Ubuntu

“openssl” 1.0.1c-3ubuntu2.1 source package in The Quantal Quetzal

Publishing history

1.0.1c-3ubuntu2.1
SUPERSEDED: Quantal pocket Updates in component main and section utils
  • Removed from disk on 2013-03-01.
  • Removal requested on 2013-03-01.
  • Superseded on 2013-02-28 by openssl - 1.0.1c-3ubuntu2.2
  • Published on 2013-02-21
  • Copied from ubuntu quantal in Private PPA for Ubuntu Security Team by Ubuntu Archive Robot
1.0.1c-3ubuntu2.1
SUPERSEDED: Quantal pocket Security in component main and section utils
  • Removed from disk on 2013-03-01.
  • Removal requested on 2013-03-01.
  • Superseded on 2013-02-28 by openssl - 1.0.1c-3ubuntu2.2
  • Published on 2013-02-21
  • Copied from ubuntu quantal in Private PPA for Ubuntu Security Team by Marc Deslauriers

Builds

Changelog

openssl (1.0.1c-3ubuntu2.1) quantal-security; urgency=low

  * SECURITY UPDATE: denial of service via invalid OCSP key
    - debian/patches/CVE-2013-0166.patch: properly handle NULL key in
      crypto/asn1/a_verify.c, crypto/ocsp/ocsp_vfy.c.
    - CVE-2013-0166
  * SECURITY UPDATE: "Lucky Thirteen" timing side-channel TLS attack
    - debian/patches/CVE-2013-0169.patch: massive code changes
    - CVE-2013-0169
  * SECURITY UPDATE: denial of service via AES-NI and crafted CBC data
    - Fix included in CVE-2013-0169 patch
    - CVE-2012-2686
 -- Marc Deslauriers <email address hidden>   Mon, 18 Feb 2013 13:13:42 -0500