ubuntu/+source/openssl:applied/ubuntu/gutsy-security

Last commit made on 2009-03-30
Get this branch:
git clone -b applied/ubuntu/gutsy-security https://git.launchpad.net/ubuntu/+source/openssl
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
applied/ubuntu/gutsy-security
Repository:
lp:ubuntu/+source/openssl

Recent commits

d8394cc... by Jamie Strandboge on 2009-03-26

Import patches-applied version 0.9.8e-5ubuntu3.4 to applied/ubuntu/gutsy-security

Imported using git-ubuntu import.

Changelog parent: 4fb4b88683de7550ecc83154e54b7d7ed84a8470
Unapplied parent: 097a57652e549f86adc06412016f661af68be360

New changelog entries:
  * SECURITY UPDATE: crash via invalid memory access when printing BMPString
    or UniversalString with invalid length
    - crypto/asn1/tasn_dec.c, crypto/asn1/asn1_err.c and crypto/asn1/asn1.h:
      return error if invalid length
    - CVE-2009-0590
    - http://www.openssl.org/news/secadv_20090325.txt
    - patch from upstream CVS:
      crypto/asn1/asn1.h:1.128.2.11->1.128.2.12
      crypto/asn1/asn1_err.c:1.54.2.4->1.54.2.5
      crypto/asn1/tasn_dec.c:1.26.2.10->1.26.2.11

097a576... by Jamie Strandboge on 2009-03-26

Import patches-unapplied version 0.9.8e-5ubuntu3.4 to ubuntu/gutsy-security

Imported using git-ubuntu import.

Changelog parent: cbd31c777ba3c8e8f28a9a638b23c27b8e4ceee8

New changelog entries:
  * SECURITY UPDATE: crash via invalid memory access when printing BMPString
    or UniversalString with invalid length
    - crypto/asn1/tasn_dec.c, crypto/asn1/asn1_err.c and crypto/asn1/asn1.h:
      return error if invalid length
    - CVE-2009-0590
    - http://www.openssl.org/news/secadv_20090325.txt
    - patch from upstream CVS:
      crypto/asn1/asn1.h:1.128.2.11->1.128.2.12
      crypto/asn1/asn1_err.c:1.54.2.4->1.54.2.5
      crypto/asn1/tasn_dec.c:1.26.2.10->1.26.2.11

4fb4b88... by Jamie Strandboge on 2009-01-06

Import patches-applied version 0.9.8e-5ubuntu3.3 to applied/ubuntu/gutsy-security

Imported using git-ubuntu import.

Changelog parent: 8b148d4efbf99fa5c5d7dbfaa0741dead16d6fef
Unapplied parent: cbd31c777ba3c8e8f28a9a638b23c27b8e4ceee8

New changelog entries:
  * SECURITY UPDATE: clients treat malformed signatures as good when verifying
    server DSA and ECDSA certificates
    - update apps/speed.c, apps/spkac.c, apps/verify.c, apps/x509.c,
      ssl/s2_clnt.c, ssl/s2_srvr.c, ssl/s3_clnt.c, s3_srvr.c, and
      ssl/ssltest.c to properly check the return code of EVP_VerifyFinal()
    - patch based on upstream patch for #2008-016
    - CVE-2008-5077

cbd31c7... by Jamie Strandboge on 2009-01-06

Import patches-unapplied version 0.9.8e-5ubuntu3.3 to ubuntu/gutsy-security

Imported using git-ubuntu import.

Changelog parent: 76623ff3135a859f26d0805fe267a158790401ad

New changelog entries:
  * SECURITY UPDATE: clients treat malformed signatures as good when verifying
    server DSA and ECDSA certificates
    - update apps/speed.c, apps/spkac.c, apps/verify.c, apps/x509.c,
      ssl/s2_clnt.c, ssl/s2_srvr.c, ssl/s3_clnt.c, s3_srvr.c, and
      ssl/ssltest.c to properly check the return code of EVP_VerifyFinal()
    - patch based on upstream patch for #2008-016
    - CVE-2008-5077

8b148d4... by Kees Cook on 2008-05-09

Import patches-applied version 0.9.8e-5ubuntu3.2 to applied/ubuntu/gutsy-security

Imported using git-ubuntu import.

Changelog parent: 532b21a84575e268d6cb070539e61aae67bcf8a4
Unapplied parent: 76623ff3135a859f26d0805fe267a158790401ad

New changelog entries:
  * SECURITY UPDATE: PRNG seeding was not fully operational.
  * crypto/rand/md_rand.c: restore upstream code.

76623ff... by Kees Cook on 2008-05-09

Import patches-unapplied version 0.9.8e-5ubuntu3.2 to ubuntu/gutsy-security

Imported using git-ubuntu import.

Changelog parent: 2b8bf6d49e431ba51cc89e3ceb8d8b26cba26740

New changelog entries:
  * SECURITY UPDATE: PRNG seeding was not fully operational.
  * crypto/rand/md_rand.c: restore upstream code.

532b21a... by Kees Cook on 2007-10-19

Import patches-applied version 0.9.8e-5ubuntu3.1 to applied/ubuntu/gutsy-security

Imported using git-ubuntu import.

Changelog parent: 3c7cac1a47e5e9b0f58cb8c536d2246184f4ccbd
Unapplied parent: 2b8bf6d49e431ba51cc89e3ceb8d8b26cba26740

New changelog entries:
  * SECURITY UPDATE: DTLS implementation can lead to remote code execution.
  * ssl/{ssl_err,d1_both}.c, ssl/{dtls1,ssl}.h: patched inline with upstream
    fixes backported thanks to Ludwig Nussel.
  * References
    http://www.openssl.org/news/secadv_20071012.txt
    CVE-2007-4995

2b8bf6d... by Kees Cook on 2007-10-19

Import patches-unapplied version 0.9.8e-5ubuntu3.1 to ubuntu/gutsy-security

Imported using git-ubuntu import.

Changelog parent: 536eef067229a4ae95986ad4b2df96b926523c87

New changelog entries:
  * SECURITY UPDATE: DTLS implementation can lead to remote code execution.
  * ssl/{ssl_err,d1_both}.c, ssl/{dtls1,ssl}.h: patched inline with upstream
    fixes backported thanks to Ludwig Nussel.
  * References
    http://www.openssl.org/news/secadv_20071012.txt
    CVE-2007-4995

3c7cac1... by Matthias Klose on 2007-10-04

Import patches-applied version 0.9.8e-5ubuntu3 to applied/ubuntu/gutsy

Imported using git-ubuntu import.

Changelog parent: 241d36fcc917ddc72fce2dd439f3cc895e14f39b
Unapplied parent: 536eef067229a4ae95986ad4b2df96b926523c87

New changelog entries:
  * Replace duplicate files in the doc directory with symlinks.

536eef0... by Matthias Klose on 2007-10-04

Import patches-unapplied version 0.9.8e-5ubuntu3 to ubuntu/gutsy

Imported using git-ubuntu import.

Changelog parent: ef1a78d79eb6bce2cb9a9cdc3841005e33390e63

New changelog entries:
  * Replace duplicate files in the doc directory with symlinks.