Format: 1.8
Date: Mon, 17 Apr 2023 15:17:25 -0300
Source: openssl
Binary: openssl libssl1.1 libcrypto1.1-udeb libssl1.1-udeb libssl-dev libssl-doc
Architecture: i386 i386_translations
Version: 1.1.1-1ubuntu2.1~18.04.22
Distribution: bionic
Urgency: medium
Maintainer: Launchpad Build Daemon <buildd@lcy02-amd64-009.buildd>
Changed-By: Camila Camargo de Matos <camila.camargodematos@canonical.com>
Description:
 libcrypto1.1-udeb - Secure Sockets Layer toolkit - libcrypto udeb (udeb)
 libssl-dev - Secure Sockets Layer toolkit - development files
 libssl-doc - Secure Sockets Layer toolkit - development documentation
 libssl1.1  - Secure Sockets Layer toolkit - shared libraries
 libssl1.1-udeb - ssl shared library - udeb (udeb)
 openssl    - Secure Sockets Layer toolkit - cryptographic utility
Changes:
 openssl (1.1.1-1ubuntu2.1~18.04.22) bionic-security; urgency=medium
 .
   * SECURITY UPDATE: excessive resource use when verifying policy constraints
     - debian/patches/CVE-2023-0464-1.patch: limit the number of nodes created
       in a policy tree (the default limit is set to 1000 nodes).
     - debian/patches/CVE-2023-0464-2.patch: add test cases for the policy
       resource overuse.
     - debian/patches/CVE-2023-0464-3.patch: disable the policy tree
       exponential growth test conditionally.
     - CVE-2023-0464
   * SECURITY UPDATE: invalid certificate policies ignored in leaf certificates
     - debian/patches/CVE-2023-0465-1.patch: ensure that EXFLAG_INVALID_POLICY
       is checked even in leaf certs.
     - debian/patches/CVE-2023-0465-2.patch: generate some certificates with
       the certificatePolicies extension.
     - debian/patches/CVE-2023-0465-3.patch: add a certificate policies test.
     - CVE-2023-0466
   * SECURITY UPDATE: certificate policy check in X509_VERIFY_PARAM_add0_policy
     not enabled as documented
     - debian/patches/CVE-2023-0466.patch: fix documentation of
       X509_VERIFY_PARAM_add0_policy().
     - CVE-2023-0466
Checksums-Sha1:
 f4535686b7a43b50bb22f5d152269546bd846b70 1060996 libcrypto1.1-udeb_1.1.1-1ubuntu2.1~18.04.22_i386.udeb
 2fd67d3850785e921114c7f609f0f5d65de7502a 1600888 libssl-dev_1.1.1-1ubuntu2.1~18.04.22_i386.deb
 5e0614a045825d695b895cf8ecebf681a286a294 2758024 libssl1.1-dbgsym_1.1.1-1ubuntu2.1~18.04.22_i386.ddeb
 1615432f05b95440dc95c63738e699e34f374701 208976 libssl1.1-udeb_1.1.1-1ubuntu2.1~18.04.22_i386.udeb
 b947ebd84d229e3100215b50e8419fb672f913df 1305664 libssl1.1_1.1.1-1ubuntu2.1~18.04.22_i386.deb
 76502179a5a2ebc925e1d5c8466547d47d7e1a0e 489440 openssl-dbgsym_1.1.1-1ubuntu2.1~18.04.22_i386.ddeb
 89b53632d125fa2b581f46e6f53d84de4fae2a36 7565 openssl_1.1.1-1ubuntu2.1~18.04.22_i386.buildinfo
 e204c7eb16c10098126432c693501302ef965b59 626552 openssl_1.1.1-1ubuntu2.1~18.04.22_i386.deb
 ce6b0932d22e811cc0df2e6cd30abc45d8620523 26163 openssl_1.1.1-1ubuntu2.1~18.04.22_i386_translations.tar.gz
Checksums-Sha256:
 59ed562197d03ad93f5b8dfbf155d44e6700cfe2adc3e196bca7e1ba14678569 1060996 libcrypto1.1-udeb_1.1.1-1ubuntu2.1~18.04.22_i386.udeb
 041399275c8e70f092e8ff4c53e6325b8148332659401ea2712983383bf18a78 1600888 libssl-dev_1.1.1-1ubuntu2.1~18.04.22_i386.deb
 d9d0464aa8d0dc29e3f7e3d28136ba578d7a196bca33e3b7feedf5de513b076a 2758024 libssl1.1-dbgsym_1.1.1-1ubuntu2.1~18.04.22_i386.ddeb
 cdb90a06c074f7ebd48cb93807c36cab233137a5dbbe8a37c76b78f2109144d6 208976 libssl1.1-udeb_1.1.1-1ubuntu2.1~18.04.22_i386.udeb
 94f4bde93008140e0c6dd4c150ef740222d26d5ef0d9b5ae2c3218d9777bdd56 1305664 libssl1.1_1.1.1-1ubuntu2.1~18.04.22_i386.deb
 2bca08250df8424998b966d8eaf3fa43659b13a7d8fb086957692b691a66ee74 489440 openssl-dbgsym_1.1.1-1ubuntu2.1~18.04.22_i386.ddeb
 6010ec2cfe57131dddfb05f9558957eb3c9add6fd0c286430622e33e8fbc9058 7565 openssl_1.1.1-1ubuntu2.1~18.04.22_i386.buildinfo
 651f97f62e454b3fad4cd70db8755e1b939e591d4f1ad140c51e82c1d7162698 626552 openssl_1.1.1-1ubuntu2.1~18.04.22_i386.deb
 4b9092aca0e9eb5f47a5964aa726a9c73237145447501bc266f3eda4ec66b827 26163 openssl_1.1.1-1ubuntu2.1~18.04.22_i386_translations.tar.gz
Files:
 cdc71bf63746a041af2c11d48fab0718 1060996 debian-installer optional libcrypto1.1-udeb_1.1.1-1ubuntu2.1~18.04.22_i386.udeb
 07dd970aaa7fbff79c7f868629c52cda 1600888 libdevel optional libssl-dev_1.1.1-1ubuntu2.1~18.04.22_i386.deb
 d71e5f2aa63272ad448b04f4fe9551d2 2758024 debug optional libssl1.1-dbgsym_1.1.1-1ubuntu2.1~18.04.22_i386.ddeb
 e96bb69ba0e2cfdb86efb765e0177667 208976 debian-installer optional libssl1.1-udeb_1.1.1-1ubuntu2.1~18.04.22_i386.udeb
 f48f4ac7bed1c27c25fe4cc842c3e01d 1305664 libs optional libssl1.1_1.1.1-1ubuntu2.1~18.04.22_i386.deb
 cfa42d156bd1009216d67326f5be763b 489440 debug optional openssl-dbgsym_1.1.1-1ubuntu2.1~18.04.22_i386.ddeb
 e91c00a2b848678c8925ab977c2cfef2 7565 utils optional openssl_1.1.1-1ubuntu2.1~18.04.22_i386.buildinfo
 dfdf7179fb330768a0b51382d5d5d4fd 626552 utils optional openssl_1.1.1-1ubuntu2.1~18.04.22_i386.deb
 eee38db73612a94434f2301657058722 26163 raw-translations - openssl_1.1.1-1ubuntu2.1~18.04.22_i386_translations.tar.gz
Original-Maintainer: Debian OpenSSL Team <pkg-openssl-devel@lists.alioth.debian.org>