Format: 1.8 Date: Wed, 17 Feb 2021 08:14:40 -0500 Source: openssl Binary: openssl libssl1.0.0 libcrypto1.0.0-udeb libssl1.0.0-udeb libssl-dev libssl-doc libssl1.0.0-dbg Architecture: armhf armhf_translations Version: 1.0.2g-1ubuntu4.19 Distribution: xenial Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Marc Deslauriers Description: libcrypto1.0.0-udeb - Secure Sockets Layer toolkit - libcrypto udeb (udeb) libssl-dev - Secure Sockets Layer toolkit - development files libssl-doc - Secure Sockets Layer toolkit - development documentation libssl1.0.0 - Secure Sockets Layer toolkit - shared libraries libssl1.0.0-dbg - Secure Sockets Layer toolkit - debug information libssl1.0.0-udeb - ssl shared library - udeb (udeb) openssl - Secure Sockets Layer toolkit - cryptographic utility Changes: openssl (1.0.2g-1ubuntu4.19) xenial-security; urgency=medium . * SECURITY UPDATE: Integer overflow in CipherUpdate - debian/patches/CVE-2021-23840-pre1.patch: add new EVP error codes in crypto/evp/evp_err.c, crypto/evp/evp.h. - debian/patches/CVE-2021-23840-pre2.patch: add a new EVP error code in crypto/evp/evp_err.c, crypto/evp/evp.h. - debian/patches/CVE-2021-23840.patch: don't overflow the output length in EVP_CipherUpdate calls in crypto/evp/evp_enc.c, crypto/evp/evp_err.c, crypto/evp/evp.h. - CVE-2021-23840 * SECURITY UPDATE: Null pointer deref in X509_issuer_and_serial_hash() - debian/patches/CVE-2021-23841.patch: fix Null pointer deref in crypto/x509/x509_cmp.c. - CVE-2021-23841 Checksums-Sha1: 43a80823f2dc1a4aa76060c37a63009cc8a78763 938 libcrypto1.0.0-udeb-dbgsym_1.0.2g-1ubuntu4.19_armhf.ddeb 4cd3142f0a45a314b255f81195043af76052dad0 515984 libcrypto1.0.0-udeb_1.0.2g-1ubuntu4.19_armhf.udeb 18ee58a92cec0f82f7dbbc737a5583ec5b7ca62f 928 libssl-dev-dbgsym_1.0.2g-1ubuntu4.19_armhf.ddeb 158c87ec433214cd4c6f03314684b2e6a7f7e3f4 983748 libssl-dev_1.0.2g-1ubuntu4.19_armhf.deb 6a3bf1e490721723745c439960ad72e5051103f7 2588298 libssl1.0.0-dbg_1.0.2g-1ubuntu4.19_armhf.deb 834f439aaf30eccb8e4682f8dcc1562d4b409c8f 904 libssl1.0.0-dbgsym_1.0.2g-1ubuntu4.19_armhf.ddeb f5eede6eed6a68e8f1462518d6d2f6ce9c855867 824 libssl1.0.0-udeb-dbgsym_1.0.2g-1ubuntu4.19_armhf.ddeb 35ece949e3140dfc6826d048e6cb56ed0eb85bf2 113818 libssl1.0.0-udeb_1.0.2g-1ubuntu4.19_armhf.udeb afdc6554b437b66d294acc84bb906990057d51ba 712834 libssl1.0.0_1.0.2g-1ubuntu4.19_armhf.deb b8c5d2f9ed34ac1f9941959c3fb43e395910c977 1060 openssl-dbgsym_1.0.2g-1ubuntu4.19_armhf.ddeb ac21570eeee75fe10c19c0bb9ccb142f80ed984b 485268 openssl_1.0.2g-1ubuntu4.19_armhf.deb ab33ae36a79ade484733915c6ddd973d71d9c02f 20519 openssl_1.0.2g-1ubuntu4.19_armhf_translations.tar.gz Checksums-Sha256: 548e3bda32eb2e8851062cb978e8c508b24c0e21c0a5861e29daa241953edce4 