ubuntu/+source/openssl:applied/ubuntu/zesty

Last commit made on 2017-01-30
Get this branch:
git clone -b applied/ubuntu/zesty https://git.launchpad.net/ubuntu/+source/openssl
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
applied/ubuntu/zesty
Repository:
lp:ubuntu/+source/openssl

Recent commits

e4f0ac8... by Marc Deslauriers on 2017-01-30

Import patches-applied version 1.0.2g-1ubuntu11 to applied/ubuntu/zesty-proposed

Imported using git-ubuntu import.

Changelog parent: d37b0f197a9c24775917a56ffa6719a6a7e82589
Unapplied parent: f8fab09f2faa168f66c377a5f43055091afdf589

New changelog entries:
  * SECURITY UPDATE: Montgomery multiplication may produce incorrect
    results
    - debian/patches/CVE-2016-7055.patch: fix logic in
      crypto/bn/asm/x86_64-mont.pl.
    - CVE-2016-7055
  * SECURITY UPDATE: DoS via warning alerts
    - debian/patches/CVE-2016-8610.patch: don't allow too many consecutive
      warning alerts in ssl/d1_pkt.c, ssl/s3_pkt.c, ssl/ssl.h,
      ssl/ssl_locl.h.
    - debian/patches/CVE-2016-8610-2.patch: fail if an unrecognised record
      type is received in ssl/s3_pkt.c.
    - CVE-2016-8610
  * SECURITY UPDATE: Truncated packet could crash via OOB read
    - debian/patches/CVE-2017-3731.patch: harden RC4_MD5 cipher in
      crypto/evp/e_rc4_hmac_md5.c.
    - CVE-2017-3731
  * SECURITY UPDATE: BN_mod_exp may produce incorrect results on x86_64
    - debian/patches/CVE-2017-3732.patch: fix carry bug in
      bn_sqr8x_internal in crypto/bn/asm/x86_64-mont5.pl.
    - CVE-2017-3732

f8fab09... by Marc Deslauriers on 2017-01-30

[PATCH] bn/asm/x86_64-mont5.pl: fix carry bug in bn_sqr8x_internal.

Gbp-Pq: CVE-2017-3732.patch.

259f4ed... by Marc Deslauriers on 2017-01-30

[PATCH] crypto/evp: harden RC4_MD5 cipher.

Gbp-Pq: CVE-2017-3731.patch.

c952319... by Marc Deslauriers on 2017-01-30

[PATCH] Fail if an unrecognised record type is received

Gbp-Pq: CVE-2016-8610-2.patch.

e936af8... by Marc Deslauriers on 2017-01-30

[PATCH] Don't allow too many consecutive warning alerts

Gbp-Pq: CVE-2016-8610.patch.

585ac2c... by Marc Deslauriers on 2017-01-30

[PATCH] bn/asm/x86_64-mont.pl: fix for CVE-2016-7055 (Low severity).

Gbp-Pq: CVE-2016-7055.patch.

e1ecbb1... by Marc Deslauriers on 2017-01-30

[PATCH] Fix overflow check in BN_bn2dec()

Gbp-Pq: CVE-2016-2182-2.patch.

4738bf5... by Marc Deslauriers on 2017-01-30

[PATCH] Make message buffer slightly larger than message.

Gbp-Pq: CVE-2016-6306-2.patch.

077b8f3... by Marc Deslauriers on 2017-01-30

[PATCH] Fix small OOB reads.

Gbp-Pq: CVE-2016-6306-1.patch.

433cc05... by Marc Deslauriers on 2017-01-30

[PATCH] Fix OCSP Status Request extension unbounded memory growth

Gbp-Pq: CVE-2016-6304.patch.