ubuntu/+source/openssl:debian/stretch

Last commit made on 2020-02-08
Get this branch:
git clone -b debian/stretch https://git.launchpad.net/ubuntu/+source/openssl
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
debian/stretch
Repository:
lp:ubuntu/+source/openssl

Recent commits

3b0667f... by Sebastian Andrzej Siewior <email address hidden> on 2019-09-27

Import patches-unapplied version 1.1.0l-1~deb9u1 to debian/stretch

Imported using git-ubuntu import.

Changelog parent: c0da64bfd0bd0845ed780320199ad5121730ce4b

New changelog entries:
  * Import 1.1.0l
    - CVE-2019-1547 (Compute ECC cofactors if not provided during EC_GROUP
      construction).
    - CVE-2019-1563 (Fixed a padding oracle in PKCS7_dataDecode and
      CMS_decrypt_set1_pkey).

c0da64b... by Sebastian Andrzej Siewior <email address hidden> on 2019-06-26

Import patches-unapplied version 1.1.0k-1~deb9u1 to debian/stretch

Imported using git-ubuntu import.

Changelog parent: 01f87e7790463100f1ee773f0c7067e0b4ef347a

New changelog entries:
  * Import 1.1.0k
    - CVE-2019-1543 (Prevent over long nonces in ChaCha20-Poly1305)

01f87e7... by Sebastian Andrzej Siewior <email address hidden> on 2018-11-28

Import patches-unapplied version 1.1.0j-1~deb9u1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: f34d91b2c9c2dfa656b9fba77ae1ba72d7f5c2ce

New changelog entries:
  * Import 1.1.0j
    - CVE-2018-0734 (Timing vulnerability in DSA signature generation)
    - CVE-2018-0735 (Timing vulnerability in ECDSA signature generation)
    - add new symbols
  * Import 1.1.0i
    - Fix segfault ERR_clear_error (Closes: #903566)
    - Fix commandline option for CAengine (Closes: #907457)
    - CVE-2018-0732 (Client DoS due to large DH parameter)
    - CVE-2018-0737 (Cache timing vulnerability in RSA Key Generation)
  * Abort the build if symbols are discovered which are not part of the
    symbols file.
  * use signing-key.asc and a https links for downloads

f34d91b... by Sebastian Andrzej Siewior <email address hidden> on 2018-03-29

Import patches-unapplied version 1.1.0f-3+deb9u2 to debian/stretch

Imported using git-ubuntu import.

Changelog parent: 1a17052ebbaa09918f069bf6e63c10b60558c402

New changelog entries:
  * CVE-2017-3738 (rsaz_1024_mul_avx2 overflow bug on x86_64)
  * CVE-2018-0733 (Incorrect CRYPTO_memcmp on HP-UX PA-RISC)
  * CVE-2018-0739 (Constructed ASN.1 types with a recursive definition could
    exceed the stack)
  * Add patches to pass the testsuite:
    - Fix-a-Proxy-race-condition.patch
    - Fix-race-condition-in-TLSProxy.patch

1a17052... by Kurt Roeckx on 2017-11-02

Import patches-unapplied version 1.1.0f-3+deb9u1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 2163292d34b82c593a74f5b47187043897d462a8

New changelog entries:
  * Fix CVE-2017-3735
  * Fix CVE-2017-3736

2163292... by Kurt Roeckx on 2017-06-05

Import patches-unapplied version 1.1.0f-3 to debian/sid

Imported using git-ubuntu import.

Changelog parent: ff9da2291ffc830b5bb2fa98cbc235561b55c872

New changelog entries:
  * Don't cleanup a thread-local key we didn't create it (Closes: #863707)

ff9da22... by Kurt Roeckx on 2017-06-04

Import patches-unapplied version 1.1.0f-2 to debian/sid

Imported using git-ubuntu import.

Changelog parent: aba2ddb822a66f4de847cf90018bd4dc760a133d

New changelog entries:
  * Make the udeb use a versioned depends (Closes: #864080)
  * Conflict with libssl1.0-dev (Closes: #863367)

aba2ddb... by Kurt Roeckx on 2017-05-25

Import patches-unapplied version 1.1.0f-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: cdba986a08368af196bf1a9a8dd305deb705535a

New changelog entries:
  * New upstream version
    - Fix regression in req -x509 (Closes: #839575)
    - Properly detect features on the AMD Ryzen processor (Closes: #861145)
    - Don't mention -tls1_3 in the manpage (Closes: #859191)
  * Update libssl1.1.symbols for new symbols
  * Update man-section.patch

cdba986... by Sebastian Andrzej Siewior <email address hidden> on 2017-05-01

Import patches-unapplied version 1.1.0e-2 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 2a5eb3f920cb7a72ac7584649216ac2983c354aa

New changelog entries:
  * Make openssl depend on perl-base (Closes: #860254)

2a5eb3f... by Kurt Roeckx on 2017-02-16

Import patches-unapplied version 1.1.0e-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 8cb234d1a9df7d87214adddb339e99de82919d78

New changelog entries:
  * New upstream version
    - Fixes CVE-2017-3733
    - Remove patches that are applied upstream.