938 libcrypto1.0.0-udeb-dbgsym_1.0.2g-1ubuntu4.19_armhf.ddeb c8a6f6cd4f643c7a1f4c01c4f03b4b721d9db33aa26ea2ba87efbc770dfe3530 515984 libcrypto1.0.0-udeb_1.0.2g-1ubuntu4.19_armhf.udeb 562686b7d91d1523c5da3f75ae6f57796d9cec1473fa1e7dec3c6c79e812241c 928 libssl-dev-dbgsym_1.0.2g-1ubuntu4.19_armhf.ddeb a447268b44f97cf1a03f11562a678678b682d9069aba9b56e647cc54a659a97a 983748 libssl-dev_1.0.2g-1ubuntu4.19_armhf.deb 12cebf3ef8db8680f2449baee3efad41daa3aafbebb5066d2344692c5e5920d7 2588298 libssl1.0.0-dbg_1.0.2g-1ubuntu4.19_armhf.deb 95e6e88ec20767a4b3c32f0da0a21b184d32c2189554ff5aebd6befedd744250 904 libssl1.0.0-dbgsym_1.0.2g-1ubuntu4.19_armhf.ddeb efcdbd251c36960ae35e092fdf391fbe73325e80a9b69ec36aac5160874c28cd 824 libssl1.0.0-udeb-dbgsym_1.0.2g-1ubuntu4.19_armhf.ddeb 2d462e8197b359f3a8a10ea082299262438ccedd5ed84367cb82e364c2aa17e7 113818 libssl1.0.0-udeb_1.0.2g-1ubuntu4.19_armhf.udeb 55f7ab0287a557bcd9138866b6ac3e87bfb2aa3ce67dc7cab79df51d5e3e2f5f 712834 libssl1.0.0_1.0.2g-1ubuntu4.19_armhf.deb 9af5c1a2d586ea358f2384d0021bf108cc18949a86f660274b6792bb83ff554e 1060 openssl-dbgsym_1.0.2g-1ubuntu4.19_armhf.ddeb 2692375faaae5530f7d805a20d790f80336ce34f4bcbe21415bdb4183a016b53 485268 openssl_1.0.2g-1ubuntu4.19_armhf.deb b3fb3691a457207cbe2360ef67ccc3f5cfdd46385c7c1883b5d2c14956f065f5 20519 openssl_1.0.2g-1ubuntu4.19_armhf_translations.tar.gz Files: fbe02b1334ef93a297da6cdbdbe6e9f4 938 debian-installer extra libcrypto1.0.0-udeb-dbgsym_1.0.2g-1ubuntu4.19_armhf.ddeb ddae6ff236a303820e5864521866e2a1 515984 debian-installer optional libcrypto1.0.0-udeb_1.0.2g-1ubuntu4.19_armhf.udeb 5223764ce257e200aee947f543fc5887 928 libdevel extra libssl-dev-dbgsym_1.0.2g-1ubuntu4.19_armhf.ddeb 0236d83cd61cec3f1b3e290fecf12cd5 983748 libdevel optional libssl-dev_1.0.2g-1ubuntu4.19_armhf.deb 92fdbad201a99e54dd64bca136c8caa3 2588298 debug extra libssl1.0.0-dbg_1.0.2g-1ubuntu4.19_armhf.deb d66df3b0310d0512fd923420703f1fdd 904 libs extra libssl1.0.0-dbgsym_1.0.2g-1ubuntu4.19_armhf.ddeb 2164b25dc3edb34a13af13b6a79715c2 824 debian-installer extra libssl1.0.0-udeb-dbgsym_1.0.2g-1ubuntu4.19_armhf.ddeb 7d1ce277d9581d8fd10b469eeac06b6f 113818 debian-installer optional libssl1.0.0-udeb_1.0.2g-1ubuntu4.19_armhf.udeb 8a9fd6ae4e2b8127998a9725cdcbe054 712834 libs important libssl1.0.0_1.0.2g-1ubuntu4.19_armhf.deb f37dab6f5104f0ccdc745c938f3782f5 1060 utils extra openssl-dbgsym_1.0.2g-1ubuntu4.19_armhf.ddeb 9ec0987ad7e98dee9dd988ec613e3876 485268 utils optional openssl_1.0.2g-1ubuntu4.19_armhf.deb e3ca5e907b48d2db71d1109113cfaed5 20519 raw-translations - openssl_1.0.2g-1ubuntu4.19_armhf_translations.tar.gz Original-Maintainer: Debian OpenSSL Team Package-Type: udeb