ubuntu/+source/openssl:applied/ubuntu/dapper-devel

Last commit made on 2010-12-08
Get this branch:
git clone -b applied/ubuntu/dapper-devel https://git.launchpad.net/ubuntu/+source/openssl
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
applied/ubuntu/dapper-devel
Repository:
lp:ubuntu/+source/openssl

Recent commits

35881cd... by Steve Beattie on 2010-12-03

Import patches-applied version 0.9.8a-7ubuntu0.14 to applied/ubuntu/dapper-security

Imported using git-ubuntu import.

Changelog parent: c67d9fe11e2d1645cdb0db3284d0ee393b41abd7
Unapplied parent: da350498fddd0822b6ad9624309d59cdbb82a77a

New changelog entries:
  * SECURITY UPDATE: ciphersuite downgrade vulnerability
    - ssl/s3_clnt.c, ssl/s3_srvr.c: disable workaround for Netscape
      cipher suite bug
    - http://openssl.org/news/secadv_20101202.txt
    - CVE-2010-4180

da35049... by Steve Beattie on 2010-12-03

Import patches-unapplied version 0.9.8a-7ubuntu0.14 to ubuntu/dapper-security

Imported using git-ubuntu import.

Changelog parent: 91cac03a5ea4d76c7379e3d7dc98beb7f020cf35

New changelog entries:
  * SECURITY UPDATE: ciphersuite downgrade vulnerability
    - ssl/s3_clnt.c, ssl/s3_srvr.c: disable workaround for Netscape
      cipher suite bug
    - http://openssl.org/news/secadv_20101202.txt
    - CVE-2010-4180

c67d9fe... by Marc Deslauriers on 2010-10-06

Import patches-applied version 0.9.8a-7ubuntu0.13 to applied/ubuntu/dapper-security

Imported using git-ubuntu import.

Changelog parent: b79f6652460ed857be3bbdb2e1f7d78de1081fb2
Unapplied parent: 91cac03a5ea4d76c7379e3d7dc98beb7f020cf35

New changelog entries:
  * SECURITY UPDATE: denial of service and possible code execution via
    unchecked bn_wexpand return values. (LP: #655884)
    - crypto/bn/{bn_mul,bn_div,bn_gf2m}.c, crypto/ec/ec2_smpl.c,
      engines/e_ubsec.c: check return values.
    - http://cvs.openssl.org/chngview?cn=18936
    - http://cvs.openssl.org/chngview?cn=19309
    - CVE-2009-3245
  * SECURITY UPDATE: denial of service and possible code execution via
    crafted private key with an invalid prime.
    - ssl/s3_clnt.c: set bn_ctx to NULL after freeing it.
    - http://<email address hidden>/msg28049.html
    - CVE-2010-2939

91cac03... by Marc Deslauriers on 2010-10-06

Import patches-unapplied version 0.9.8a-7ubuntu0.13 to ubuntu/dapper-security

Imported using git-ubuntu import.

Changelog parent: 8d599ee19e4bd84caf0b6288be5eae8ade71a55b

New changelog entries:
  * SECURITY UPDATE: denial of service and possible code execution via
    unchecked bn_wexpand return values. (LP: #655884)
    - crypto/bn/{bn_mul,bn_div,bn_gf2m}.c, crypto/ec/ec2_smpl.c,
      engines/e_ubsec.c: check return values.
    - http://cvs.openssl.org/chngview?cn=18936
    - http://cvs.openssl.org/chngview?cn=19309
    - CVE-2009-3245
  * SECURITY UPDATE: denial of service and possible code execution via
    crafted private key with an invalid prime.
    - ssl/s3_clnt.c: set bn_ctx to NULL after freeing it.
    - http://<email address hidden>/msg28049.html
    - CVE-2010-2939

b79f665... by Marc Deslauriers on 2010-08-12

Import patches-applied version 0.9.8a-7ubuntu0.12 to applied/ubuntu/dapper-proposed

Imported using git-ubuntu import.

