ubuntu/+source/openssl:applied/ubuntu/jaunty-updates

Last commit made on 2010-10-07
Get this branch:
git clone -b applied/ubuntu/jaunty-updates https://git.launchpad.net/ubuntu/+source/openssl
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
applied/ubuntu/jaunty-updates
Repository:
lp:ubuntu/+source/openssl

Recent commits

a534e9a... by Marc Deslauriers on 2010-10-06

Import patches-applied version 0.9.8g-15ubuntu3.6 to applied/ubuntu/jaunty-security

Imported using git-ubuntu import.

Changelog parent: 72f08957fbb34988c01e5b478e6188ae686e3724
Unapplied parent: 9fb4e76fdfda245de07dcfab63200011e2e2b067

New changelog entries:
  * SECURITY UPDATE: denial of service and possible code execution via
    unchecked bn_wexpand return values. (LP: #655884)
    - crypto/bn/{bn_mul,bn_div,bn_gf2m}.c, crypto/ec/ec2_smpl.c,
      engines/e_ubsec.c: check return values.
    - http://cvs.openssl.org/chngview?cn=18936
    - http://cvs.openssl.org/chngview?cn=19309
    - CVE-2009-3245
  * SECURITY UPDATE: denial of service and possible code execution via
    crafted private key with an invalid prime.
    - ssl/s3_clnt.c: set bn_ctx to NULL after freeing it.
    - http://<email address hidden>/msg28049.html
    - CVE-2010-2939

9fb4e76... by Marc Deslauriers on 2010-10-06

Import patches-unapplied version 0.9.8g-15ubuntu3.6 to ubuntu/jaunty-security

Imported using git-ubuntu import.

Changelog parent: 85cd9f682df355946096dd9a8023f8dee19eafb9

New changelog entries:
  * SECURITY UPDATE: denial of service and possible code execution via
    unchecked bn_wexpand return values. (LP: #655884)
    - crypto/bn/{bn_mul,bn_div,bn_gf2m}.c, crypto/ec/ec2_smpl.c,
      engines/e_ubsec.c: check return values.
    - http://cvs.openssl.org/chngview?cn=18936
    - http://cvs.openssl.org/chngview?cn=19309
    - CVE-2009-3245
  * SECURITY UPDATE: denial of service and possible code execution via
    crafted private key with an invalid prime.
    - ssl/s3_clnt.c: set bn_ctx to NULL after freeing it.
    - http://<email address hidden>/msg28049.html
    - CVE-2010-2939

72f0895... by Marc Deslauriers on 2010-08-12

Import patches-applied version 0.9.8g-15ubuntu3.5 to applied/ubuntu/jaunty-proposed

Imported using git-ubuntu import.

Changelog parent: 6172183460d30654238f839ddecc4db13f4c15dd
Unapplied parent: 85cd9f682df355946096dd9a8023f8dee19eafb9

New changelog entries:
  * SECURITY UPDATE: TLS renegotiation flaw (LP: #616759)
    - apps/{s_cb,s_client,s_server}.c, doc/ssl/SSL_CTX_set_options.pod,
      ssl/{d1_both,d1_clnt,d1_srvr,s3_both,s3_clnt,s3_pkt,s3_srvr,ssl_err,
      ssl_lib,t1_lib,t1_reneg}.c, ssl/Makefile, ssl/{ssl3,ssl,ssl_locl,
      tls1}.h: backport rfc5746 support from openssl 0.9.8m.
    - CVE-2009-3555

85cd9f6... by Marc Deslauriers on 2010-08-12

Import patches-unapplied version 0.9.8g-15ubuntu3.5 to ubuntu/jaunty-proposed

Imported using git-ubuntu import.

Changelog parent: fda7ab81d43bd08084ed0846d72bb6059d1ed147

New changelog entries:
  * SECURITY UPDATE: TLS renegotiation flaw (LP: #616759)
    - apps/{s_cb,s_client,s_server}.c, doc/ssl/SSL_CTX_set_options.pod,
      ssl/{d1_both,d1_clnt,d1_srvr,s3_both,s3_clnt,s3_pkt,s3_srvr,ssl_err,
      ssl_lib,t1_lib,t1_reneg}.c, ssl/Makefile, ssl/{ssl3,ssl,ssl_locl,
      tls1}.h: backport rfc5746 support from openssl 0.9.8m.
    - CVE-2009-3555

6172183... by Kees Cook on 2010-01-13

Import patches-applied version 0.9.8g-15ubuntu3.4 to applied/ubuntu/jaunty-security

Imported using git-ubuntu import.

Changelog parent: 4210742769581a729a53dbef6c2e442f84e71553
Unapplied parent: fda7ab81d43bd08084ed0846d72bb6059d1ed147

New changelog entries:
  * SECURITY UPDATE: memory leak possible during state clean-up.
    - crypto/comp/c_zlib.c: upstream fixes applied inline.
    - CVE-2009-4355

fda7ab8... by Kees Cook on 2010-01-13

Import patches-unapplied version 0.9.8g-15ubuntu3.4 to ubuntu/jaunty-security

Imported using git-ubuntu import.

Changelog parent: ad55118148335e8928e09f429d9d710a9f997381

New changelog entries:
  * SECURITY UPDATE: memory leak possible during state clean-up.
    - crypto/comp/c_zlib.c: upstream fixes applied inline.
    - CVE-2009-4355

4210742... by Marc Deslauriers on 2009-09-08

Import patches-applied version 0.9.8g-15ubuntu3.3 to applied/ubuntu/jaunty-security

Imported using git-ubuntu import.

