ubuntu/+source/openssl:applied/ubuntu/oneiric-security

Last commit made on 2013-02-21
Get this branch:
git clone -b applied/ubuntu/oneiric-security https://git.launchpad.net/ubuntu/+source/openssl
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
applied/ubuntu/oneiric-security
Repository:
lp:ubuntu/+source/openssl

Recent commits

a197eb2... by Marc Deslauriers on 2013-02-18

Import patches-applied version 1.0.0e-2ubuntu4.7 to applied/ubuntu/oneiric-security

Imported using git-ubuntu import.

Changelog parent: b498fd42437b903a56ea805b3b53eaaec5c50b3e
Unapplied parent: 40abaa8ed7acfe3e4a52815925ca291edfdce951

New changelog entries:
  * SECURITY UPDATE: denial of service via invalid OCSP key
    - debian/patches/CVE-2013-0166.patch: properly handle NULL key in
      crypto/asn1/a_verify.c, crypto/ocsp/ocsp_vfy.c.
    - CVE-2013-0166
  * SECURITY UPDATE: "Lucky Thirteen" timing side-channel TLS attack
    - debian/patches/CVE-2013-0169.patch: massive code changes
    - CVE-2013-0169

40abaa8... by Marc Deslauriers on 2013-02-18

fix "Lucky Thirteen" timing side-channel TLS attack

Gbp-Pq: CVE-2013-0169.patch.

2e356b9... by Marc Deslauriers on 2013-02-18

fix denial of service via invalid OCSP key

Gbp-Pq: CVE-2013-0166.patch.

956f151... by Marc Deslauriers on 2013-02-18

Detect symmetric crypto errors in PKCS7_decrypt and initialise

Gbp-Pq: CVE-2012-0884-extra.patch.

7c7b222... by Marc Deslauriers on 2013-02-18

If RSA decryption fails use a random key and continue with

Gbp-Pq: CVE-2012-0884.patch.

6929006... by Marc Deslauriers on 2013-02-18

Sanity check record length before skipping explicit IV in

Gbp-Pq: CVE-2012-2333.patch.

447b890... by Marc Deslauriers on 2013-02-18

Use correct error code in BUF_MEM_grow_clean()

Gbp-Pq: CVE-2012-2110b.patch.

428ec38... by Marc Deslauriers on 2013-02-18

Check for potentially exploitable overflows in asn1_d2i_read_bio

Gbp-Pq: CVE-2012-2110.patch.

7b99f4f... by Marc Deslauriers on 2013-02-18

fix for CVE-2006-7250 and CVE-2012-1165

Gbp-Pq: CVE-2006-7250+2012-1165.patch.

e515f79... by Marc Deslauriers on 2013-02-18

Fix for DTLS DoS issue introduced by fix for CVE-2011-4109.

Gbp-Pq: CVE-2012-0050.patch.