Format: 1.8 Date: Thu, 11 Jun 2015 07:10:41 -0400 Source: openssl Binary: openssl libssl1.0.0 libcrypto1.0.0-udeb libssl1.0.0-udeb libssl-dev libssl-doc libssl1.0.0-dbg Architecture: all amd64_translations amd64 Version: 1.0.1f-1ubuntu11.4 Distribution: vivid Urgency: medium Maintainer: Ubuntu/amd64 Build Daemon Changed-By: Marc Deslauriers Description: libcrypto1.0.0-udeb - Secure Sockets Layer toolkit - libcrypto udeb (udeb) libssl-dev - Secure Sockets Layer toolkit - development files libssl-doc - Secure Sockets Layer toolkit - development documentation libssl1.0.0 - Secure Sockets Layer toolkit - shared libraries libssl1.0.0-dbg - Secure Sockets Layer toolkit - debug information libssl1.0.0-udeb - ssl shared library - udeb (udeb) openssl - Secure Sockets Layer toolkit - cryptographic utility Changes: openssl (1.0.1f-1ubuntu11.4) vivid-security; urgency=medium . * SECURITY IMPROVEMENT: reject dh keys smaller than 768 bits - debian/patches/reject_small_dh.patch: reject small dh keys in ssl/s3_clnt.c, ssl/ssl.h, ssl/ssl_err.c, update documentation in doc/ssl/SSL_CTX_set_tmp_dh_callback.pod, make s_server use 2048-bit dh in apps/s_server.c, clarify docs in doc/apps/dhparam.pod. * SECURITY UPDATE: denial of service and possible code execution via invalid free in DTLS - debian/patches/CVE-2014-8176.patch: fix invalid free in ssl/d1_lib.c. - CVE-2014-8176 * SECURITY UPDATE: denial of service via malformed ECParameters - debian/patches/CVE-2015-1788.patch: improve logic in crypto/bn/bn_gf2m.c. - CVE-2015-1788 * SECURITY UPDATE: denial of service via out-of-bounds read in X509_cmp_time - debian/patches/CVE-2015-1789.patch: properly parse time format in crypto/x509/x509_vfy.c. - CVE-2015-1789 * SECURITY UPDATE: denial of service via missing EnvelopedContent - debian/patches/CVE-2015-1790.patch: handle NULL data_body in crypto/pkcs7/pk7_doit.c. - CVE-2015-1790 * SECURITY UPDATE: race condition in NewSessionTicket - debian/patches/CVE-2015-1791.patch: create a new session in ssl/s3_clnt.c, ssl/ssl.h, ssl/ssl_err.c, ssl/ssl_locl.h, ssl/ssl_sess.c. - debian/patches/CVE-2015-1791-2.patch: fix kerberos issue in ssl/ssl_sess.c. - debian/patches/CVE-2015-1791-3.patch: more ssl_session_dup fixes in ssl/ssl_sess.c. - CVE-2015-1791 * SECURITY UPDATE: CMS verify infinite loop with unknown hash function - debian/patches/CVE-2015-1792.patch: fix infinite loop in crypto/cms/cms_smime.c. - CVE-2015-1792 Checksums-Sha1: 17534e34876f4e216e003596b0bfca4981857591 962872 libssl-doc_1.0.1f-1ubuntu11.4_all.deb 506e3fa2232ff63c318e9df3325ad829ad3e48a7 20409 openssl_1.0.1f-1ubuntu11.4_amd64_translations.tar.gz 9db09b9473de7c62c570df585a9514310a53bf88 492472 openssl_1.0.1f-1ubuntu11.4_amd64.deb 898f3a2c188a50efd5aff7480b1032ea52bf7170 853204 libssl1.0.0_1.0.1f-1ubuntu11.4_amd64.deb e74d8d785dd9033d59b8bf09fea3adf692bc797a 629838 libcrypto1.0.0-udeb_1.0.1f-1ubuntu11.4_amd64.udeb bda17dff012cc34235f065100e53f9cc7c3c2a25 127482 libssl1.0.0-udeb_1.0.1f-1ubuntu11.4_amd64.udeb ba5384321ad3fac23c3827d6000ec89926603bc2 1088662 libssl-dev_1.0.1f-1ubuntu11.4_amd64.deb 727b2b7684540c973e5b881cdd8f0897c813a5ec 2614240 libssl1.0.0-dbg_1.0.1f-1ubuntu11.4_amd64.deb ed45e9ab4b54d2ac7f02ab6cb7d375770700abab 1120 openssl-dbgsym_1.0.1f-1ubuntu11.4_amd64.ddeb e9ba37cc510d8d809c04c03d060c3354e77bb036 