Format: 1.8 Date: Thu, 11 Jun 2015 07:34:23 -0400 Source: openssl Binary: openssl libssl1.0.0 libcrypto1.0.0-udeb libssl1.0.0-udeb libssl-dev libssl-doc libssl1.0.0-dbg Architecture: all i386_translations i386 Version: 1.0.1f-1ubuntu2.15 Distribution: trusty Urgency: medium Maintainer: Ubuntu/amd64 Build Daemon Changed-By: Marc Deslauriers Description: libcrypto1.0.0-udeb - Secure Sockets Layer toolkit - libcrypto udeb (udeb) libssl-dev - Secure Sockets Layer toolkit - development files libssl-doc - Secure Sockets Layer toolkit - development documentation libssl1.0.0 - Secure Sockets Layer toolkit - shared libraries libssl1.0.0-dbg - Secure Sockets Layer toolkit - debug information libssl1.0.0-udeb - ssl shared library - udeb (udeb) openssl - Secure Sockets Layer toolkit - cryptographic utility Changes: openssl (1.0.1f-1ubuntu2.15) trusty-security; urgency=medium . * SECURITY IMPROVEMENT: reject dh keys smaller than 768 bits - debian/patches/reject_small_dh.patch: reject small dh keys in ssl/s3_clnt.c, ssl/ssl.h, ssl/ssl_err.c, update documentation in doc/ssl/SSL_CTX_set_tmp_dh_callback.pod, make s_server use 2048-bit dh in apps/s_server.c, clarify docs in doc/apps/dhparam.pod. * SECURITY UPDATE: denial of service and possible code execution via invalid free in DTLS - debian/patches/CVE-2014-8176.patch: fix invalid free in ssl/d1_lib.c. - CVE-2014-8176 * SECURITY UPDATE: denial of service via malformed ECParameters - debian/patches/CVE-2015-1788.patch: improve logic in crypto/bn/bn_gf2m.c. - CVE-2015-1788 * SECURITY UPDATE: denial of service via out-of-bounds read in X509_cmp_time - debian/patches/CVE-2015-1789.patch: properly parse time format in crypto/x509/x509_vfy.c. - CVE-2015-1789 * SECURITY UPDATE: denial of service via missing EnvelopedContent - debian/patches/CVE-2015-1790.patch: handle NULL data_body in crypto/pkcs7/pk7_doit.c. - CVE-2015-1790 * SECURITY UPDATE: race condition in NewSessionTicket - debian/patches/CVE-2015-1791.patch: create a new session in ssl/s3_clnt.c, ssl/ssl.h, ssl/ssl_err.c, ssl/ssl_locl.h, ssl/ssl_sess.c. - debian/patches/CVE-2015-1791-2.patch: fix kerberos issue in ssl/ssl_sess.c. - debian/patches/CVE-2015-1791-3.patch: more ssl_session_dup fixes in ssl/ssl_sess.c. - CVE-2015-1791 * SECURITY UPDATE: CMS verify infinite loop with unknown hash function - debian/patches/CVE-2015-1792.patch: fix infinite loop in crypto/cms/cms_smime.c. - CVE-2015-1792 Checksums-Sha1: 05a8036160b7230b143e5ae48f9f3042456d857d 966146 libssl-doc_1.0.1f-1ubuntu2.15_all.deb 969c3624cfc9ef6cec9ef1f63082aa28bcded72e 20059 openssl_1.0.1f-1ubuntu2.15_i386_translations.tar.gz 19d9186fd1817191cb0d2e8c757ff21d61e3b011 479522 openssl_1.0.1f-1ubuntu2.15_i386.deb e2ec15d4259cbf8c07b17bf09e39131ab628686c 779714 libssl1.0.0_1.0.1f-1ubuntu2.15_i386.deb 25bd9fe33aebe94ddb5c8edf21495c51695e9a83 569320 libcrypto1.0.0-udeb_1.0.1f-1ubuntu2.15_i386.udeb 844a8907488742437fd9f457cbd03fdccdd8bff9 122602 libssl1.0.0-udeb_1.0.1f-1ubuntu2.15_i386.udeb 4ef36794cc9db3e974be909bd4168af0ede023a5 988796 libssl-dev_1.0.1f-1ubuntu2.15_i386.deb 5ce9b2618c8c66acbd0dab78a1010b03d8938131 2347842 libssl1.0.0-dbg_1.0.1f-1ubuntu2.15_i386.deb 5676a755d75d556ab0debd883bf65651bb4d1aa4 1060 openssl-dbgsym_1.0.1f-1ubuntu2.15_i386.ddeb c9f6297c1e363415a833e9f3d3cc43ca4ab69f42 