Publishing details

Published on 2018-11-08
Copied from ubuntu xenial in PPA for Ubuntu Security Proposed by Marc Deslauriers

Changelog

pyopenssl (0.15.1-2ubuntu0.2) xenial-security; urgency=medium

  * SECURITY UPDATE: use-after-free and memory leak
    - debian/patches/CVE-2018-100080x-pre.patch: fix use-after-free and
      introduce _from_raw_x509_ptr in OpenSSL/SSL.py, OpenSSL/crypto.py.
    - debian/patches/CVE-2018-100080x.patch: fix issues in OpenSSL/SSL.py,
      OpenSSL/crypto.py, add test to OpenSSL/test/test_ssl.py.
    - debian/control: depend on python-cryptography security update to
      get access to new X509_up_ref function.
    - CVE-2018-1000807
    - CVE-2018-1000808
  * debian/patches/update_certs.patch: update expired test certs.

 -- Marc Deslauriers <email address hidden>  Wed, 07 Nov 2018 13:39:49 -0500

Available diffs

diff from 0.15.1-2ubuntu0.1 to 0.15.1-2ubuntu0.2 (4.7 KiB)

Builds

amd64

Built packages

python-openssl Python 2 wrapper around the OpenSSL library

python-openssl-doc Python wrapper around the OpenSSL library (documentation package)

python3-openssl Python 3 wrapper around the OpenSSL library

Package files

pyopenssl_0.15.1-2ubuntu0.2.debian.tar.xz (13.8 KiB)
pyopenssl_0.15.1-2ubuntu0.2.dsc (2.4 KiB)
pyopenssl_0.15.1.orig.tar.gz (146.4 KiB)
python-openssl-doc_0.15.1-2ubuntu0.2_all.deb (60.6 KiB)
python-openssl_0.15.1-2ubuntu0.2_all.deb (82.9 KiB)
python3-openssl_0.15.1-2ubuntu0.2_all.deb (83.0 KiB)