Format: 1.8
Date: Wed, 17 Feb 2021 08:14:40 -0500
Source: openssl
Binary: openssl libssl1.0.0 libcrypto1.0.0-udeb libssl1.0.0-udeb libssl-dev libssl-doc libssl1.0.0-dbg
Architecture: amd64 all amd64_translations
Version: 1.0.2g-1ubuntu4.19
Distribution: xenial
Urgency: medium
Maintainer: Launchpad Build Daemon <buildd@lcy01-amd64-010.buildd>
Changed-By: Marc Deslauriers <marc.deslauriers@ubuntu.com>
Description:
 libcrypto1.0.0-udeb - Secure Sockets Layer toolkit - libcrypto udeb (udeb)
 libssl-dev - Secure Sockets Layer toolkit - development files
 libssl-doc - Secure Sockets Layer toolkit - development documentation
 libssl1.0.0 - Secure Sockets Layer toolkit - shared libraries
 libssl1.0.0-dbg - Secure Sockets Layer toolkit - debug information
 libssl1.0.0-udeb - ssl shared library - udeb (udeb)
 openssl    - Secure Sockets Layer toolkit - cryptographic utility
Changes:
 openssl (1.0.2g-1ubuntu4.19) xenial-security; urgency=medium
 .
   * SECURITY UPDATE: Integer overflow in CipherUpdate
     - debian/patches/CVE-2021-23840-pre1.patch: add new EVP error codes in
       crypto/evp/evp_err.c, crypto/evp/evp.h.
     - debian/patches/CVE-2021-23840-pre2.patch: add a new EVP error code in
       crypto/evp/evp_err.c, crypto/evp/evp.h.
     - debian/patches/CVE-2021-23840.patch: don't overflow the output length
       in EVP_CipherUpdate calls in crypto/evp/evp_enc.c,
       crypto/evp/evp_err.c, crypto/evp/evp.h.
     - CVE-2021-23840
   * SECURITY UPDATE: Null pointer deref in X509_issuer_and_serial_hash()
     - debian/patches/CVE-2021-23841.patch: fix Null pointer deref in
       crypto/x509/x509_cmp.c.
     - CVE-2021-23841
Checksums-Sha1:
 9a3461b8a17b61b4b7f2324f999c0f0df2d3e76a 938 libcrypto1.0.0-udeb-dbgsym_1.0.2g-1ubuntu4.19_amd64.ddeb
 f56496016e2e1dee56309192265256868a8133d7 854690 libcrypto1.0.0-udeb_1.0.2g-1ubuntu4.19_amd64.udeb
 ca0561534a4ee9b8b0752d3bd2cf450f445ddd36 928 libssl-dev-dbgsym_1.0.2g-1ubuntu4.19_amd64.ddeb
 d42b046dc12794a534ac4598216bada46b537ff9 1346076 libssl-dev_1.0.2g-1ubuntu4.19_amd64.deb
 385d40a783f59cee899c61165b118d769c0fd176 1077304 libssl-doc_1.0.2g-1ubuntu4.19_all.deb
 061e1a4f7a16c2a15fdb81e92146c927d9b851e6 2764450 libssl1.0.0-dbg_1.0.2g-1ubuntu4.19_amd64.deb
 0cea97bd4aa51e7b5e5d86ae79afba77e2dc2b5a 904 libssl1.0.0-dbgsym_1.0.2g-1ubuntu4.19_amd64.ddeb
 372b979f1f4efcbdcc9d6ded697ad0d541be73ab 822 libssl1.0.0-udeb-dbgsym_1.0.2g-1ubuntu4.19_amd64.ddeb
 14da0d79bb1b058ba87637e5e9101e6df0a44fcf 140138 libssl1.0.0-udeb_1.0.2g-1ubuntu4.19_amd64.udeb
 fb9ef2c9cdbe68c2f55bb94f816be5aecc19d339 1082130 libssl1.0.0_1.0.2g-1ubuntu4.19_amd64.deb
 f96a1f9c46e85afb4a61d95718aec89f7b9d4c96 1062 openssl-dbgsym_1.0.2g-1ubuntu4.19_amd64.ddeb
 35476713cd61abd75e769f98ede89ddc2b41fbc3 492328 openssl_1.0.2g-1ubuntu4.19_amd64.deb
 74f9e5121cb4a0d077e1bc7b828cc0de082f22ca 20745 openssl_1.0.2g-1ubuntu4.19_amd64_translations.tar.gz
Checksums-Sha256:
