openssl 1.0.1-4ubuntu5.39 source package in Ubuntu
Changelog
openssl (1.0.1-4ubuntu5.39) precise-security; urgency=medium
* SECURITY UPDATE: Pointer arithmetic undefined behaviour
- debian/patches/CVE-2016-2177-pre.patch: check for ClientHello message
overruns in ssl/s3_srvr.c.
- debian/patches/CVE-2016-2177-pre2.patch: validate ClientHello
extension field length in ssl/t1_lib.c.
- debian/patches/CVE-2016-2177-pre3.patch: pass in a limit rather than
calculate it in ssl/s3_srvr.c, ssl/ssl_locl.h, ssl/t1_lib.c.
- debian/patches/CVE-2016-2177.patch: avoid undefined pointer
arithmetic in ssl/s3_srvr.c, ssl/t1_lib.c,
- CVE-2016-2177
* SECURITY UPDATE: ECDSA P-256 timing attack key recovery
- debian/patches/CVE-2016-7056.patch: use BN_mod_exp_mont_consttime in
crypto/ec/ec.h, crypto/ec/ec_lcl.h, crypto/ec/ec_lib.c,
crypto/ecdsa/ecs_ossl.c.
- CVE-2016-7056
* SECURITY UPDATE: DoS via warning alerts
- debian/patches/CVE-2016-8610.patch: don't allow too many consecutive
warning alerts in ssl/d1_pkt.c, ssl/s3_pkt.c, ssl/ssl.h,
ssl/ssl_locl.h.
- debian/patches/CVE-2016-8610-2.patch: fail if an unrecognised record
type is received in ssl/s3_pkt.c.
- CVE-2016-8610
* SECURITY UPDATE: Truncated packet could crash via OOB read
- debian/patches/CVE-2017-3731-pre.patch: sanity check
EVP_CTRL_AEAD_TLS_AAD in crypto/evp/e_aes.c,
crypto/evp/e_aes_cbc_hmac_sha1.c, crypto/evp/e_rc4_hmac_md5.c,
crypto/evp/evp.h, ssl/t1_enc.c.
- debian/patches/CVE-2017-3731.patch: harden RC4_MD5 cipher in
crypto/evp/e_rc4_hmac_md5.c.
- CVE-2017-3731
-- Marc Deslauriers <email address hidden> Mon, 30 Jan 2017 14:30:36 -0500
Upload details
- Uploaded by:
- Marc Deslauriers
- Uploaded to:
- Precise
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any all
- Section:
- utils
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| openssl_1.0.1.orig.tar.gz | 4.2 MiB | 4d9f0a594a9a89b28e1a04a9504c04104f6508ee27ad1e0efdd17a7a6dbbeeee |
| openssl_1.0.1-4ubuntu5.39.debian.tar.gz | 284.9 KiB | 3137f726122302537ff9f99e9d9832a34f69fd1517c8797aebddabcee9d24031 |
| openssl_1.0.1-4ubuntu5.39.dsc | 2.3 KiB | 3ba485db235b46912a0778aaac8814b79630fb3a7c7728fe0ff95c84e790ad43 |
Available diffs
Binary packages built by this source
- libcrypto1.0.0-udeb: crypto shared library - udeb
libcrypto shared library.
.
Do not install it on a normal system.
- libcrypto1.0.0-udeb-dbgsym: debug symbols for package libcrypto1.0.0-udeb
libcrypto shared library.
.
Do not install it on a normal system.
- libssl-dev: SSL development libraries, header files and documentation
libssl and libcrypto development libraries, header files and manpages.
.
It is part of the OpenSSL implementation of SSL.
- libssl-doc: SSL development documentation documentation
libssl and libcrypto manpages and demo files.
.
It is part of the OpenSSL implementation of SSL.
- libssl1.0.0: SSL shared libraries
libssl and libcrypto shared libraries needed by programs like
apache-ssl, telnet-ssl and openssh.
.
It is part of the OpenSSL implementation of SSL.
- libssl1.0.0-dbg: Symbol tables for libssl and libcrypto
This package is part of the OpenSSL implementation of SSL.
- libssl1.0.0-dbgsym: debug symbols for package libssl1.0.0
libssl and libcrypto shared libraries needed by programs like
apache-ssl, telnet-ssl and openssh.
.
It is part of the OpenSSL implementation of SSL.
- libssl1.0.0-udeb: ssl shared library - udeb
libssl shared library.
.
Do not install it on a normal system.
- libssl1.0.0-udeb-dbgsym: debug symbols for package libssl1.0.0-udeb
libssl shared library.
.
Do not install it on a normal system.
- openssl: Secure Socket Layer (SSL) binary and related cryptographic tools
This package contains the openssl binary and related tools.
.
It is part of the OpenSSL implementation of SSL.
.
You need it to perform certain cryptographic actions like:
- Creation of RSA, DH and DSA key parameters;
- Creation of X.509 certificates, CSRs and CRLs;
- Calculation of message digests;
- Encryption and decryption with ciphers;
- SSL/TLS client and server tests;
- Handling of S/MIME signed or encrypted mail.
- openssl-dbgsym: debug symbols for package openssl
This package contains the openssl binary and related tools.
.
It is part of the OpenSSL implementation of SSL.
.
You need it to perform certain cryptographic actions like:
- Creation of RSA, DH and DSA key parameters;
- Creation of X.509 certificates, CSRs and CRLs;
- Calculation of message digests;
- Encryption and decryption with ciphers;
- SSL/TLS client and server tests;
- Handling of S/MIME signed or encrypted mail.
