ubuntu/+source/openssl:applied/ubuntu/feisty-security

Last commit made on 2008-05-13
Get this branch:
git clone -b applied/ubuntu/feisty-security https://git.launchpad.net/ubuntu/+source/openssl
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
applied/ubuntu/feisty-security
Repository:
lp:ubuntu/+source/openssl

Recent commits

60c4389... by Kees Cook on 2008-05-09

Import patches-applied version 0.9.8c-4ubuntu0.3 to applied/ubuntu/feisty-security

Imported using git-ubuntu import.

Changelog parent: 66ce02f3660b5cedde6bcf4aa64caa355e777b0e
Unapplied parent: 17fb35fff0ad8a1b2e5885df99354e7fad6b0831

New changelog entries:
  * SECURITY UPDATE: PRNG seeding was not fully operational.
  * crypto/rand/md_rand.c: restore upstream code.

17fb35f... by Kees Cook on 2008-05-09

Import patches-unapplied version 0.9.8c-4ubuntu0.3 to ubuntu/feisty-security

Imported using git-ubuntu import.

Changelog parent: d968188925426e925e8c7078074ea6d9793adba2

New changelog entries:
  * SECURITY UPDATE: PRNG seeding was not fully operational.
  * crypto/rand/md_rand.c: restore upstream code.

66ce02f... by Kees Cook on 2007-10-19

Import patches-applied version 0.9.8c-4ubuntu0.2 to applied/ubuntu/feisty-security

Imported using git-ubuntu import.

Changelog parent: c674a23b5909fd45291cbb4d916c8768fbdd1835
Unapplied parent: d968188925426e925e8c7078074ea6d9793adba2

New changelog entries:
  * SECURITY UPDATE: DTLS implementation can lead to remote code execution.
  * ssl/{ssl_err,d1_both}.c, ssl/{dtls1,ssl}.h: patched inline with upstream
    fixes backported thanks to Ludwig Nussel.
  * References
    http://www.openssl.org/news/secadv_20071012.txt
    CVE-2007-4995

d968188... by Kees Cook on 2007-10-19

Import patches-unapplied version 0.9.8c-4ubuntu0.2 to ubuntu/feisty-security

Imported using git-ubuntu import.

Changelog parent: 244e2a5bfe117bfea23cadbbec2b13616fcf4e54

New changelog entries:
  * SECURITY UPDATE: DTLS implementation can lead to remote code execution.
  * ssl/{ssl_err,d1_both}.c, ssl/{dtls1,ssl}.h: patched inline with upstream
    fixes backported thanks to Ludwig Nussel.
  * References
    http://www.openssl.org/news/secadv_20071012.txt
    CVE-2007-4995

c674a23... by Kees Cook on 2007-09-28

Import patches-applied version 0.9.8c-4ubuntu0.1 to applied/ubuntu/feisty-security

Imported using git-ubuntu import.

Changelog parent: e74b3ad1efb0647355cb18e41229fe065bdbaa21
Unapplied parent: 244e2a5bfe117bfea23cadbbec2b13616fcf4e54

New changelog entries:
  [ Jamie Strandboge ]
  * SECURITY UPDATE: off-by-one error in SSL_get_shared_ciphers() results in
    buffer overflow
  * ssl/ssl_lib.c: applied upstream patch from openssl CVS thanks to
    Stephan Hermann
  * References:
    CVE-2007-5135
    http://www.securityfocus.com/archive/1/archive/1/480855/100/0/threaded
    Fixes LP: #146269
  * Modify Maintainer value to match the DebianMaintainerField
    specification.
  [ Kees Cook ]
  * SECURITY UPDATE: side-channel attacks via BN_from_montgomery function.
  * crypto/bn/bn_mont.c: upstream patch from openssl CVS thanks to Debian.
  * References
    CVE-2007-3108

244e2a5... by Kees Cook on 2007-09-28

Import patches-unapplied version 0.9.8c-4ubuntu0.1 to ubuntu/feisty-security

Imported using git-ubuntu import.

Changelog parent: 2c9ef4abae7bfb1418c907ec43800c25ac00288a

New changelog entries:
  [ Jamie Strandboge ]
  * SECURITY UPDATE: off-by-one error in SSL_get_shared_ciphers() results in
    buffer overflow
  * ssl/ssl_lib.c: applied upstream patch from openssl CVS thanks to
    Stephan Hermann
  * References:
    CVE-2007-5135
    http://www.securityfocus.com/archive/1/archive/1/480855/100/0/threaded
    Fixes LP: #146269
  * Modify Maintainer value to match the DebianMaintainerField
    specification.
  [ Kees Cook ]
  * SECURITY UPDATE: side-channel attacks via BN_from_montgomery function.
  * crypto/bn/bn_mont.c: upstream patch from openssl CVS thanks to Debian.
  * References
    CVE-2007-3108

e74b3ad... by Matthias Klose on 2007-03-05

Import patches-applied version 0.9.8c-4build1 to applied/ubuntu/feisty

Imported using git-ubuntu import.

Changelog parent: 124a205ef394c5963a5208953116e938e401f890
Unapplied parent: 2c9ef4abae7bfb1418c907ec43800c25ac00288a

New changelog entries:
  * Rebuild for changes in the amd64 toolchain.

2c9ef4a... by Matthias Klose on 2007-03-05

Import patches-unapplied version 0.9.8c-4build1 to ubuntu/feisty

Imported using git-ubuntu import.

Changelog parent: 20d2ab7db063d6a3a9d7ea109f67a2ebcd83c8ae

New changelog entries:
  * Rebuild for changes in the amd64 toolchain.

124a205... by Kurt Roeckx on 2006-11-30

Import patches-applied version 0.9.8c-4 to applied/ubuntu/feisty

Imported using git-ubuntu import.

Changelog parent: 24c3da59bfe176d2d7c9de3b357d8390509295e0
Unapplied parent: 20d2ab7db063d6a3a9d7ea109f67a2ebcd83c8ae

New changelog entries:
  * Add German debconf translation. Thanks to
    Johannes Starosta <email address hidden> (Closes: #388108)
  * Make c_rehash look for both .pem and .crt files. Also make it support
    files in DER format. Patch by "Yauheni Kaliuta" <email address hidden>
    (Closes: #387089)
  * Use & instead of && to check a flag in the X509 policy checking.
    Patch from upstream cvs. (Closes: #397151)
  * Also restart slapd for security updates (Closes: #400221)
  * Add Romanian debconf translation. Thanks to
    stan ioan-eugen <email address hidden> (Closes: #393507)

20d2ab7... by Kurt Roeckx on 2006-11-30

Import patches-unapplied version 0.9.8c-4 to ubuntu/feisty

Imported using git-ubuntu import.

Changelog parent: c1d2d17be519b41526d5f68261a06ded06fef958

New changelog entries:
  * Add German debconf translation. Thanks to
    Johannes Starosta <email address hidden> (Closes: #388108)
  * Make c_rehash look for both .pem and .crt files. Also make it support
    files in DER format. Patch by "Yauheni Kaliuta" <email address hidden>
    (Closes: #387089)
  * Use & instead of && to check a flag in the X509 policy checking.
    Patch from upstream cvs. (Closes: #397151)
  * Also restart slapd for security updates (Closes: #400221)
  * Add Romanian debconf translation. Thanks to
    stan ioan-eugen <email address hidden> (Closes: #393507)