ubuntu/+source/openssl:ubuntu/disco-updates

Last commit made on 2019-06-20
Get this branch:
git clone -b ubuntu/disco-updates https://git.launchpad.net/ubuntu/+source/openssl
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
ubuntu/disco-updates
Repository:
lp:ubuntu/+source/openssl

Recent commits

5e7d502... by Dimitri John Ledkov on 2019-06-20

Import patches-unapplied version 1.1.1b-1ubuntu2.4 to ubuntu/disco-proposed

Imported using git-ubuntu import.

Changelog parent: 3aee437d4e8c9eed0921abdb6022924a80a0c1bd

New changelog entries:
  * Import libraries/restart-without-asking as used in postinst, to
    prevent failure to configure the package without debconf database.
    LP: #1832919

3aee437... by Dimitri John Ledkov on 2019-06-14

Import patches-unapplied version 1.1.1b-1ubuntu2.3 to ubuntu/disco-proposed

Imported using git-ubuntu import.

Changelog parent: 870da88b4de18654a4d6634b500ec0fb78038eb7

New changelog entries:
  * Bump major version of OpenSSL in postinst to trigger services restart
    upon upgrade. Many services listed there must be restarted when
    upgrading 1.1.0 to 1.1.1. LP: #1832522
  * Fix path to Xorg for reboot notifications on desktop. LP: #1832421

870da88... by Dimitri John Ledkov on 2019-06-11

Import patches-unapplied version 1.1.1b-1ubuntu2.2 to ubuntu/disco-proposed

Imported using git-ubuntu import.

Changelog parent: 47a1d81d26e1d0d251efdbc3a557b8c25b6e2368

New changelog entries:
  * Cherrypick upstream patch to fix ca -spkac output to be text again.
    LP: #1828215
  * Cherrypick upstream patch to prevent over long nonces in ChaCha20-Poly1305
    CVE-2019-1543

47a1d81... by Dimitri John Ledkov on 2019-04-17

Import patches-unapplied version 1.1.1b-1ubuntu2.1 to ubuntu/disco-proposed

Imported using git-ubuntu import.

Changelog parent: 0f32d6f3179edc2f9028e9236b014442d1dcd24b

New changelog entries:
  * SRU the below two regressions fixes from Debian LP: #1825212
    - Fix BUF_MEM regression (Closes: #923516)
    - Fix error when config can't be opened (Closes: #926315)

0f32d6f... by Dimitri John Ledkov on 2019-04-03

Import patches-unapplied version 1.1.1b-1ubuntu2 to ubuntu/disco-proposed

Imported using git-ubuntu import.

Changelog parent: 797f7efc3a472687971ac8d279efa8ee540bb91c

New changelog entries:
  * debian/rules: Ship openssl.cnf in libssl1.1-udeb, as required to use
    OpenSSL by other udebs, e.g. wget-udeb. LP: #1822898
  * Drop debian/patches/UBUNTU-lower-tls-security-level-for-compat.patch
    to revert TLS_SECURITY_LEVEL back to 1. LP: #1822984

797f7ef... by Dimitri John Ledkov on 2019-02-27

Import patches-unapplied version 1.1.1b-1ubuntu1 to ubuntu/disco-proposed

Imported using git-ubuntu import.

Changelog parent: c39f0f616bd9831587353baafb80f25dd0d313aa

New changelog entries:
  * Merge from Debian unstable, remaining changes:
    - Replace duplicate files in the doc directory with symlinks.
    - debian/libssl1.1.postinst:
      + Display a system restart required notification on libssl1.1
        upgrade on servers.
      + Use a different priority for libssl1.1/restart-services depending
        on whether a desktop, or server dist-upgrade is being performed.
    - Revert "Enable system default config to enforce TLS1.2 as a
      minimum" & "Increase default security level from 1 to 2".
    - Further decrease security level from 1 to 0, for compatibility with
      openssl 1.0.2.
    - Drop the NEWS entry, not applicable on Ubuntu.

c39f0f6... by Kurt Roeckx on 2019-02-26

Import patches-unapplied version 1.1.1b-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 3b567a680e242950bb06841ab0ebe66819a679a3

New changelog entries:
  [ Sebastian Andrzej Siewior ]
  * Add Breaks on lighttpd (Closes: #913558).
  [ Kurt Roeckx ]
  * New upstream version
  * Update symbol list

3b567a6... by Sebastian Andrzej Siewior <email address hidden> on 2018-11-22

Import patches-unapplied version 1.1.1a-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 3a1b6836b2f809dd2c5db119118065bfbe48c42f

New changelog entries:
  * Add Breaks on python-boto (See: #909545)
  * New upstream version
   - CVE-2018-0734 (Timing vulnerability in DSA signature generation)
   - CVE-2018-0735 (Timing vulnerability in ECDSA signature generation)
   - Update symbol file for 1.1.1a

3a1b683... by Sebastian Andrzej Siewior <email address hidden> on 2018-10-28

Import patches-unapplied version 1.1.1-2 to debian/sid

Imported using git-ubuntu import.

Changelog parent: ec7b59aab88eec3d1da0e1dc81d7daa16ca50623

New changelog entries:
  [ Sebastian Andrzej Siewior ]
  * Add Breaks on isync (See: #906955)
  * Fix autopkgtest (Closes: #910459)
  [ Kurt Roeckx ]
  * Add Breaks on python-imaplib2 (See: #907079)
  * Add news entry regarding default TLS version and security level
    (Closes: #875423, #907631, #911389, #912067).

ec7b59a... by Sebastian Andrzej Siewior <email address hidden> on 2018-09-12

Import patches-unapplied version 1.1.1-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 2c0e822beb69b78e1307fba20a505c5a5953f09e

New changelog entries:
  * New upstream version.
   - Update symbol file for 1.1.1
   - CVE-2018-0732 (actually since pre8).
  * Add Breaks on python-httplib2 (Addresses: #907015)
  * Add hardening=+all.
  * Update to policy 4.2.1
    - Less verbose testsuite with terse
    - Use RRR=no