Format: 1.8
Date: Wed, 15 Oct 2014 12:56:03 -0400
Source: openssl
Binary: openssl libssl1.0.0 libcrypto1.0.0-udeb libssl1.0.0-udeb libssl-dev libssl-doc libssl1.0.0-dbg
Architecture: all i386_translations i386
Version: 1.0.1f-1ubuntu2.7
Distribution: trusty
Urgency: medium
Maintainer: Ubuntu/amd64 Build Daemon <buildd@panlong.buildd>
Changed-By: Marc Deslauriers <marc.deslauriers@ubuntu.com>
Description: 
 libcrypto1.0.0-udeb - Secure Sockets Layer toolkit - libcrypto udeb (udeb)
 libssl-dev - Secure Sockets Layer toolkit - development files
 libssl-doc - Secure Sockets Layer toolkit - development documentation
 libssl1.0.0 - Secure Sockets Layer toolkit - shared libraries
 libssl1.0.0-dbg - Secure Sockets Layer toolkit - debug information
 libssl1.0.0-udeb - ssl shared library - udeb (udeb)
 openssl    - Secure Sockets Layer toolkit - cryptographic utility
Changes: 
 openssl (1.0.1f-1ubuntu2.7) trusty-security; urgency=medium
 .
   * SECURITY UPDATE: denial of service via DTLS SRTP memory leak
     - debian/patches/CVE-2014-3513.patch: fix logic in ssl/d1_srtp.c,
       ssl/srtp.h, ssl/t1_lib.c, util/mk1mf.pl, util/mkdef.pl,
       util/ssleay.num.
     - CVE-2014-3513
   * SECURITY UPDATE: denial of service via session ticket integrity check
     memory leak
     - debian/patches/CVE-2014-3567.patch: perform cleanup in ssl/t1_lib.c.
     - CVE-2014-3567
   * SECURITY UPDATE: fix the no-ssl3 build option
     - debian/patches/CVE-2014-3568.patch: fix conditional code in
       ssl/s23_clnt.c, ssl/s23_srvr.c.
     - CVE-2014-3568
   * SECURITY IMPROVEMENT: Added TLS_FALLBACK_SCSV support to mitigate a
     protocol downgrade attack to SSLv3 that exposes the POODLE attack.
     - debian/patches/tls_fallback_scsv_support.patch: added support for
       TLS_FALLBACK_SCSV in apps/s_client.c, crypto/err/openssl.ec,
       ssl/d1_lib.c, ssl/dtls1.h, ssl/s23_clnt.c, ssl/s23_srvr.c,
       ssl/s2_lib.c, ssl/s3_enc.c, ssl/s3_lib.c, ssl/ssl.h, ssl/ssl3.h,
       ssl/ssl_err.c, ssl/ssl_lib.c, ssl/t1_enc.c, ssl/tls1.h,
       doc/apps/s_client.pod, doc/ssl/SSL_CTX_set_mode.pod.
Checksums-Sha1: 
 0d1047c51e1fa3417804c141a7d4df96e5337fb2 965958 libssl-doc_1.0.1f-1ubuntu2.7_all.deb
 1b8158e326c3109831c4d7e6c23056d5b8ffdc07 20447 openssl_1.0.1f-1ubuntu2.7_i386_translations.tar.gz
 bb883489f91adb7006c70a72425bd43676160cb3 479308 openssl_1.0.1f-1ubuntu2.7_i386.deb
 3e5d850670b5b827cc9262a81b46bd6955289c25 777850 libssl1.0.0_1.0.1f-1ubuntu2.7_i386.deb
 89872cbacbc2b89c9de71db7a8cf32037a76f99d 568754 libcrypto1.0.0-udeb_1.0.1f-1ubuntu2.7_i386.udeb
 092366ecd5ca16a41e6a3849237905c5d0edf4c2 121850 libssl1.0.0-udeb_1.0.1f-1ubuntu2.7_i386.udeb
 259d8f2c484696b1acca5c7ea6653edf9dab1e73 986990 libssl-dev_1.0.1f-1ubuntu2.7_i386.deb
 537e08596ad7a143a1c2734278b84a6ea55f20e6 2344796 libssl1.0.0-dbg_1.0.1f-1ubuntu2.7_i386.deb
Checksums-Sha256: 
 9a7aae464da9f1d1a22f8c1c1a02efd3929499cf11d5418864a7f19a1007ef1a 965958 libssl-doc_1.0.1f-1ubuntu2.7_all.deb
 f26afb3c60256f3cea493c614a14544da03b4687f0a16cdd87130fcc482e5c84 20447 openssl_1.0.1f-1ubuntu2.7_i386_translations.tar.gz
 50080f2ef4f0d1985cc5b2b15c5e3ef8a7baac6fb5c77999468e5207aa9b8e3e 479308 openssl_1.0.1f-1ubuntu2.7_i386.deb
 960675c6d646eafaee34021faf8a63d71d549ab007f6b1db5823773fe2724f0c 777850 libssl1.0.0_1.0.1f-1ubuntu2.7_i386.deb
 e5fe0a262413281e5a7b1d96eff3f05c8d7d62a65d570b78720296318030fd40 568754 libcrypto1.0.0-udeb_1.0.1f-1ubuntu2.7_i386.udeb
 be3829defe53992a37bc058011c43f51e034a19f3b62f63c14bec0bfd89e978a 121850 libssl1.0.0-udeb_1.0.1f-1ubuntu2.7_i386.udeb
 c370a74c3fa1c92db61fcc8f26488d96e70d321dfc7858739d35d0bec2d127ba 986990 libssl-dev_1.0.1f-1ubuntu2.7_i386.deb
 ca7d4acfbcd0f27b558c340172901c597ba23ac0a51bbdaf5f4bc661595c321b 2344796 libssl1.0.0-dbg_1.0.1f-1ubuntu2.7_i386.deb
Files: 
 60229805132a77bf7aeb713f067af72b 965958 doc optional libssl-doc_1.0.1f-1ubuntu2.7_all.deb
 f0763645eec47df40cfe9edba0271150 20447 raw-translations - openssl_1.0.1f-1ubuntu2.7_i386_translations.tar.gz
 b94fa8392c0ef7fa4bfe887ceedbb4fa 479308 utils optional openssl_1.0.1f-1ubuntu2.7_i386.deb
 0d02e354749a8ea6b28ee664ee4dda17 777850 libs important libssl1.0.0_1.0.1f-1ubuntu2.7_i386.deb
 d10d9ae0072d1b03bb384e20f73b2e99 568754 debian-installer optional libcrypto1.0.0-udeb_1.0.1f-1ubuntu2.7_i386.udeb
 0d80904fbc342006dc5941a5e624f58f 121850 debian-installer optional libssl1.0.0-udeb_1.0.1f-1ubuntu2.7_i386.udeb
 a4a8004b07ec54b223d998dc4a40df1c 986990 libdevel optional libssl-dev_1.0.1f-1ubuntu2.7_i386.deb
 d7ba0fae59e235bc466e35c1298f1a4e 2344796 debug extra libssl1.0.0-dbg_1.0.1f-1ubuntu2.7_i386.deb
Original-Maintainer: Debian OpenSSL Team <pkg-openssl-devel@lists.alioth.debian.org>
Package-Type: udeb