 ba7c834002dbf8118f338dd2f45940d0d4981834185af0cbf411a87e361e5e92 938 libcrypto1.0.0-udeb-dbgsym_1.0.2g-1ubuntu4.19_amd64.ddeb
 78e4fc9d011dcf26800c634b2c72f65abfde991627c0786de0eb2d81af644645 854690 libcrypto1.0.0-udeb_1.0.2g-1ubuntu4.19_amd64.udeb
 45f29631600596276bfb6b5b336ee2be11567619c4fdf344530d38f85fa80cf9 928 libssl-dev-dbgsym_1.0.2g-1ubuntu4.19_amd64.ddeb
 effe8793f90c34f5c19a3ffb0a5714af7343162ea88aa3362725ad285810ae57 1346076 libssl-dev_1.0.2g-1ubuntu4.19_amd64.deb
 fe7d7d9180daa3bd0583d60dceeb47fb46170164e115d8aac8eb13f4df9d4f13 1077304 libssl-doc_1.0.2g-1ubuntu4.19_all.deb
 92d16dfdb6f1456e7e2a06d5b608ce85bd8b4cc848cf5ef379cddb09698deb0f 2764450 libssl1.0.0-dbg_1.0.2g-1ubuntu4.19_amd64.deb
 5eab5ce2ca5b832e92a83aa916978b51a1bd560a448f1c70a1c1a02a726e8af8 904 libssl1.0.0-dbgsym_1.0.2g-1ubuntu4.19_amd64.ddeb
 8f43a85cabb999cab50564c98cfffa34cabc62dcaa009640739b690e6be024a6 822 libssl1.0.0-udeb-dbgsym_1.0.2g-1ubuntu4.19_amd64.ddeb
 d421d0db5c12e31bdc95456fe6e55be7dd0a0003a35ccf2d9ee54a4516880f11 140138 libssl1.0.0-udeb_1.0.2g-1ubuntu4.19_amd64.udeb
 38247f24122c17478f495093ce1cfa3711079d2433c8bceffcf23eb6978b292b 1082130 libssl1.0.0_1.0.2g-1ubuntu4.19_amd64.deb
 f9a697ec11df0154e8b06d8b8205bec2afd59b9243cd08f45fede9e2a956dee6 1062 openssl-dbgsym_1.0.2g-1ubuntu4.19_amd64.ddeb
 aaf58ca71387e7ade83d4c30a046c68cb1354a0bce5c18181ff01ef72d285a74 492328 openssl_1.0.2g-1ubuntu4.19_amd64.deb
 e7f26b4425c94b5363c899de41c7433a665d64a850af52d9b9f5ce9500b1f39e 20745 openssl_1.0.2g-1ubuntu4.19_amd64_translations.tar.gz
Files:
 f9590fe5a2ed4b15854cdd40ba2a51bd 938 debian-installer extra libcrypto1.0.0-udeb-dbgsym_1.0.2g-1ubuntu4.19_amd64.ddeb
 54ef43e4e80a8dac72f24222944adffd 854690 debian-installer optional libcrypto1.0.0-udeb_1.0.2g-1ubuntu4.19_amd64.udeb
 c2b0733c56a8f7154930f20b7a41b4b9 928 libdevel extra libssl-dev-dbgsym_1.0.2g-1ubuntu4.19_amd64.ddeb
 724e83fa319abfea2432fde8ead48e7d 1346076 libdevel optional libssl-dev_1.0.2g-1ubuntu4.19_amd64.deb
 6f2dfc0af6b285376a8a081c074eadf6 1077304 doc optional libssl-doc_1.0.2g-1ubuntu4.19_all.deb
 671fc645d4edd5e7871db8ca5fa88000 2764450 debug extra libssl1.0.0-dbg_1.0.2g-1ubuntu4.19_amd64.deb
 8ad2ebb3fdb8865aab75508e9fe6e160 904 libs extra libssl1.0.0-dbgsym_1.0.2g-1ubuntu4.19_amd64.ddeb
 9f3f89e63255a3b7c75b561b65a3622f 822 debian-installer extra libssl1.0.0-udeb-dbgsym_1.0.2g-1ubuntu4.19_amd64.ddeb
 caddf1e5b45b3af0801f7b4f78cc4146 140138 debian-installer optional libssl1.0.0-udeb_1.0.2g-1ubuntu4.19_amd64.udeb
 21a56737d89b76b7b7e0d11157d893ca 1082130 libs important libssl1.0.0_1.0.2g-1ubuntu4.19_amd64.deb
 9f522570acd4391ef8e776fbec8f74ee 1062 utils extra openssl-dbgsym_1.0.2g-1ubuntu4.19_amd64.ddeb
 ac1dc1f0df93f3caaa6f38c409b64fab 492328 utils optional openssl_1.0.2g-1ubuntu4.19_amd64.deb
 56b4fbb5a6aa15b1b590448ec7ece2d0 20745 raw-translations - openssl_1.0.2g-1ubuntu4.19_amd64_translations.tar.gz
Original-Maintainer: Debian OpenSSL Team <pkg-openssl-devel@lists.alioth.debian.org>
Package-Type: udeb