lp:ubuntu/hardy-security/ssl-cert
- Get this branch:
- bzr branch lp:ubuntu/hardy-security/ssl-cert
Branch merges
Branch information
Recent revisions
- 6. By Mathias Gug
-
* SECURITY UPDATE: replace known vulnerable weak keys and certificates
caused by Debian openssl bug.
* debian/control: Depends on openssl (0.9.8g-4ubuntu3. 1),
openssl-blacklist.
* debian/templates: add critical debconf note.
* debian/postinst: regenerate snakeoil key and certificate on upgrade if
vulnerable.
* References
CVE-2008-0166
http://www.ubuntu. com/usn/ usn-612- 4 - 5. By Steve Langasek
-
hostname -f may fail if /etc/hosts isn't configured, so use plain
'hostname' as a fallback. - 4. By Steve Langasek
-
* make-ssl-cert: Use 'hostname -f' for the snakeoil CN instead of
'hostname', since relative hostnames are subject to namespace
collisions that could be exploited (and also because OpenLDAP
doesn't care for them when connecting to localhost).
* Modify Maintainer value to match the DebianMaintainerField
specification. - 3. By Christian Perrier
-
* Non-maintainer upload to fix pending l10n issues.
* Debconf templates translations:
- Portuguese. Closes: #381744
- Russian. Closes: #388117
- Japanese. Closes: #391627
- Spanish. Closes: #402203
- Galician. Closes: #407954
Branch metadata
- Branch format:
- Branch format 7
- Repository format:
- Bazaar repository format 2a (needs bzr 1.16 or later)
- Stacked on:
- lp:ubuntu/karmic/ssl-cert