Changelog parent: a5670fd05cc59847b7d96bbccba56a1e7fe8b7aa
Unapplied parent: 8d599ee19e4bd84caf0b6288be5eae8ade71a55b

New changelog entries:
  * SECURITY UPDATE: TLS renegotiation flaw (LP: #616759)
    - apps/{s_client,s_server}.c, doc/ssl/SSL_CTX_set_options.pod,
      ssl/{d1_both,d1_clnt,d1_srvr,s23_clnt,s3_both,s3_clnt,s3_pkt,s3_srvr,
      ssl_err,ssl_lib,t1_lib,t1_reneg}.c, ssl/Makefile, ssl/{ssl3,ssl,
      ssl_locl,tls1}.h: add rfc5746 support. Patch backport thanks to
      Red Hat.
    - CVE-2009-3555

8d599ee... by Marc Deslauriers on 2010-08-12

Import patches-unapplied version 0.9.8a-7ubuntu0.12 to ubuntu/dapper-proposed

Imported using git-ubuntu import.

Changelog parent: 131259e4b8a2eed83f5da7f36ac6d529d2b64082

New changelog entries:
  * SECURITY UPDATE: TLS renegotiation flaw (LP: #616759)
    - apps/{s_client,s_server}.c, doc/ssl/SSL_CTX_set_options.pod,
      ssl/{d1_both,d1_clnt,d1_srvr,s23_clnt,s3_both,s3_clnt,s3_pkt,s3_srvr,
      ssl_err,ssl_lib,t1_lib,t1_reneg}.c, ssl/Makefile, ssl/{ssl3,ssl,
      ssl_locl,tls1}.h: add rfc5746 support. Patch backport thanks to
      Red Hat.
    - CVE-2009-3555

a5670fd... by Kees Cook on 2010-01-13

Import patches-applied version 0.9.8a-7ubuntu0.11 to applied/ubuntu/dapper-security

Imported using git-ubuntu import.

Changelog parent: a07471baeedd9f01d7c3fec7e5a32c00b23804ba
Unapplied parent: 131259e4b8a2eed83f5da7f36ac6d529d2b64082

New changelog entries:
  * SECURITY UPDATE: memory leak possible during state clean-up.
    - crypto/comp/c_zlib.c: upstream fixes applied inline.
    - CVE-2009-4355

131259e... by Kees Cook on 2010-01-13

Import patches-unapplied version 0.9.8a-7ubuntu0.11 to ubuntu/dapper-security

Imported using git-ubuntu import.

Changelog parent: 3768774ed7168b8145ed03f998e8ecfc70209352

New changelog entries:
  * SECURITY UPDATE: memory leak possible during state clean-up.
    - crypto/comp/c_zlib.c: upstream fixes applied inline.
    - CVE-2009-4355

a07471b... by Marc Deslauriers on 2009-09-08

Import patches-applied version 0.9.8a-7ubuntu0.10 to applied/ubuntu/dapper-security

Imported using git-ubuntu import.

Changelog parent: cdc80b36d990caf1415b01b0a418f9165676441a
Unapplied parent: 3768774ed7168b8145ed03f998e8ecfc70209352

New changelog entries:
  * SECURITY UPDATE: certificate spoofing via hash collisions from MD2
    design flaws.
    - crypto/evp/c_alld.c, ssl/ssl_algs.c: disable MD2 digest.
    - crypto/x509/x509_vfy.c: skip signature check for self signed
      certificates
    - http://marc.info/?l=openssl-cvs&m=124508133203041&w=2
    - http://marc.info/?l=openssl-cvs&m=124704528713852&w=2
    - CVE-2009-2409

3768774... by Marc Deslauriers on 2009-09-08

Import patches-unapplied version 0.9.8a-7ubuntu0.10 to ubuntu/dapper-security

Imported using git-ubuntu import.

Changelog parent: 65e04d3110aa282d2310b4609c1bf4285c23b9c3

New changelog entries:
  * SECURITY UPDATE: certificate spoofing via hash collisions from MD2
    design flaws.
    - crypto/evp/c_alld.c, ssl/ssl_algs.c: disable MD2 digest.
    - crypto/x509/x509_vfy.c: skip signature check for self signed
      certificates
    - http://marc.info/?l=openssl-cvs&m=124508133203041&w=2
    - http://marc.info/?l=openssl-cvs&m=124704528713852&w=2
    - CVE-2009-2409