Format: 1.8
Date: Mon, 17 Apr 2023 15:11:39 -0300
Source: openssl
Binary: libcrypto1.1-udeb libssl-dev libssl1.1 libssl1.1-udeb openssl
Architecture: s390x s390x_translations
Version: 1.1.1f-1ubuntu2.18
Distribution: focal
Urgency: medium
Maintainer: Launchpad Build Daemon <buildd@bos02-s390x-007.buildd>
Changed-By: Camila Camargo de Matos <camila.camargodematos@canonical.com>
Description:
 libcrypto1.1-udeb - Secure Sockets Layer toolkit - libcrypto udeb (udeb)
 libssl-dev - Secure Sockets Layer toolkit - development files
 libssl1.1  - Secure Sockets Layer toolkit - shared libraries
 libssl1.1-udeb - ssl shared library - udeb (udeb)
 openssl    - Secure Sockets Layer toolkit - cryptographic utility
Changes:
 openssl (1.1.1f-1ubuntu2.18) focal-security; urgency=medium
 .
   * SECURITY UPDATE: excessive resource use when verifying policy constraints
     - debian/patches/CVE-2023-0464-1.patch: limit the number of nodes created
       in a policy tree (the default limit is set to 1000 nodes).
     - debian/patches/CVE-2023-0464-2.patch: add test cases for the policy
       resource overuse.
     - debian/patches/CVE-2023-0464-3.patch: disable the policy tree
       exponential growth test conditionally.
     - CVE-2023-0464
   * SECURITY UPDATE: invalid certificate policies ignored in leaf certificates
     - debian/patches/CVE-2023-0465-1.patch: ensure that EXFLAG_INVALID_POLICY
       is checked even in leaf certs.
     - debian/patches/CVE-2023-0465-2.patch: generate some certificates with
       the certificatePolicies extension.
     - debian/patches/CVE-2023-0465-3.patch: add a certificate policies test.
     - CVE-2023-0466
   * SECURITY UPDATE: certificate policy check in X509_VERIFY_PARAM_add0_policy
     not enabled as documented
     - debian/patches/CVE-2023-0466.patch: fix documentation of
       X509_VERIFY_PARAM_add0_policy().
     - CVE-2023-0466
Checksums-Sha1:
 032664e6d2679951930bd50addc7c046bc037a28 777768 libcrypto1.1-udeb_1.1.1f-1ubuntu2.18_s390x.udeb
 fe2312a6f516df0111e1cebffb6e530c16201e68 1257832 libssl-dev_1.1.1f-1ubuntu2.18_s390x.deb
 f1e9774e75c4d2d462670447e692c9a882f5d731 2967124 libssl1.1-dbgsym_1.1.1f-1ubuntu2.18_s390x.ddeb
 67665dd8e10ff3a1fbe5aaaff1a700223a26f23b 169736 libssl1.1-udeb_1.1.1f-1ubuntu2.18_s390x.udeb
 64adbacac9630d0216b437ac73104593b7075181 985468 libssl1.1_1.1.1f-1ubuntu2.18_s390x.deb
 31e0c35e4648ab530ac8b367256281b2263b329e 545128 openssl-dbgsym_1.1.1f-1ubuntu2.18_s390x.ddeb
 c430624c8e72792b25781cc69c395472508ce5a3 7347 openssl_1.1.1f-1ubuntu2.18_s390x.buildinfo
 279f8b36bbe0bfc888d5d959e91b9554d0824861 606116 openssl_1.1.1f-1ubuntu2.18_s390x.deb
 1f09587b240f7df01d9f4bb41c4c3a84efca9b6c 27130 openssl_1.1.1f-1ubuntu2.18_s390x_translations.tar.gz
Checksums-Sha256:
 2fca433bdec9c8f534bef27e69b9cf2e4f5d1813cb0df524b89234988a6af12f 777768 libcrypto1.1-udeb_1.1.1f-1ubuntu2.18_s390x.udeb
 834f04ee98da257f0111cdd99cba7d91cb5732e73f1a6f2bdb4f8a94fd46dac3 1257832 libssl-dev_1.1.1f-1ubuntu2.18_s390x.deb
 1e01e3a2890d4a963aa11860e0348cf8abdfd03a3fb65a34ed7f84d7fd3ccd92 2967124 libssl1.1-dbgsym_1.1.1f-1ubuntu2.18_s390x.ddeb
 eaeea961cc3d48e8c43a0087554c60bd99aaa4131c41ee18b96b317e9bc11368 169736 libssl1.1-udeb_1.1.1f-1ubuntu2.18_s390x.udeb
 405448d3a1cfe13bc8e6db347e9d040b6cc319149593a1388beb42c58f5301e0 985468 libssl1.1_1.1.1f-1ubuntu2.18_s390x.deb
 5475d4a3bab519cde6739d2585c967d8d716d4d522b266571ef08e47efccfdfa 545128 openssl-dbgsym_1.1.1f-1ubuntu2.18_s390x.ddeb
 5c012709dd8af99ec1bc200f8107fd2a9e180ab2029dcc5dec902a3c24ec9c9c 7347 openssl_1.1.1f-1ubuntu2.18_s390x.buildinfo
 1628d0b7ba88ef7cdae12cf2fa8dbe778e8e0f2eec2b2be8c38d7e0f4fc7c5d2 606116 openssl_1.1.1f-1ubuntu2.18_s390x.deb
 57e9da9be4ba31116fa6e23cf3e564b3582f941c8be1fcc40a56c8d221b456c9 27130 openssl_1.1.1f-1ubuntu2.18_s390x_translations.tar.gz
Files:
 886734670f96b8cfe92e4db20d8c4b91 777768 debian-installer optional libcrypto1.1-udeb_1.1.1f-1ubuntu2.18_s390x.udeb
 0793782e788e828e0580d864e2b64e7d 1257832 libdevel optional libssl-dev_1.1.1f-1ubuntu2.18_s390x.deb
 3800725275734aa1f7e6029e7ee59f60 2967124 debug optional libssl1.1-dbgsym_1.1.1f-1ubuntu2.18_s390x.ddeb
 e15126cb4268b1b744745c64410b3c35 169736 debian-installer optional libssl1.1-udeb_1.1.1f-1ubuntu2.18_s390x.udeb
 b161006a2bda3ad866707d515e0858f9 985468 libs optional libssl1.1_1.1.1f-1ubuntu2.18_s390x.deb
 0a473897c2eee4bc32f2e88faa0ac2cd 545128 debug optional openssl-dbgsym_1.1.1f-1ubuntu2.18_s390x.ddeb
 48faafc2d286adaf6777b48a82193eb9 7347 utils optional openssl_1.1.1f-1ubuntu2.18_s390x.buildinfo
 846d63694ac1905642d327dc8d98c793 606116 utils optional openssl_1.1.1f-1ubuntu2.18_s390x.deb
 9d459710d828d57299c1369b290f368b 27130 raw-translations - openssl_1.1.1f-1ubuntu2.18_s390x_translations.tar.gz
Original-Maintainer: Debian OpenSSL Team <pkg-openssl-devel@lists.alioth.debian.org>