Format: 1.8
Date: Mon, 17 Apr 2023 15:17:25 -0300
Source: openssl
Binary: openssl libssl1.1 libcrypto1.1-udeb libssl1.1-udeb libssl-dev libssl-doc
Architecture: arm64 arm64_translations
Version: 1.1.1-1ubuntu2.1~18.04.22
Distribution: bionic
Urgency: medium
Maintainer: Launchpad Build Daemon <buildd@bos02-arm64-037.buildd>
Changed-By: Camila Camargo de Matos <camila.camargodematos@canonical.com>
Description:
 libcrypto1.1-udeb - Secure Sockets Layer toolkit - libcrypto udeb (udeb)
 libssl-dev - Secure Sockets Layer toolkit - development files
 libssl-doc - Secure Sockets Layer toolkit - development documentation
 libssl1.1  - Secure Sockets Layer toolkit - shared libraries
 libssl1.1-udeb - ssl shared library - udeb (udeb)
 openssl    - Secure Sockets Layer toolkit - cryptographic utility
Changes:
 openssl (1.1.1-1ubuntu2.1~18.04.22) bionic-security; urgency=medium
 .
   * SECURITY UPDATE: excessive resource use when verifying policy constraints
     - debian/patches/CVE-2023-0464-1.patch: limit the number of nodes created
       in a policy tree (the default limit is set to 1000 nodes).
     - debian/patches/CVE-2023-0464-2.patch: add test cases for the policy
       resource overuse.
     - debian/patches/CVE-2023-0464-3.patch: disable the policy tree
       exponential growth test conditionally.
     - CVE-2023-0464
   * SECURITY UPDATE: invalid certificate policies ignored in leaf certificates
     - debian/patches/CVE-2023-0465-1.patch: ensure that EXFLAG_INVALID_POLICY
       is checked even in leaf certs.
     - debian/patches/CVE-2023-0465-2.patch: generate some certificates with
       the certificatePolicies extension.
     - debian/patches/CVE-2023-0465-3.patch: add a certificate policies test.
     - CVE-2023-0466
   * SECURITY UPDATE: certificate policy check in X509_VERIFY_PARAM_add0_policy
     not enabled as documented
     - debian/patches/CVE-2023-0466.patch: fix documentation of
       X509_VERIFY_PARAM_add0_policy().
     - CVE-2023-0466
Checksums-Sha1:
 953ef6656bdab10b0aa7e91bb43ca95b97862627 870936 libcrypto1.1-udeb_1.1.1-1ubuntu2.1~18.04.22_arm64.udeb
 2333ce1720c488c3c364849b95818548dc75881a 1365076 libssl-dev_1.1.1-1ubuntu2.1~18.04.22_arm64.deb
 067456b46c747772abea57b983fdc2166108ec7f 3408964 libssl1.1-dbgsym_1.1.1-1ubuntu2.1~18.04.22_arm64.ddeb
 8586381a19d1d6bfa6f6a0311e44a9f62da32405 157288 libssl1.1-udeb_1.1.1-1ubuntu2.1~18.04.22_arm64.udeb
 cad2d727274eb50369d8f444a984ad04ab134462 1065348 libssl1.1_1.1.1-1ubuntu2.1~18.04.22_arm64.deb
 6a30feac607fa9f20cc0bc8697c058ce38bd8485 564552 openssl-dbgsym_1.1.1-1ubuntu2.1~18.04.22_arm64.ddeb
 8dd944ba2bd210cdac95d6b062edc2123410ae55 7549 openssl_1.1.1-1ubuntu2.1~18.04.22_arm64.buildinfo
 00d427df7e6778450eefddfa8831705496613b72 582872 openssl_1.1.1-1ubuntu2.1~18.04.22_arm64.deb
 b9994c4dfc1654faa047b9198a576c4cbc9e3638 27015 openssl_1.1.1-1ubuntu2.1~18.04.22_arm64_translations.tar.gz
Checksums-Sha256:
 c544ad3d0eb946c0d271b3253c4f9bf8a36d2a7e95a21e7ff60fbce9dde68fed 870936 libcrypto1.1-udeb_1.1.1-1ubuntu2.1~18.04.22_arm64.udeb
 7f8dcb0c72e6d03c7f35282c8be7ae7fafad648d700f91a24112d5e9bae9c198 1365076 libssl-dev_1.1.1-1ubuntu2.1~18.04.22_arm64.deb
 d582c7b22a6ba1d45572ea90a8f5f8116f1f1676f483e71830edfdc0d57d314a 3408964 libssl1.1-dbgsym_1.1.1-1ubuntu2.1~18.04.22_arm64.ddeb
 5ec2d9dae02a7766b858b31b85b276ec9a76880c72756567a928284e56f9f732 157288 libssl1.1-udeb_1.1.1-1ubuntu2.1~18.04.22_arm64.udeb
 335d00263dcfb97ff11497c049dfb56bdfb9c2a07f5f4971bbbf8d1880d61988 1065348 libssl1.1_1.1.1-1ubuntu2.1~18.04.22_arm64.deb
 b95260939118347046b67c8a25bb9008419861bf804bfed7705fd1f0cd4e6504 564552 openssl-dbgsym_1.1.1-1ubuntu2.1~18.04.22_arm64.ddeb
 f92f3ebbba34349c7fcca6de256a5a5e0ed9f1b73465be2ac99808c723c7963b 7549 openssl_1.1.1-1ubuntu2.1~18.04.22_arm64.buildinfo
 ee1a258d3b0b0900bb44313e561fbb1e2ca897831bfa2982698bc751644cd8ae 582872 openssl_1.1.1-1ubuntu2.1~18.04.22_arm64.deb
 b52912c9a8cfecfaddf34df3c5263a92e82b3a873c84e29995188ddd42341f1e 27015 openssl_1.1.1-1ubuntu2.1~18.04.22_arm64_translations.tar.gz
Files:
 9000e4531515aebddf28ffb8397922bb 870936 debian-installer optional libcrypto1.1-udeb_1.1.1-1ubuntu2.1~18.04.22_arm64.udeb
 f92ae91dcad34a5143893f940cee1072 1365076 libdevel optional libssl-dev_1.1.1-1ubuntu2.1~18.04.22_arm64.deb
 26e3fc1d383d36d21fba36330bacd0a7 3408964 debug optional libssl1.1-dbgsym_1.1.1-1ubuntu2.1~18.04.22_arm64.ddeb
 aba3c00f04ba982442c98cd5ab5814a2 157288 debian-installer optional libssl1.1-udeb_1.1.1-1ubuntu2.1~18.04.22_arm64.udeb
 0fbc03da3a208011614d1cfeb4f8f326 1065348 libs optional libssl1.1_1.1.1-1ubuntu2.1~18.04.22_arm64.deb
 eb989fb84bc801168f3e3c7a63f13e0c 564552 debug optional openssl-dbgsym_1.1.1-1ubuntu2.1~18.04.22_arm64.ddeb
 de4398277296c42349495a34a744c4d7 7549 utils optional openssl_1.1.1-1ubuntu2.1~18.04.22_arm64.buildinfo
 1d0dc0bbae99d9bd3be419ce74482d8a 582872 utils optional openssl_1.1.1-1ubuntu2.1~18.04.22_arm64.deb
 a5ac8beddf531f6ced2241eb5371dc35 27015 raw-translations - openssl_1.1.1-1ubuntu2.1~18.04.22_arm64_translations.tar.gz
Original-Maintainer: Debian OpenSSL Team <pkg-openssl-devel@lists.alioth.debian.org>