ubuntu/+source/openssl:applied/ubuntu/raring-devel

Last commit made on 2014-01-09
Get this branch:
git clone -b applied/ubuntu/raring-devel https://git.launchpad.net/ubuntu/+source/openssl
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
applied/ubuntu/raring-devel
Repository:
lp:ubuntu/+source/openssl

Recent commits

49de52a... by Marc Deslauriers on 2014-01-08

Import patches-applied version 1.0.1c-4ubuntu8.2 to applied/ubuntu/raring-security

Imported using git-ubuntu import.

Changelog parent: c1bdbee3326e9628cfc0e4000e16641b993f7f54
Unapplied parent: f14544e20e48c27d67767d7d1b625c11cb491cc0

New changelog entries:
  * SECURITY UPDATE: denial of service via invalid TLS handshake
    - debian/patches/CVE-2013-4353.patch: handle no new cipher setup in
      ssl/s3_both.c.
    - CVE-2013-4353
  * SECURITY UPDATE: denial of service via incorrect data structure
    - debian/patches/CVE-2013-6449.patch: check for handshake digests in
      ssl/s3_both.c,ssl/s3_pkt.c,ssl/t1_enc.c, use proper version in
      ssl/s3_lib.c.
    - CVE-2013-6449
  * SECURITY UPDATE: denial of service via DTLS retransmission
    - debian/patches/CVE-2013-6450.patch: fix DTLS retransmission in
      crypto/evp/digest.c,ssl/d1_both.c,ssl/s3_pkt.c,ssl/s3_srvr.c,
      ssl/ssl_locl.h,ssl/t1_enc.c.
    - CVE-2013-6450
  * debian/patches/no_default_rdrand.patch: Don't use rdrand engine as
    default unless explicitly requested.

f14544e... by Marc Deslauriers on 2014-01-08

[PATCH] Don't use rdrand engine as default unless explicitly

Gbp-Pq: no_default_rdrand.patch.

f75ba04... by Marc Deslauriers on 2014-01-08

fix denial of service via DTLS retransmission

Gbp-Pq: CVE-2013-6450.patch.

62da5f6... by Marc Deslauriers on 2014-01-08

fix denial of service via incorrect data structure

Gbp-Pq: CVE-2013-6449.patch.

e3fcff0... by Marc Deslauriers on 2014-01-08

[PATCH] Fix for TLS record tampering bug CVE-2013-4353

Gbp-Pq: CVE-2013-4353.patch.

b0f04b3... by Marc Deslauriers on 2014-01-08

Only enable zlib if OPENSSL_DEFAULT_ZLIB is defined in the

Gbp-Pq: openssl-1.0.1e-env-zlib.patch.

5475aa9... by Marc Deslauriers on 2014-01-08

[PATCH] PR: 2813 Reported by: Constantine Sapuntzakis

Gbp-Pq: fix_key_decoding_deadlock.patch.

43b3e9f... by Marc Deslauriers on 2014-01-08

fix "Lucky Thirteen" timing side-channel TLS attack

Gbp-Pq: CVE-2013-0169.patch.

2fe2d75... by Marc Deslauriers on 2014-01-08

fix denial of service via invalid OCSP key

Gbp-Pq: CVE-2013-0166.patch.

70eccc6... by Marc Deslauriers on 2014-01-08

Add arm64 support

Gbp-Pq: arm64-support.