ubuntu/+source/openssl:applied/ubuntu/xenial-security

Last commit made on 2019-02-27
Get this branch:
git clone -b applied/ubuntu/xenial-security https://git.launchpad.net/ubuntu/+source/openssl
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
applied/ubuntu/xenial-security
Repository:
lp:ubuntu/+source/openssl

Recent commits

d8df82b... by Marc Deslauriers on 2019-02-26

Import patches-applied version 1.0.2g-1ubuntu4.15 to applied/ubuntu/xenial-security

Imported using git-ubuntu import.

Changelog parent: f8d4644787fa2bfec9f72439c849ab23411bd94f
Unapplied parent: 20bf9ca55c2a12a9e99b96e5e1864736fdd9fce6

New changelog entries:
  * SECURITY UPDATE: 0-byte record padding oracle
    - debian/patches/CVE-2019-1559.patch: go into the error state if a
      fatal alert is sent or received in ssl/d1_pkt.c, ssl/s3_pkt.c.
    - CVE-2019-1559

20bf9ca... by Marc Deslauriers on 2019-02-26

[PATCH] Go into the error state if a fatal alert is sent or received

Gbp-Pq: CVE-2019-1559.patch.

5cc6c33... by Marc Deslauriers on 2019-02-26

[PATCH] CVE-2018-5407 fix: ECC ladder

Gbp-Pq: CVE-2018-5407.patch.

96bc2c5... by Marc Deslauriers on 2019-02-26

[PATCH] Add a constant time flag to one of the bignums to avoid a

Gbp-Pq: CVE-2018-0734-3.patch.

0140645... by Marc Deslauriers on 2019-02-26

[PATCH] Merge to 1.0.2: DSA mod inverse fix.

Gbp-Pq: CVE-2018-0734-2.patch.

40e6d53... by Marc Deslauriers on 2019-02-26

[PATCH] Merge DSA reallocation timing fix CVE-2018-0734.

Gbp-Pq: CVE-2018-0734-1.patch.

c1ce7ce... by Marc Deslauriers on 2019-02-26

[PATCH] Address a timing side channel whereby it is possible to

Gbp-Pq: CVE-2018-0734-pre1.patch.

8f78146... by Marc Deslauriers on 2019-02-26

[PATCH] RSA key generation: ensure BN_mod_inverse and BN_mod_exp_mont

Gbp-Pq: CVE-2018-0737-4.patch.

d2e24d9... by Marc Deslauriers on 2019-02-26

[PATCH] consttime flag changed

Gbp-Pq: CVE-2018-0737-3.patch.

4dcea58... by Marc Deslauriers on 2019-02-26

[PATCH] used ERR set/pop mark

Gbp-Pq: CVE-2018-0737-2.patch.