Changelog parent: 7d33d2f54e027191fc7c3ba6c601d860c6b1d6bd
Unapplied parent: ad55118148335e8928e09f429d9d710a9f997381

New changelog entries:
  * SECURITY UPDATE: certificate spoofing via hash collisions from MD2
    design flaws.
    - crypto/evp/c_alld.c, ssl/ssl_algs.c: disable MD2 digest.
    - crypto/x509/x509_vfy.c: skip signature check for self signed
      certificates
    - http://marc.info/?l=openssl-cvs&m=124508133203041&w=2
    - http://marc.info/?l=openssl-cvs&m=124704528713852&w=2
    - CVE-2009-2409

ad55118... by Marc Deslauriers on 2009-09-08

Import patches-unapplied version 0.9.8g-15ubuntu3.3 to ubuntu/jaunty-security

Imported using git-ubuntu import.

Changelog parent: 149f23ca18f347684cf1f129edb314258427a3d1

New changelog entries:
  * SECURITY UPDATE: certificate spoofing via hash collisions from MD2
    design flaws.
    - crypto/evp/c_alld.c, ssl/ssl_algs.c: disable MD2 digest.
    - crypto/x509/x509_vfy.c: skip signature check for self signed
      certificates
    - http://marc.info/?l=openssl-cvs&m=124508133203041&w=2
    - http://marc.info/?l=openssl-cvs&m=124704528713852&w=2
    - CVE-2009-2409

7d33d2f... by Marc Deslauriers on 2009-06-11

Import patches-applied version 0.9.8g-15ubuntu3.2 to applied/ubuntu/jaunty-security

Imported using git-ubuntu import.

Changelog parent: e5442e059dbf429858d67f52e978b0d49378f953
Unapplied parent: 149f23ca18f347684cf1f129edb314258427a3d1

New changelog entries:
  * SECURITY UPDATE: denial of service via memory consumption from large
    number of future epoch DTLS records.
    - crypto/pqueue.*: add new pqueue_size counter function.
    - ssl/d1_pkt.c: use pqueue_size to limit size of queue to 100.
    - http://cvs.openssl.org/chngview?cn=18187
    - CVE-2009-1377
  * SECURITY UPDATE: denial of service via memory consumption from
    duplicate or invalid sequence numbers in DTLS records.
    - ssl/d1_both.c: discard message if it's a duplicate or too far in the
      future.
    - http://marc.info/?l=openssl-dev&m=124263491424212&w=2
    - CVE-2009-1378
  * SECURITY UPDATE: denial of service or other impact via use-after-free
    in dtls1_retrieve_buffered_fragment.
    - ssl/d1_both.c: use temp frag_len instead of freed frag.
    - http://rt.openssl.org/Ticket/Display.html?id=1923
    - CVE-2009-1379
  * SECURITY UPDATE: denial of service via DTLS ChangeCipherSpec packet
    that occurs before ClientHello.
    - ssl/s3_pkt.c: abort if s->session is NULL.
    - ssl/{ssl.h,ssl_err.c}: add new error codes.
    - http://cvs.openssl.org/chngview?cn=17369
    - CVE-2009-1386
  * SECURITY UPDATE: denial of service via an out-of-sequence DTLS
    handshake message.
    - ssl/d1_both.c: don't buffer fragments with no data.
    - http://cvs.openssl.org/chngview?cn=17958
    - CVE-2009-1387

149f23c... by Marc Deslauriers on 2009-06-11

Import patches-unapplied version 0.9.8g-15ubuntu3.2 to ubuntu/jaunty-security

Imported using git-ubuntu import.

Changelog parent: 1b94937b3782720f97ad0329c5fd97b1ce112430

New changelog entries:
  * SECURITY UPDATE: denial of service via memory consumption from large
    number of future epoch DTLS records.
    - crypto/pqueue.*: add new pqueue_size counter function.
    - ssl/d1_pkt.c: use pqueue_size to limit size of queue to 100.
    - http://cvs.openssl.org/chngview?cn=18187
    - CVE-2009-1377
  * SECURITY UPDATE: denial of service via memory consumption from
    duplicate or invalid sequence numbers in DTLS records.
    - ssl/d1_both.c: discard message if it's a duplicate or too far in the
      future.
    - http://marc.info/?l=openssl-dev&m=124263491424212&w=2
    - CVE-2009-1378
  * SECURITY UPDATE: denial of service or other impact via use-after-free
    in dtls1_retrieve_buffered_fragment.
    - ssl/d1_both.c: use temp frag_len instead of freed frag.
    - http://rt.openssl.org/Ticket/Display.html?id=1923
    - CVE-2009-1379
  * SECURITY UPDATE: denial of service via DTLS ChangeCipherSpec packet
    that occurs before ClientHello.
    - ssl/s3_pkt.c: abort if s->session is NULL.
    - ssl/{ssl.h,ssl_err.c}: add new error codes.
    - http://cvs.openssl.org/chngview?cn=17369
    - CVE-2009-1386
  * SECURITY UPDATE: denial of service via an out-of-sequence DTLS
    handshake message.
    - ssl/d1_both.c: don't buffer fragments with no data.
    - http://cvs.openssl.org/chngview?cn=17958
    - CVE-2009-1387