174a84b18cccf01ee26ff3da3aaa8483beac0aade710dfcdf240992f5ba434 |
| polarssl_1.3.9.orig.tar.gz | 1.7 MiB | d3605afc28ed4b7d1d9e3142d72e42855e4a23c07c951bbb0299556b02d36755 |
| polarssl_1.3.9-2.1+deb8u3.debian.tar.xz | 15.1 KiB | 79c66f0394796dcbf023261d52917e2d7a0b7835a90f2f422b106f21ea2e98ff |
No changes file available.
