lp:ubuntu/jaunty/openssl
- Get this branch:
- bzr branch lp:ubuntu/jaunty/openssl
Branch merges
Branch information
Recent revisions
- 30. By Jamie Strandboge
-
* SECURITY UPDATE: crash via invalid memory access when printing BMPString
or UniversalString with invalid length
- crypto/asn1/tasn_ dec.c, crypto/ asn1/asn1_ err.c and crypto/asn1/asn1.h:
return error if invalid length
- CVE-2009-0590
- http://www.openssl. org/news/ secadv_ 20090325. txt
- patch from upstream CVS:
crypto/asn1/asn1. h:1.128. 2.11->1. 128.2.12
crypto/asn1/asn1_ err.c:1. 54.2.4- >1.54.2. 5
crypto/asn1/tasn_ dec.c:1. 26.2.10- >1.26.2. 11 - 29. By Colin Watson
-
Move runtime libraries to /lib, for the benefit of wpasupplicant
(LP: #44194). Leave symlinks behind in /usr/lib (except on the Hurd)
since we used to set an rpath there. - 28. By Bhavani Shankar
-
* Merge from debian unstable, remaining changes: LP: #314984
- Link using -Bsymbolic-functions
- Add support for lpia
- Disable SSLv2 during compile
- Ship documentation in openssl-doc, suggested by the package.
- Use a different priority for libssl0.9.8/restart- services
depending on whether a desktop, or server dist-upgrade is being
performed.
- Display a system restart required notification bubble on libssl0.9.8
upgrade.
- Replace duplicate files in the doc directory with symlinks. - 27. By Jamie Strandboge
-
* SECURITY UPDATE: clients treat malformed signatures as good when verifying
server DSA and ECDSA certificates
- update apps/speed.c, apps/spkac.c, apps/verify.c, apps/x509.c,
ssl/s2_clnt.c, ssl/s2_srvr.c, ssl/s3_clnt.c, s3_srvr.c, and
ssl/ssltest.c to properly check the return code of EVP_VerifyFinal()
- patch based on upstream patch for #2008-016
- CVE-2008-5077 - 26. By Scott James Remnant (Canonical)
-
* Merge from debian unstable, remaining changes:
- Link using -Bsymbolic-functions
- Add support for lpia
- Disable SSLv2 during compile
- Ship documentation in openssl-doc, suggested by the package.
- Use a different priority for libssl0.9.8/restart- services
depending on whether a desktop, or server dist-upgrade is being
performed.
- Display a system restart required notification bubble on libssl0.9.8
upgrade.
- Replace duplicate files in the doc directory with symlinks. - 25. By Ante Karamatić
-
* debian/rules:
- disable SSLv2 during compile
* debian/README. debian
- add note about disabled SSLv2 in Ubuntu - 24. By Luke Yelavich
-
* Merge from debian unstable, remaining changes:
- Use a different priority for libssl0.9.8/restart- services depending on whether
a desktop, or server dist-upgrade is being performed.
- Display a system restart required notification bubble on libssl0.9.8 upgrade.
- Ship documentation in new openssl-doc package.
- Configure: Add support for lpia.
- Replace duplicate files in the doc directory with symlinks.
- Link using -Bsymbolic-functions.
- Update maintainer as per spec. - 23. By Luke Yelavich
-
* Merge from debian unstable, remaining changes:
- Use a different priority for libssl0.9.8/restart- services depending on whether
a desktop, or server dist-upgrade is being performed.
- Display a system restart required notification bubble on libssl0.9.8 upgrade.
- Ship documentation in new openssl-doc package.
- Configure: Add support for lpia.
- Replace duplicate files in the doc directory with symlinks.
- Link using -Bsymbolic-functions.
- Update maintainer as per spec. - 22. By Luke Yelavich
-
* Merge from debian unstable, remaining changes:
- Use a different priority for libssl0.9.8/restart- services depending on whether
a desktop, or server dist-upgrade is being performed.
- Display a system restart required notification bubble on libssl0.9.8 upgrade.
- Ship documentation in new openssl-doc package.
- Configure: Add support for lpia.
- Replace duplicate files in the doc directory with symlinks.
- Link using -Bsymbolic-functions.
- Update maintainer as per spec. - 21. By Luke Yelavich
-
* Use a different priority for libssl0.
9.8/restart- services depending on whether
a desktop, or server dist-upgrade is being performed. (LP: #91814)
* Display a system restart required notification bubble on libssl0.9.8 upgrade.
Branch metadata
- Branch format:
- Branch format 7
- Repository format:
- Bazaar repository format 2a (needs bzr 1.16 or later)
- Stacked on:
- lp:ubuntu/lucid/openssl