Format: 1.8
Date: Wed, 15 Oct 2014 12:56:03 -0400
Source: openssl
Binary: openssl libssl1.0.0 libcrypto1.0.0-udeb libssl1.0.0-udeb libssl-dev libssl-doc libssl1.0.0-dbg
Architecture: armhf armhf_translations
Version: 1.0.1f-1ubuntu2.7
Distribution: trusty
Urgency: medium
Maintainer: Ubuntu/armhf Build Daemon <buildd@kishi06.buildd>
Changed-By: Marc Deslauriers <marc.deslauriers@ubuntu.com>
Description: 
 libcrypto1.0.0-udeb - Secure Sockets Layer toolkit - libcrypto udeb (udeb)
 libssl-dev - Secure Sockets Layer toolkit - development files
 libssl-doc - Secure Sockets Layer toolkit - development documentation
 libssl1.0.0 - Secure Sockets Layer toolkit - shared libraries
 libssl1.0.0-dbg - Secure Sockets Layer toolkit - debug information
 libssl1.0.0-udeb - ssl shared library - udeb (udeb)
 openssl    - Secure Sockets Layer toolkit - cryptographic utility
Changes: 
 openssl (1.0.1f-1ubuntu2.7) trusty-security; urgency=medium
 .
   * SECURITY UPDATE: denial of service via DTLS SRTP memory leak
     - debian/patches/CVE-2014-3513.patch: fix logic in ssl/d1_srtp.c,
       ssl/srtp.h, ssl/t1_lib.c, util/mk1mf.pl, util/mkdef.pl,
       util/ssleay.num.
     - CVE-2014-3513
   * SECURITY UPDATE: denial of service via session ticket integrity check
     memory leak
     - debian/patches/CVE-2014-3567.patch: perform cleanup in ssl/t1_lib.c.
     - CVE-2014-3567
   * SECURITY UPDATE: fix the no-ssl3 build option
     - debian/patches/CVE-2014-3568.patch: fix conditional code in
       ssl/s23_clnt.c, ssl/s23_srvr.c.
     - CVE-2014-3568
   * SECURITY IMPROVEMENT: Added TLS_FALLBACK_SCSV support to mitigate a
     protocol downgrade attack to SSLv3 that exposes the POODLE attack.
     - debian/patches/tls_fallback_scsv_support.patch: added support for
       TLS_FALLBACK_SCSV in apps/s_client.c, crypto/err/openssl.ec,
       ssl/d1_lib.c, ssl/dtls1.h, ssl/s23_clnt.c, ssl/s23_srvr.c,
       ssl/s2_lib.c, ssl/s3_enc.c, ssl/s3_lib.c, ssl/ssl.h, ssl/ssl3.h,
       ssl/ssl_err.c, ssl/ssl_lib.c, ssl/t1_enc.c, ssl/tls1.h,
       doc/apps/s_client.pod, doc/ssl/SSL_CTX_set_mode.pod.
Checksums-Sha1: 
 665eef396df742d5bc7fc748b5b488dbf5c41cd4 488478 openssl_1.0.1f-1ubuntu2.7_armhf.deb
 29b701961199850f616d88ea8ef2d0e2496a610a 655834 libssl1.0.0_1.0.1f-1ubuntu2.7_armhf.deb
 99b484a97b94e2262b83e6049dd89946b23e90ae 470778 libcrypto1.0.0-udeb_1.0.1f-1ubuntu2.7_armhf.udeb
 ac6db616ce882fa0766ed0fa8dd4cc7c8b893a3e 102726 libssl1.0.0-udeb_1.0.1f-1ubuntu2.7_armhf.udeb
 08752a44c3f398cd24cf2b64228b8e92d63dd94d 909744 libssl-dev_1.0.1f-1ubuntu2.7_armhf.deb
 1c4d703a32e3d54049b8c40bb827d56dcbc846c4 2533470 libssl1.0.0-dbg_1.0.1f-1ubuntu2.7_armhf.deb
 3470fb52c2ae601b93adeacac23731b8dd1d9df6 20215 openssl_1.0.1f-1ubuntu2.7_armhf_translations.tar.gz
Checksums-Sha256: 
 6ab14eccb74c79704d53a37528979d8d0c8f74d37245a621a366a95bc6542fc6 488478 openssl_1.0.1f-1ubuntu2.7_armhf.deb
 87ab3467f774948e36a4a30f75d10cf22cad66533ac6845f71d5c4e2665840d2 655834 libssl1.0.0_1.0.1f-1ubuntu2.7_armhf.deb
 f48f495a8c6364aaa1019267365c681a6d31b9b55dacbb600eaa5ffc7f4f5a2b 470778 libcrypto1.0.0-udeb_1.0.1f-1ubuntu2.7_armhf.udeb
 2208ca02004493202fbf42c0de28b7b26df1945e8a9fb196017798d08e638d44 102726 libssl1.0.0-udeb_1.0.1f-1ubuntu2.7_armhf.udeb
 ef1682aa191520f959ca41378dd4e6f1e2cd7f75b6e54634291c438ca2570151 909744 libssl-dev_1.0.1f-1ubuntu2.7_armhf.deb
 5f0794215cc6ca2418c2d529a4756c6ba5f5683941f66acd9c882f3b8f7f53aa 2533470 libssl1.0.0-dbg_1.0.1f-1ubuntu2.7_armhf.deb
 13ab213d79836af4fb73a38974d5447aa64cfa09259bc57c87ba7b76f593a02e 20215 openssl_1.0.1f-1ubuntu2.7_armhf_translations.tar.gz
Files: 
 3ba8e80cb02e9b5b3b64a0e5bc0be2e7 488478 utils optional openssl_1.0.1f-1ubuntu2.7_armhf.deb
 62301f92dded3f0ce1dd55af06e79c05 655834 libs important libssl1.0.0_1.0.1f-1ubuntu2.7_armhf.deb
 1e8c487007d3f932eae81494549bc7b7 470778 debian-installer optional libcrypto1.0.0-udeb_1.0.1f-1ubuntu2.7_armhf.udeb
 aa0bad6ec47675518a719924225ab777 102726 debian-installer optional libssl1.0.0-udeb_1.0.1f-1ubuntu2.7_armhf.udeb
 090a29b428e166ef7a34d996797754d0 909744 libdevel optional libssl-dev_1.0.1f-1ubuntu2.7_armhf.deb
 90a2709a66f3998a4b8aefe813bde62c 2533470 debug extra libssl1.0.0-dbg_1.0.1f-1ubuntu2.7_armhf.deb
 9a1bd17aa19826d75c7043603c04ad5c 20215 raw-translations - openssl_1.0.1f-1ubuntu2.7_armhf_translations.tar.gz
Original-Maintainer: Debian OpenSSL Team <pkg-openssl-devel@lists.alioth.debian.org>
Package-Type: udeb