952 libssl1.0.0-dbgsym_1.0.1f-1ubuntu11.4_amd64.ddeb e4daddd905e207b3edfc55320583e3c41520acde 988 libcrypto1.0.0-udeb-dbgsym_1.0.1f-1ubuntu11.4_amd64.ddeb 9f96c998dd7697520a3abe6a2e23aae670fa412e 874 libssl1.0.0-udeb-dbgsym_1.0.1f-1ubuntu11.4_amd64.ddeb c9da59894ebd2d76b8c3f38f649630e8144f287d 974 libssl-dev-dbgsym_1.0.1f-1ubuntu11.4_amd64.ddeb Checksums-Sha256: 96eaadc57b1f5b4a34f325ce88e2a152688658dd04dab0e14c5a5e3b7b41533b 962872 libssl-doc_1.0.1f-1ubuntu11.4_all.deb 1e493b6d78f774fd001a577669a87a01c063c953e910e9b90d4bddf8362cecfb 20409 openssl_1.0.1f-1ubuntu11.4_amd64_translations.tar.gz 9178b1afec8da8c3b9a05db4e4ce1e7465cfd4f8d6613c042640dbf3d5044be7 492472 openssl_1.0.1f-1ubuntu11.4_amd64.deb 13e26db8a58c5a026c1af6ee720ad6e3a14afd819f87977deec41c61473973ee 853204 libssl1.0.0_1.0.1f-1ubuntu11.4_amd64.deb 2e8ba0956e9f954b2381ca16962e822e837b1d916ea78a74ddbe6615c4d6c194 629838 libcrypto1.0.0-udeb_1.0.1f-1ubuntu11.4_amd64.udeb 6ba4444136063f2069df9fe4f1e21c401ec5be72778864ee9e0014d006539062 127482 libssl1.0.0-udeb_1.0.1f-1ubuntu11.4_amd64.udeb 4d4d6399c967542e73aa1af26e7e30059467c8309882d75995a35e86c8c5ab45 1088662 libssl-dev_1.0.1f-1ubuntu11.4_amd64.deb 22cb14038e30018f10387145dc3b138b21c29398c5b8dd72eecce6c653342e2b 2614240 libssl1.0.0-dbg_1.0.1f-1ubuntu11.4_amd64.deb 57bf45e0a52f3757d4b00f4b65a335adc5afd37ff66d724f66208c5973e9f0f0 1120 openssl-dbgsym_1.0.1f-1ubuntu11.4_amd64.ddeb c41735aedef7cab92377c408a8bce1b665ec42494baaf8dde089c4466dbcb016 952 libssl1.0.0-dbgsym_1.0.1f-1ubuntu11.4_amd64.ddeb dd7998479f046691d667531ccb0ac9f53f11880109807efd20b0baf44948eee9 988 libcrypto1.0.0-udeb-dbgsym_1.0.1f-1ubuntu11.4_amd64.ddeb 517ec41d3d41600707cf2bdc79e76b23620c1e1004a8138fbfdbbb277d6e887f 874 libssl1.0.0-udeb-dbgsym_1.0.1f-1ubuntu11.4_amd64.ddeb 7effa75ee790289f3a231db0b9695510292ffd589ee2a89d3ad2f01c40ac929c 974 libssl-dev-dbgsym_1.0.1f-1ubuntu11.4_amd64.ddeb Files: 60c5f24b1fce64d91b423b8c852f14d6 962872 doc optional libssl-doc_1.0.1f-1ubuntu11.4_all.deb 8bd4b5ee3041607a78e24a04a1d32492 20409 raw-translations - openssl_1.0.1f-1ubuntu11.4_amd64_translations.tar.gz 049db9034cfd5635bc900fab453b612c 492472 utils optional openssl_1.0.1f-1ubuntu11.4_amd64.deb 6f387d42f0f83ecdbc0f3646eaad262c 853204 libs important libssl1.0.0_1.0.1f-1ubuntu11.4_amd64.deb f86ee85d2fab672abf7c2489c4282e67 629838 debian-installer optional libcrypto1.0.0-udeb_1.0.1f-1ubuntu11.4_amd64.udeb f8d8fa25eaec22bebff00d9b478cc534 127482 debian-installer optional libssl1.0.0-udeb_1.0.1f-1ubuntu11.4_amd64.udeb 636bbdb57e12e485b3e6a8340cb6391b 1088662 libdevel optional libssl-dev_1.0.1f-1ubuntu11.4_amd64.deb 1fe3a8a9dc8337b7b2528490c08ffcb3 2614240 debug extra libssl1.0.0-dbg_1.0.1f-1ubuntu11.4_amd64.deb e07e7510a0b5104dd1e9164c53e77fef 1120 utils extra openssl-dbgsym_1.0.1f-1ubuntu11.4_amd64.ddeb 63f15a132471e39c39d36db1a8ebef1a 952 libs extra libssl1.0.0-dbgsym_1.0.1f-1ubuntu11.4_amd64.ddeb cea5c14839f938720cadcd3633542073 988 debian-installer extra libcrypto1.0.0-udeb-dbgsym_1.0.1f-1ubuntu11.4_amd64.ddeb b408a12bd6c416f60522b252ea27b4f7 874 debian-installer extra libssl1.0.0-udeb-dbgsym_1.0.1f-1ubuntu11.4_amd64.ddeb 2decf43d6532b0c3900aa2fcb72a7e96 974 libdevel extra libssl-dev-dbgsym_1.0.1f-1ubuntu11.4_amd64.ddeb Original-Maintainer: Debian OpenSSL Team Package-Type: udeb