Format: 1.8 Date: Mon, 30 Jan 2017 09:00:43 -0500 Source: openssl Binary: openssl libssl1.0.0 libcrypto1.0.0-udeb libssl1.0.0-udeb libssl-dev libssl1.0-dev libssl-doc libssl1.0.0-dbg Architecture: armhf armhf_translations Version: 1.0.2g-1ubuntu11 Distribution: zesty-proposed Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Marc Deslauriers Description: libcrypto1.0.0-udeb - Secure Sockets Layer toolkit - libcrypto udeb (udeb) libssl-dev - Secure Sockets Layer toolkit - development files libssl-doc - Secure Sockets Layer toolkit - development documentation libssl1.0-dev - Secure Sockets Layer toolkit - metapackage libssl1.0.0 - Secure Sockets Layer toolkit - shared libraries libssl1.0.0-dbg - Secure Sockets Layer toolkit - debug information libssl1.0.0-udeb - ssl shared library - udeb (udeb) openssl - Secure Sockets Layer toolkit - cryptographic utility Changes: openssl (1.0.2g-1ubuntu11) zesty; urgency=medium . * SECURITY UPDATE: Montgomery multiplication may produce incorrect results - debian/patches/CVE-2016-7055.patch: fix logic in crypto/bn/asm/x86_64-mont.pl. - CVE-2016-7055 * SECURITY UPDATE: DoS via warning alerts - debian/patches/CVE-2016-8610.patch: don't allow too many consecutive warning alerts in ssl/d1_pkt.c, ssl/s3_pkt.c, ssl/ssl.h, ssl/ssl_locl.h. - debian/patches/CVE-2016-8610-2.patch: fail if an unrecognised record type is received in ssl/s3_pkt.c. - CVE-2016-8610 * SECURITY UPDATE: Truncated packet could crash via OOB read - debian/patches/CVE-2017-3731.patch: harden RC4_MD5 cipher in crypto/evp/e_rc4_hmac_md5.c. - CVE-2017-3731 * SECURITY UPDATE: BN_mod_exp may produce incorrect results on x86_64 - debian/patches/CVE-2017-3732.patch: fix carry bug in bn_sqr8x_internal in crypto/bn/asm/x86_64-mont5.pl. - CVE-2017-3732 Checksums-Sha1: 11acb6d631d04e02d105e67722bc6a959c460be9 932 libcrypto1.0.0-udeb-dbgsym_1.0.2g-1ubuntu11_armhf.ddeb f00c8fc7ef415f31461184248bd37f74e6c8d593 514120 libcrypto1.0.0-udeb_1.0.2g-1ubuntu11_armhf.udeb 79b1be112f2cc2a3c64292073c65ed6ab11a2171 920 libssl-dev-dbgsym_1.0.2g-1ubuntu11_armhf.ddeb 8bfc0b251ea8caac73b211013e1ad7d6c55938d1 979828 libssl-dev_1.0.2g-1ubuntu11_armhf.deb 2eae7f1e3292906a7379dee97f4f42b243de8766 908 libssl1.0-dev-dbgsym_1.0.2g-1ubuntu11_armhf.ddeb 03a5ce90a35322d737d5dca6c5115dfad81b6091 3226 libssl1.0-dev_1.0.2g-1ubuntu11_armhf.deb bf51f49fb1c12695e1a2673d1c2ebf57222f80fc 2893294 libssl1.0.0-dbg_1.0.2g-1ubuntu11_armhf.deb 6d40fd00d6126b97590a0fefa84804ea2216f1d2 894 libssl1.0.0-dbgsym_1.0.2g-1ubuntu11_armhf.ddeb b947e1f9de5e1e4c78f9ad27bed03e6c3257077b 816 libssl1.0.0-udeb-dbgsym_1.0.2g-1ubuntu11_armhf.ddeb 1c1bc94939e0bec0ec40e1df8554d7269be9c3ef 114970 libssl1.0.0-udeb_1.0.2g-1ubuntu11_armhf.udeb 36e0c93fb69c60b4cffaa941b78b7af4df9c2474 717424 libssl1.0.0_1.0.2g-1ubuntu11_armhf.deb dd775c5d86d0ce24303f9ec41380ade274e6367a 1058 openssl-dbgsym_1.0.2g-1ubuntu11_armhf.ddeb 7a4c19d87778cae874661e96e925e7afafb12082 485064 openssl_1.0.2g-1ubuntu11_armhf.deb 76696ce5bfd0680e1a02dd30ffbb1e6bc195f3c9 20618 openssl_1.0.2g-1ubuntu11_armhf_translations.tar.gz Checksums-Sha256: 