openssl 0.9.7g-1ubuntu1.1 source package in Ubuntu
Changelog
openssl (0.9.7g-1ubuntu1.1) breezy-security; urgency=low
* SECURITY UPDATE: Fix cryptographic weakness.
* ssl/s23_srvr.c:
- When using SSL_OP_MSIE_SSLV2_RSA_PADDING, do not disable the
protocol-version rollback check, so that a man-in-the-middle cannot
force a client and server to fall back to the insecure SSL 2.0 protocol.
- Problem discovered by Yutaka Oiwa.
* References:
CAN-2005-2969
http://www.openssl.org/news/secadv_20051011.txt
-- Martin Pitt <email address hidden> Thu, 13 Oct 2005 09:33:30 +0000
Upload details
- Uploaded by:
- Ubuntu Archive Auto-Sync
- Uploaded to:
- Breezy
- Original maintainer:
- Christoph Martin
- Architectures:
- any
- Section:
- utils
- Urgency:
- Low Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| openssl_0.9.7g-1ubuntu1.1.dsc | 657 bytes | 08e76665512edbcc8d3968c74464a7ea75ee6f5d6b769fd82a81788a93a04457 |
| openssl_0.9.7g.orig.tar.gz | 3.0 MiB | e7e1a287141dd1be7f4b4fedd54ec29fa904655ed76a13ac87ae69a3fc76b062 |
| openssl_0.9.7g-1ubuntu1.1.diff.gz | 28.8 KiB | eb17dd3afd61e664ef64023bc4dba9cf34eac15159034f97f3b4eff8ae2eb01d |
No changes file available.
Binary packages built by this source
- libssl-dev: No summary available for libssl-dev in ubuntu breezy.
No description available for libssl-dev in ubuntu breezy.
- libssl0.9.7: No summary available for libssl0.9.7 in ubuntu breezy.
No description available for libssl0.9.7 in ubuntu breezy.
- openssl: No summary available for openssl in ubuntu breezy.
No description available for openssl in ubuntu breezy.
