Format: 1.8 Date: Mon, 29 Feb 2016 07:43:21 -0500 Source: openssl Binary: openssl libssl1.0.0 libcrypto1.0.0-udeb libssl1.0.0-udeb libssl-dev libssl-doc libssl1.0.0-dbg Architecture: ppc64el ppc64el_translations Version: 1.0.2d-0ubuntu1.4 Distribution: wily Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Marc Deslauriers Description: libcrypto1.0.0-udeb - Secure Sockets Layer toolkit - libcrypto udeb (udeb) libssl-dev - Secure Sockets Layer toolkit - development files libssl-doc - Secure Sockets Layer toolkit - development documentation libssl1.0.0 - Secure Sockets Layer toolkit - shared libraries libssl1.0.0-dbg - Secure Sockets Layer toolkit - debug information libssl1.0.0-udeb - ssl shared library - udeb (udeb) openssl - Secure Sockets Layer toolkit - cryptographic utility Changes: openssl (1.0.2d-0ubuntu1.4) wily-security; urgency=medium . * SECURITY UPDATE: side channel attack on modular exponentiation - debian/patches/CVE-2016-0702.patch: use constant-time calculations in crypto/bn/asm/rsaz-avx2.pl, crypto/bn/asm/rsaz-x86_64.pl, crypto/bn/asm/x86_64-mont.pl, crypto/bn/asm/x86_64-mont5.pl, crypto/bn/bn_exp.c. - CVE-2016-0702 * SECURITY UPDATE: double-free in DSA code - debian/patches/CVE-2016-0705.patch: fix double-free in crypto/dsa/dsa_ameth.c. - CVE-2016-0705 * SECURITY UPDATE: BN_hex2bn/BN_dec2bn NULL pointer deref/heap corruption - debian/patches/CVE-2016-0797.patch: prevent overflow in crypto/bn/bn_print.c, crypto/bn/bn.h. - CVE-2016-0797 * SECURITY UPDATE: memory leak in SRP database lookups - debian/patches/CVE-2016-0798.patch: disable SRP fake user seed and introduce new SRP_VBASE_get1_by_user function that handled seed properly in apps/s_server.c, crypto/srp/srp.h, crypto/srp/srp_vfy.c, util/libeay.num, openssl.ld. - CVE-2016-0798 * SECURITY UPDATE: memory issues in BIO_*printf functions - debian/patches/CVE-2016-0799.patch: prevent overflow in crypto/bio/b_print.c. - CVE-2016-0799 Checksums-Sha1: 6e53819f34bf85d166518a50c47bb464b84bd120 938 libcrypto1.0.0-udeb-dbgsym_1.0.2d-0ubuntu1.4_ppc64el.ddeb 42bbd0c6f78097057237eafa7b09249d70acf0c9 601446 libcrypto1.0.0-udeb_1.0.2d-0ubuntu1.4_ppc64el.udeb 06cefb80c8afdd310c9eca5ada177a45135ba10e 928 libssl-dev-dbgsym_1.0.2d-0ubuntu1.4_ppc64el.ddeb 4ebfca835b95557fcbe393967cc077ecce9e421a 1171176 libssl-dev_1.0.2d-0ubuntu1.4_ppc64el.deb e9cefaa760ef3c18c1dff7b42798640b8aed3187 2890450 libssl1.0.0-dbg_1.0.2d-0ubuntu1.4_ppc64el.deb c01616d4b96707eedd85847d1f6b0e9e6ca8c849 902 libssl1.0.0-dbgsym_1.0.2d-0ubuntu1.4_ppc64el.ddeb d4fba4a243e7478a3cb30d9e3ec9a9f41ed6f999 822 libssl1.0.0-udeb-dbgsym_1.0.2d-0ubuntu1.4_ppc64el.ddeb 12c98f2d58df4227672332097bad1e0ae215dc0e 130104 libssl1.0.0-udeb_1.0.2d-0ubuntu1.4_ppc64el.udeb 921d3c649ad8b853ae52046946d1145f0518eba5 821838 libssl1.0.0_1.0.2d-0ubuntu1.4_ppc64el.deb eb84ec584874514192cdcb8b94aafbc1ad1d98e7 1064 openssl-dbgsym_1.0.2d-0ubuntu1.4_ppc64el.ddeb 979f54db727274a8e34aba3edaa7a610f7e5a962 