09cd1be0941d05a83980869ec49f3c195ae193d039621809d725d9c7a92c59b7 932 libcrypto1.0.0-udeb-dbgsym_1.0.2g-1ubuntu11_armhf.ddeb 6dfdf625f79f7f8bce47d0c5b0359e2857fb480b3fa1cfffe27e46a8f4acfbe8 514120 libcrypto1.0.0-udeb_1.0.2g-1ubuntu11_armhf.udeb 6ce4dc28d59f1eecb8acf6c04b9984b7f3cc1451882040676783258b77ce5940 920 libssl-dev-dbgsym_1.0.2g-1ubuntu11_armhf.ddeb 5e01ab55ad9d435e812c68f0ac3d1f5231ee8967d10c06f4a43f96cd2983a297 979828 libssl-dev_1.0.2g-1ubuntu11_armhf.deb 85dcdec4b5f305e4b20235074ef9a5f9503988f452c7735366cf6790baf902c3 908 libssl1.0-dev-dbgsym_1.0.2g-1ubuntu11_armhf.ddeb d72169077ba3b7665e44598016faa9ebead4f074e585e315868ae780e2342602 3226 libssl1.0-dev_1.0.2g-1ubuntu11_armhf.deb b1097074a2f98cd95289df7509783c8a8bd6b600c71a06175c8103ac611fd845 2893294 libssl1.0.0-dbg_1.0.2g-1ubuntu11_armhf.deb b46dd55dd959eade910e26a2c2f590f4df02266af3993c09c6271a5cc7790b64 894 libssl1.0.0-dbgsym_1.0.2g-1ubuntu11_armhf.ddeb dbb5f7c5aeece15a52a8fdd70575b6c07c21d0133d09138707bb5911f014da88 816 libssl1.0.0-udeb-dbgsym_1.0.2g-1ubuntu11_armhf.ddeb 0096393fe81001bf73f165d39d36fefdf86600438f02ebbca2766d6ba2061bb7 114970 libssl1.0.0-udeb_1.0.2g-1ubuntu11_armhf.udeb 50f79b38dbbe231ef5d9c8bdebb0576e5320261669df9f9f1bc3f2a6b8d92f44 717424 libssl1.0.0_1.0.2g-1ubuntu11_armhf.deb 3500c74cb8d2ee2574476370fef0a0f749041d975e613de1fe794275959154a7 1058 openssl-dbgsym_1.0.2g-1ubuntu11_armhf.ddeb f2d1950f98dd3108e0b0294ac272d13c9942c8ea1e5480ee8e5858cdec09d177 485064 openssl_1.0.2g-1ubuntu11_armhf.deb 64b5d08349edb66df54f8b35d24845669fcdc61075efb754c17904560ec7b933 20618 openssl_1.0.2g-1ubuntu11_armhf_translations.tar.gz Files: b25ea73efbf5633a248af0d269a89182 932 debian-installer extra libcrypto1.0.0-udeb-dbgsym_1.0.2g-1ubuntu11_armhf.ddeb 3a4820b29540ec9a3b7a7c0551a30244 514120 debian-installer optional libcrypto1.0.0-udeb_1.0.2g-1ubuntu11_armhf.udeb 468a4cad119fad209d8120edcb00ea52 920 libdevel extra libssl-dev-dbgsym_1.0.2g-1ubuntu11_armhf.ddeb acc21907e40d1b6432d04445485ed960 979828 libdevel optional libssl-dev_1.0.2g-1ubuntu11_armhf.deb 5df8d1761aee1db1aa8946b7371c075c 908 libdevel extra libssl1.0-dev-dbgsym_1.0.2g-1ubuntu11_armhf.ddeb 8a7d83c0574cff619aa774b88c92564d 3226 libdevel optional libssl1.0-dev_1.0.2g-1ubuntu11_armhf.deb f686de2148ccba88776ca58a9f527ccf 2893294 debug extra libssl1.0.0-dbg_1.0.2g-1ubuntu11_armhf.deb 5389104890911ff749f27ba2160d3f1b 894 libs extra libssl1.0.0-dbgsym_1.0.2g-1ubuntu11_armhf.ddeb 6bfe6c4afa6f55ec724f749f5d54b8af 816 debian-installer extra libssl1.0.0-udeb-dbgsym_1.0.2g-1ubuntu11_armhf.ddeb 957e77bdbbefa4459899504a39aba32b 114970 debian-installer optional libssl1.0.0-udeb_1.0.2g-1ubuntu11_armhf.udeb 38af28919c4c41d009d73e02f43899b1 717424 libs important libssl1.0.0_1.0.2g-1ubuntu11_armhf.deb 3188abbdc94eae90a80a4f218d633bc3 1058 utils extra openssl-dbgsym_1.0.2g-1ubuntu11_armhf.ddeb cf257287994aa4bddf992790c0f3f1e3 485064 utils optional openssl_1.0.2g-1ubuntu11_armhf.deb db839e790a8e297eb743a934e2bff799 20618 raw-translations - openssl_1.0.2g-1ubuntu11_armhf_translations.tar.gz Original-Maintainer: Debian OpenSSL Team Package-Type: udeb