900 libssl1.0.0-dbgsym_1.0.1f-1ubuntu2.15_i386.ddeb 5708fd9c1cd053dccdf2c9680f60c5b4884e3733 932 libcrypto1.0.0-udeb-dbgsym_1.0.1f-1ubuntu2.15_i386.ddeb 0d83dd3c91a5fd0e3ccfabf7c067c36f4b0526c4 820 libssl1.0.0-udeb-dbgsym_1.0.1f-1ubuntu2.15_i386.ddeb fd261b81c8426fd8c89a3e9fd0af46e3738c0510 922 libssl-dev-dbgsym_1.0.1f-1ubuntu2.15_i386.ddeb Checksums-Sha256: 9e83e324c1bda35d7e9849acbaddbe3e6267358ea0c7a277dcb5bfc65428c0a6 966146 libssl-doc_1.0.1f-1ubuntu2.15_all.deb 1afcf58db93687b84a88e39dba5d82c19b5fd8a4a187dbf8085adbb0ac634dfb 20059 openssl_1.0.1f-1ubuntu2.15_i386_translations.tar.gz 2de6a712aa72729037db2b9e8ed96a53672f384b7788cc950313f98fa61cef5e 479522 openssl_1.0.1f-1ubuntu2.15_i386.deb c485192ff0386e4b98ac95696f3ddbea0c3b1173661a1ed6b6bc5acba61ce889 779714 libssl1.0.0_1.0.1f-1ubuntu2.15_i386.deb 391850484f8a8aa066aa96ae8e1e99df9f8598a97d67ac453d1fe5798abcc202 569320 libcrypto1.0.0-udeb_1.0.1f-1ubuntu2.15_i386.udeb 89a9da714a096565db8c1192bced22b85998e2b74d6b96f1484f9be8cd7a0b71 122602 libssl1.0.0-udeb_1.0.1f-1ubuntu2.15_i386.udeb 6c7f45c692599e442ca960c1bdf6e3fbff85e1075ee5e96b3a0174cc648ea0a9 988796 libssl-dev_1.0.1f-1ubuntu2.15_i386.deb e6f186b92c0d36aeef611be085b16efaaa2c568b2e18e9dd0af3c5727dc5b5ee 2347842 libssl1.0.0-dbg_1.0.1f-1ubuntu2.15_i386.deb 0dc184844df5597d420dc1c0fa28221e5b61d91af00752cf86ab1aebef277402 1060 openssl-dbgsym_1.0.1f-1ubuntu2.15_i386.ddeb 2819bbc0af993c2e945f0d484517fb6f336a140e33cfe104f331f8ca7f4a50cb 900 libssl1.0.0-dbgsym_1.0.1f-1ubuntu2.15_i386.ddeb a908344d3f4b185feb11592066a2d1ba3ff2f4476775a1d7eb3b6b65fe5a74c2 932 libcrypto1.0.0-udeb-dbgsym_1.0.1f-1ubuntu2.15_i386.ddeb 3f6f1f0db2809972d16e31cb7d5688ee0b4fd3fbe0eadc149cdb29c2f35088b5 820 libssl1.0.0-udeb-dbgsym_1.0.1f-1ubuntu2.15_i386.ddeb 9cedd58b9239916c92a0f9a66164316c0773dc48f7df7a777e007a8cc0ba112e 922 libssl-dev-dbgsym_1.0.1f-1ubuntu2.15_i386.ddeb Files: 198b6acc29ff78661249c968d8b6067b 966146 doc optional libssl-doc_1.0.1f-1ubuntu2.15_all.deb 5de0b579d4decadc210d5a8b357687d5 20059 raw-translations - openssl_1.0.1f-1ubuntu2.15_i386_translations.tar.gz fd9046dc2c25044611965624c134f071 479522 utils optional openssl_1.0.1f-1ubuntu2.15_i386.deb 68554635b7e1039fee28627a86ee02be 779714 libs important libssl1.0.0_1.0.1f-1ubuntu2.15_i386.deb f346bc853c66bc1812fe728311841bde 569320 debian-installer optional libcrypto1.0.0-udeb_1.0.1f-1ubuntu2.15_i386.udeb 53e72dfaf8dcdddf21475e8ae8bae249 122602 debian-installer optional libssl1.0.0-udeb_1.0.1f-1ubuntu2.15_i386.udeb a0ef60783e191c3db511a9f84c30aa50 988796 libdevel optional libssl-dev_1.0.1f-1ubuntu2.15_i386.deb cb3db937404d3f64be3e1619c8914402 2347842 debug extra libssl1.0.0-dbg_1.0.1f-1ubuntu2.15_i386.deb b875cf1c423b956ab24d2bce066393a3 1060 utils extra openssl-dbgsym_1.0.1f-1ubuntu2.15_i386.ddeb 6fa9dcce43d73bfa22d7a53ffbf75b85 900 libs extra libssl1.0.0-dbgsym_1.0.1f-1ubuntu2.15_i386.ddeb f60a6748d64b4347a4f9da50ed2be126 932 debian-installer extra libcrypto1.0.0-udeb-dbgsym_1.0.1f-1ubuntu2.15_i386.ddeb 916724a3dfa1c41989f1b61c51572056 820 debian-installer extra libssl1.0.0-udeb-dbgsym_1.0.1f-1ubuntu2.15_i386.ddeb bd3675021b38f911bd90cd06320c0eb8 922 libdevel extra libssl-dev-dbgsym_1.0.1f-1ubuntu2.15_i386.ddeb Original-Maintainer: Debian OpenSSL Team Package-Type: udeb