Format: 1.8
Date: Wed, 02 Dec 2020 09:43:55 -0500
Source: openssl
Binary: libcrypto1.1-udeb libssl-dev libssl-doc libssl1.1 libssl1.1-udeb openssl
Architecture: amd64 all amd64_translations
Version: 1.1.1f-1ubuntu4.1
Distribution: groovy
Urgency: medium
Maintainer: Launchpad Build Daemon <buildd@lcy01-amd64-003.buildd>
Changed-By: Marc Deslauriers <marc.deslauriers@ubuntu.com>
Description:
 libcrypto1.1-udeb - Secure Sockets Layer toolkit - libcrypto udeb (udeb)
 libssl-dev - Secure Sockets Layer toolkit - development files
 libssl-doc - Secure Sockets Layer toolkit - development documentation
 libssl1.1  - Secure Sockets Layer toolkit - shared libraries
 libssl1.1-udeb - ssl shared library - udeb (udeb)
 openssl    - Secure Sockets Layer toolkit - cryptographic utility
Changes:
 openssl (1.1.1f-1ubuntu4.1) groovy-security; urgency=medium
 .
   * SECURITY UPDATE: EDIPARTYNAME NULL pointer de-ref
     - debian/patches/CVE-2020-1971-1.patch: use explicit tagging for
       DirectoryString in crypto/x509v3/v3_genn.c.
     - debian/patches/CVE-2020-1971-2.patch: correctly compare EdiPartyName
       in crypto/x509v3/v3_genn.c.
     - debian/patches/CVE-2020-1971-3.patch: check that multi-strings/CHOICE
       types don't use implicit tagging in crypto/asn1/asn1_err.c,
       crypto/asn1/tasn_dec.c, crypto/err/openssl.txt,
       include/openssl/asn1err.h.
     - debian/patches/CVE-2020-1971-4.patch: complain if we are attempting
       to encode with an invalid ASN.1 template in crypto/asn1/asn1_err.c,
       crypto/asn1/tasn_enc.c, crypto/err/openssl.txt,
       include/openssl/asn1err.h.
     - debian/patches/CVE-2020-1971-5.patch: add a test for GENERAL_NAME_cmp
       in test/v3nametest.c.
     - debian/patches/CVE-2020-1971-6.patch: add a test for
       encoding/decoding using an invalid ASN.1 Template in
       test/asn1_decode_test.c, test/asn1_encode_test.c.
     - CVE-2020-1971
Checksums-Sha1:
 91995894532b01cb197445658d03d4d3a2f743c6 1092016 libcrypto1.1-udeb_1.1.1f-1ubuntu4.1_amd64.udeb
 2c70816a4c96442e5adfbd35cd71e8a85f8198c0 1586124 libssl-dev_1.1.1f-1ubuntu4.1_amd64.deb
 d4bf9a2a48db80cdd3b285f39caa74ef9db9bbc0 1519904 libssl-doc_1.1.1f-1ubuntu4.1_all.deb
 8b7f395036f26e4942dd5a6bb9f36aa927895e70 3050884 libssl1.1-dbgsym_1.1.1f-1ubuntu4.1_amd64.ddeb
 d9b99b9cf8f1d1c62f513656627ee09b9934aaab 190584 libssl1.1-udeb_1.1.1f-1ubuntu4.1_amd64.udeb
 d9226c4e6c59ec4e893230a7fbe71964f53b90b8 1323980 libssl1.1_1.1.1f-1ubuntu4.1_amd64.deb
 2e79a4182bcaa004a1adb18a05779466c3525db2 556708 openssl-dbgsym_1.1.1f-1ubuntu4.1_amd64.ddeb
