lp:ubuntu/lucid/openssl

Created by James Westby on 2009-12-02 and last modified on 2010-03-30
Get this branch:
bzr branch lp:ubuntu/lucid/openssl
Members of Ubuntu branches can upload to this branch. Log in for directions.

Branch merges

Related bugs

Related blueprints

Branch information

Owner:
Ubuntu branches
Review team:
Ubuntu Development Team
Status:
Development

Recent revisions

43. By Marc Deslauriers on 2010-03-30

* SECURITY UPDATE: denial of service and possible arbitrary code
  execution via unchecked return values
  - debian/patches/CVE-2009-3245.patch: check bn_wexpand return value in
    crypto/bn/{bn_div.c,bn_gf2m.c,bn_mul.c}, crypto/ec/ec2_smpl.c,
    engines/e_ubsec.c.
  - CVE-2009-3245
* SECURITY UPDATE: denial of service via "record of death"
  - debian/patches/CVE-2010-0740.patch: only send back minor version
    number in ssl/s3_pkt.c.
  - CVE-2010-0740

42. By Marc Deslauriers on 2010-03-26

debian/patches/dtls-compatibility.patch: backport dtls compatibility
code from 0.9.8m to fix interopability. (LP: #516318)

41. By Colin Watson on 2010-02-01

* Backport Intel AES-NI support from
  http://rt.openssl.org/Ticket/Display.html?id=2067 (LP: #485518).
* Don't change perl #! paths under .pc.

40. By Kees Cook on 2010-01-22

* SECURITY UPDATE: memory leak possible during state clean-up.
  - Add CVE-2009-4355.patch, upstream fixes thanks to Debian.

39. By Colin Watson on 2010-01-05

releasing version 0.9.8k-7ubuntu4

38. By Colin Watson on 2010-01-05

Create libssl0.9.8-udeb, for the benefit of wget-udeb (LP: #503339).

37. By Colin Watson on 2010-01-05

* Use host compiler when cross-building (patch from Neil Williams in
  Debian #465248).
* Don't run 'make test' when cross-building.

36. By Marc Deslauriers on 2009-12-07

debian/patches/disable-sslv2.patch: remove and apply inline to fix
FTBFS when patch won't revert during the build process.

35. By Marc Deslauriers on 2009-12-07

debian/patches/{disable-sslv2,Bsymbolic-functions}.patch: apply
Makefile sections inline as once the package is configured during the
build process, the patches wouldn't revert anymore, causing a FTBFS on
anything other than amd64.

34. By Nicolas Valcarcel on 2009-12-06

* Merge from debian unstable, remaining changes (LP: #493392):
  - Link using -Bsymbolic-functions
  - Add support for lpia
  - Disable SSLv2 during compile
  - Ship documentation in openssl-doc, suggested by the package.
  - Use a different priority for libssl0.9.8/restart-services
    depending on whether a desktop, or server dist-upgrade is being
    performed.
  - Display a system restart required notification bubble on libssl0.9.8
    upgrade.
  - Replace duplicate files in the doc directory with symlinks.
  - Move runtime libraries to /lib, for the benefit of wpasupplicant
* Strip the patches out of the source into quilt patches
* Disable CVE-2009-3555.patch

Branch metadata

Branch format:
Branch format 7
Repository format:
Bazaar repository format 2a (needs bzr 1.16 or later)
Stacked on:
lp:ubuntu/maverick/openssl
This branch contains Public information 
Everyone can see this information.

Subscribers