lp:~ubuntu-branches/ubuntu/lucid/openssl/lucid-proposed-201009271014
- Get this branch:
- bzr branch lp:~ubuntu-branches/ubuntu/lucid/openssl/lucid-proposed-201009271014
Branch merges
- No reviews requested
- Diff: 0 lines
Branch information
- Owner:
- Ubuntu branches
- Status:
- Development
Recent revisions
- 45. By Colin Watson
-
Update AES-NI patch to openssl-
0.9.8-aesni- modes-perlasm- win32-v4. patch
from http://rt.openssl. org/Ticket/ Display. html?id= 2067, fixing segfault
on engine initialisation (LP: #590639). - 44. By Marc Deslauriers
-
* SECURITY UPDATE: TLS renegotiation flaw (LP: #616759)
- debian/patches/ CVE-2009- 3555-RFC5746. patch: backport rfc5746 support
from openssl 0.9.8m.
- CVE-2009-3555 - 43. By Marc Deslauriers
-
* SECURITY UPDATE: denial of service and possible arbitrary code
execution via unchecked return values
- debian/patches/ CVE-2009- 3245.patch: check bn_wexpand return value in
crypto/bn/{bn_ div.c,bn_ gf2m.c, bn_mul. c}, crypto/ ec/ec2_ smpl.c,
engines/e_ubsec. c.
- CVE-2009-3245
* SECURITY UPDATE: denial of service via "record of death"
- debian/patches/ CVE-2010- 0740.patch: only send back minor version
number in ssl/s3_pkt.c.
- CVE-2010-0740 - 42. By Marc Deslauriers
-
debian/
patches/ dtls-compatibil ity.patch: backport dtls compatibility
code from 0.9.8m to fix interopability. (LP: #516318) - 41. By Colin Watson
-
* Backport Intel AES-NI support from
http://rt.openssl. org/Ticket/ Display. html?id= 2067 (LP: #485518).
* Don't change perl #! paths under .pc. - 40. By Kees Cook
-
* SECURITY UPDATE: memory leak possible during state clean-up.
- Add CVE-2009-4355.patch, upstream fixes thanks to Debian. - 37. By Colin Watson
-
* Use host compiler when cross-building (patch from Neil Williams in
Debian #465248).
* Don't run 'make test' when cross-building.
Branch metadata
- Branch format:
- Branch format 7
- Repository format:
- Bazaar repository format 2a (needs bzr 1.16 or later)
- Stacked on:
- lp:ubuntu/maverick/openssl