ubuntu/+source/openssl:ubuntu/lucid

Last commit made on 2010-03-30
Get this branch:
git clone -b ubuntu/lucid https://git.launchpad.net/ubuntu/+source/openssl
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
ubuntu/lucid
Repository:
lp:ubuntu/+source/openssl

Recent commits

f4d1628... by Marc Deslauriers on 2010-03-30

Import patches-unapplied version 0.9.8k-7ubuntu8 to ubuntu/lucid

Imported using git-ubuntu import.

Changelog parent: a6f317ff3114850f3d2b3776511b96d322654b7e

New changelog entries:
  * SECURITY UPDATE: denial of service and possible arbitrary code
    execution via unchecked return values
    - debian/patches/CVE-2009-3245.patch: check bn_wexpand return value in
      crypto/bn/{bn_div.c,bn_gf2m.c,bn_mul.c}, crypto/ec/ec2_smpl.c,
      engines/e_ubsec.c.
    - CVE-2009-3245
  * SECURITY UPDATE: denial of service via "record of death"
    - debian/patches/CVE-2010-0740.patch: only send back minor version
      number in ssl/s3_pkt.c.
    - CVE-2010-0740

a6f317f... by Marc Deslauriers on 2010-03-26

Import patches-unapplied version 0.9.8k-7ubuntu7 to ubuntu/lucid

Imported using git-ubuntu import.

Changelog parent: ffec4b08d6898eacc80f3f6d13bbc72a6b17fb78

New changelog entries:
  * debian/patches/dtls-compatibility.patch: backport dtls compatibility
    code from 0.9.8m to fix interopability. (LP: #516318)

ffec4b0... by Colin Watson on 2010-02-01

Import patches-unapplied version 0.9.8k-7ubuntu6 to ubuntu/lucid

Imported using git-ubuntu import.

Changelog parent: 9a6ba34c5b13af3b7f91e8f5cc42a894581b24e5

New changelog entries:
  * Backport Intel AES-NI support from
    http://rt.openssl.org/Ticket/Display.html?id=2067 (LP: #485518).
  * Don't change perl #! paths under .pc.

9a6ba34... by Kees Cook on 2010-01-22

Import patches-unapplied version 0.9.8k-7ubuntu5 to ubuntu/lucid

Imported using git-ubuntu import.

Changelog parent: 6796264cebd836a8d053e42a93d1963dec9f0b23

New changelog entries:
  * SECURITY UPDATE: memory leak possible during state clean-up.
    - Add CVE-2009-4355.patch, upstream fixes thanks to Debian.

6796264... by Colin Watson on 2010-01-05

Import patches-unapplied version 0.9.8k-7ubuntu4 to ubuntu/lucid

Imported using git-ubuntu import.

Changelog parent: 5d9521a597a751f84d0f10f74184d9170fb33902

New changelog entries:
  * Use host compiler when cross-building (patch from Neil Williams in
    Debian #465248).
  * Don't run 'make test' when cross-building.
  * Create libssl0.9.8-udeb, for the benefit of wget-udeb (LP: #503339).

5d9521a... by Marc Deslauriers on 2009-12-08

Import patches-unapplied version 0.9.8k-7ubuntu3 to ubuntu/lucid

Imported using git-ubuntu import.

Changelog parent: d95e44df6dfb6672e1e15dafcd06b6db129ff2bd

New changelog entries:
  * debian/patches/disable-sslv2.patch: remove and apply inline to fix
    FTBFS when patch won't revert during the build process.

d95e44d... by Marc Deslauriers on 2009-12-08

Import patches-unapplied version 0.9.8k-7ubuntu2 to ubuntu/lucid

Imported using git-ubuntu import.

Changelog parent: 092277105cfd0d770bb2abe7ef7d5629e6796052

New changelog entries:
  * debian/patches/{disable-sslv2,Bsymbolic-functions}.patch: apply
    Makefile sections inline as once the package is configured during the
    build process, the patches wouldn't revert anymore, causing a FTBFS on
    anything other than amd64.

0922771... by "Nicolas Valcárcel Scerpella \(Canonical\)" <email address hidden> on 2009-12-07

Import patches-unapplied version 0.9.8k-7ubuntu1 to ubuntu/lucid

Imported using git-ubuntu import.

Changelog parent: 3c207a8de24790ec1dec5d942648711f89fceff6

New changelog entries:
  * Merge from debian unstable, remaining changes (LP: #493392):
    - Link using -Bsymbolic-functions
    - Add support for lpia
    - Disable SSLv2 during compile
    - Ship documentation in openssl-doc, suggested by the package.
    - Use a different priority for libssl0.9.8/restart-services
      depending on whether a desktop, or server dist-upgrade is being
      performed.
    - Display a system restart required notification bubble on libssl0.9.8
      upgrade.
    - Replace duplicate files in the doc directory with symlinks.
    - Move runtime libraries to /lib, for the benefit of wpasupplicant
  * Strip the patches out of the source into quilt patches
  * Disable CVE-2009-3555.patch

3c207a8... by Kurt Roeckx on 2009-11-28

Import patches-unapplied version 0.9.8k-7 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 579b02affe81737d46150659a2b7628aa3a74168

New changelog entries:
  * Bump the shlibs to require 0.9.8k-1. The following symbols
    to added between g and k: AES_wrap_key, AES_unwrap_key,
    ASN1_TYPE_set1, ASN1_STRING_set0, asn1_output_data_fn,
    SMIME_read_ASN1, BN_X931_generate_Xpq, BN_X931_derive_prime_ex,
    BN_X931_generate_prime_ex, COMP_zlib_cleanup, CRYPTO_malloc_debug_init,
    int_CRYPTO_set_do_dynlock_callback, CRYPTO_set_mem_info_functions,
    CRYPTO_strdup, CRYPTO_dbg_push_info, CRYPTO_dbg_pop_info,
    CRYPTO_dbg_remove_all_info, OPENSSL_isservice, OPENSSL_init,
    ENGINE_set_load_ssl_client_cert_function,
    ENGINE_get_ssl_client_cert_function, ENGINE_load_ssl_client_cert,
    EVP_CIPHER_CTX_set_flags, EVP_CIPHER_CTX_clear_flags,
    EVP_CIPHER_CTX_test_flags, HMAC_CTX_set_flags, OCSP_sendreq_new
    OCSP_sendreq_nbio, OCSP_REQ_CTX_free, RSA_X931_derive_ex,
    RSA_X931_generate_key_ex, X509_ALGOR_set0, X509_ALGOR_get0,
    X509at_get0_data_by_OBJ, X509_get1_ocsp

579b02a... by Kurt Roeckx on 2009-11-12

Import patches-unapplied version 0.9.8k-6 to debian/sid

Imported using git-ubuntu import.

Changelog parent: e907742b4ce610e7148988c1ba1feb3bc8b9bebb

New changelog entries:
  * Disable SSL/TLS renegotiation (CVE-2009-3555) (Closes: #555829)