 90f3e7df1418275b40aad41ab48f1ea1fae8106b 7888 openssl_1.1.1f-1ubuntu4.1_amd64.buildinfo
 aca4ccf40d6089898af8c247679c6f76e1252466 621052 openssl_1.1.1f-1ubuntu4.1_amd64.deb
 fa653223680bd3b1a2d64bbf744da4bab7c8d748 27659 openssl_1.1.1f-1ubuntu4.1_amd64_translations.tar.gz
Checksums-Sha256:
 abcfd0b7dc5cac3cb2e477ef755098bd62ee275f08fefbd2b419a2a70272a33b 1092016 libcrypto1.1-udeb_1.1.1f-1ubuntu4.1_amd64.udeb
 9ee7dc86c14dd0bb101918999799b886ed7a18c66cef90b46fa82a97b04ea86e 1586124 libssl-dev_1.1.1f-1ubuntu4.1_amd64.deb
 90889958f3dba085859cab291a445e060e585a4202049bb2e41f3324562e09c2 1519904 libssl-doc_1.1.1f-1ubuntu4.1_all.deb
 115c42cfc945ddd9a46ccd3e379b68395569d62c20a096199edf0ee48c3d5fba 3050884 libssl1.1-dbgsym_1.1.1f-1ubuntu4.1_amd64.ddeb
 c5a2f29ae1bf4cafeb4a2f431f46861a830111487c3addd5ece4fb3f15aa429d 190584 libssl1.1-udeb_1.1.1f-1ubuntu4.1_amd64.udeb
 689c6b4e30f42f988d0123004df59beae85f5337520ffe88f391e24e1903e69a 1323980 libssl1.1_1.1.1f-1ubuntu4.1_amd64.deb
 7862cd4143eb4b1a4a1e3a1427612dcd014b2240ab446e507c876972d66b0b64 556708 openssl-dbgsym_1.1.1f-1ubuntu4.1_amd64.ddeb
 1cf83de0ce65d3e009926e015c7813cd46b3bdfe4f4b1fe4dafd3d74f7851510 7888 openssl_1.1.1f-1ubuntu4.1_amd64.buildinfo
 ae3c4777f781e1fab8a13fef37425e45c8848858dc1952c9acf6983e5dc146c6 621052 openssl_1.1.1f-1ubuntu4.1_amd64.deb
 5101eb0ce0791b211a2a5dc25d5e50af9639ca44ec3fa5097f747407803b5aad 27659 openssl_1.1.1f-1ubuntu4.1_amd64_translations.tar.gz
Files:
 3a26893200ef56c1f491afd5c10fffa5 1092016 debian-installer optional libcrypto1.1-udeb_1.1.1f-1ubuntu4.1_amd64.udeb
 c32ed2536e4748c735ea048f71baf22e 1586124 libdevel optional libssl-dev_1.1.1f-1ubuntu4.1_amd64.deb
 fe5ba8f5221c6219ad99d7f9eb7bd22e 1519904 doc optional libssl-doc_1.1.1f-1ubuntu4.1_all.deb
 64cc0223f83e03acfe887760bb8f693f 3050884 debug optional libssl1.1-dbgsym_1.1.1f-1ubuntu4.1_amd64.ddeb
 4cbd080814be5c61a5a03b378785f3db 190584 debian-installer optional libssl1.1-udeb_1.1.1f-1ubuntu4.1_amd64.udeb
 93c89268d4ea51cda106b64f8b3f254f 1323980 libs optional libssl1.1_1.1.1f-1ubuntu4.1_amd64.deb
 c77e267c32f8cb9b1ed4bee544ae584c 556708 debug optional openssl-dbgsym_1.1.1f-1ubuntu4.1_amd64.ddeb
 0058ce973f1d520b52f7d13306221ac1 7888 utils optional openssl_1.1.1f-1ubuntu4.1_amd64.buildinfo
 2cca727b2d02f36b7f075ecada97d288 621052 utils optional openssl_1.1.1f-1ubuntu4.1_amd64.deb
 a122a6c7e3172c2b9def74d5d1d841d1 27659 raw-translations - openssl_1.1.1f-1ubuntu4.1_amd64_translations.tar.gz
Original-Maintainer: Debian OpenSSL Team <pkg-openssl-devel@lists.alioth.debian.org>