501268 openssl_1.0.2d-0ubuntu1.4_ppc64el.deb e8d27374d61c11789f23b1de641ea869c8b06573 20801 openssl_1.0.2d-0ubuntu1.4_ppc64el_translations.tar.gz Checksums-Sha256: 8ee589149856bb30edce33ecd4d1459282b118f2c421fbceed13b1198399ea80 938 libcrypto1.0.0-udeb-dbgsym_1.0.2d-0ubuntu1.4_ppc64el.ddeb 84d74d8c17d7c15a9a6eee3cc73982063fc1529cec107c2e86308b23869280d8 601446 libcrypto1.0.0-udeb_1.0.2d-0ubuntu1.4_ppc64el.udeb a2924185bc5691d85a00b04b693b6dc63b259dc87f12382acd69c60f78d299a6 928 libssl-dev-dbgsym_1.0.2d-0ubuntu1.4_ppc64el.ddeb 081de0bde5f8a44a32dda0defd8f81bfa9269b110c82cb67ed90726f12a8b30e 1171176 libssl-dev_1.0.2d-0ubuntu1.4_ppc64el.deb b2a1ccc3b0346d9074c7a904d3283962036bfd828db2008d12a85331cd17d132 2890450 libssl1.0.0-dbg_1.0.2d-0ubuntu1.4_ppc64el.deb ff811dea1161844789ba5748bf93be79884062965be9bea52a65d93ee17a07c8 902 libssl1.0.0-dbgsym_1.0.2d-0ubuntu1.4_ppc64el.ddeb 458c8be365db70b736e99cc2442933e8905dd32e110b1dbe2fd401a214e09a61 822 libssl1.0.0-udeb-dbgsym_1.0.2d-0ubuntu1.4_ppc64el.ddeb b14d2c5a797020378d22e33f4dfb576670bac1d406080291dae97a5113ae2abe 130104 libssl1.0.0-udeb_1.0.2d-0ubuntu1.4_ppc64el.udeb 2b483e8a6ed42bda903cb4a3b2684a990db84cc01b2240c317ea29ca3c06f082 821838 libssl1.0.0_1.0.2d-0ubuntu1.4_ppc64el.deb 8bcc4be18fc4f8a6394eb7f7464d7b518a7b1b66ee661e1cf1b9aa7bce42b2d9 1064 openssl-dbgsym_1.0.2d-0ubuntu1.4_ppc64el.ddeb 46be105e7cbc5595dc233686b7e5e6d720d390edf7aa0af9c5357b963cd08bf9 501268 openssl_1.0.2d-0ubuntu1.4_ppc64el.deb 32ea34b28dc7d6bb3be84c1e6b3a35c903e57593b36c7a28f4605803c1737c66 20801 openssl_1.0.2d-0ubuntu1.4_ppc64el_translations.tar.gz Files: 541173e761deb50ec757b1d00922acf7 938 debian-installer extra libcrypto1.0.0-udeb-dbgsym_1.0.2d-0ubuntu1.4_ppc64el.ddeb 1c6dd7aeff4867347503726a1ec85582 601446 debian-installer optional libcrypto1.0.0-udeb_1.0.2d-0ubuntu1.4_ppc64el.udeb 73b4b0c043543813fcfcafba3220c432 928 libdevel extra libssl-dev-dbgsym_1.0.2d-0ubuntu1.4_ppc64el.ddeb a49ad680c3029ed772aee876093da575 1171176 libdevel optional libssl-dev_1.0.2d-0ubuntu1.4_ppc64el.deb c51cb96b446b4b8b37ad465c82ab7003 2890450 debug extra libssl1.0.0-dbg_1.0.2d-0ubuntu1.4_ppc64el.deb a4fbb0fa8e49d5105321f0995459eb9b 902 libs extra libssl1.0.0-dbgsym_1.0.2d-0ubuntu1.4_ppc64el.ddeb 1171d99df78c902b065ec7e7b4d03bd6 822 debian-installer extra libssl1.0.0-udeb-dbgsym_1.0.2d-0ubuntu1.4_ppc64el.ddeb 379720167ae4430cd1e7d3788617aa80 130104 debian-installer optional libssl1.0.0-udeb_1.0.2d-0ubuntu1.4_ppc64el.udeb f9a8a57d7e2c2493e7186e6e67f612f1 821838 libs important libssl1.0.0_1.0.2d-0ubuntu1.4_ppc64el.deb 6a6e186ac99d4a15f7c92a94ae44a649 1064 utils extra openssl-dbgsym_1.0.2d-0ubuntu1.4_ppc64el.ddeb 6ebdd31f5ca860062e8b674509a1c4af 501268 utils optional openssl_1.0.2d-0ubuntu1.4_ppc64el.deb edcab13993e07133fd777445549bfbc2 20801 raw-translations - openssl_1.0.2d-0ubuntu1.4_ppc64el_translations.tar.gz Original-Maintainer: Debian OpenSSL Team Package-Type: udeb