Format: 1.8
Date: Mon, 17 Apr 2023 15:17:25 -0300
Source: openssl
Binary: openssl libssl1.1 libcrypto1.1-udeb libssl1.1-udeb libssl-dev libssl-doc
Architecture: s390x s390x_translations
Version: 1.1.1-1ubuntu2.1~18.04.22
Distribution: bionic
Urgency: medium
Maintainer: Launchpad Build Daemon <buildd@bos02-s390x-012.buildd>
Changed-By: Camila Camargo de Matos <camila.camargodematos@canonical.com>
Description:
 libcrypto1.1-udeb - Secure Sockets Layer toolkit - libcrypto udeb (udeb)
 libssl-dev - Secure Sockets Layer toolkit - development files
 libssl-doc - Secure Sockets Layer toolkit - development documentation
 libssl1.1  - Secure Sockets Layer toolkit - shared libraries
 libssl1.1-udeb - ssl shared library - udeb (udeb)
 openssl    - Secure Sockets Layer toolkit - cryptographic utility
Changes:
 openssl (1.1.1-1ubuntu2.1~18.04.22) bionic-security; urgency=medium
 .
   * SECURITY UPDATE: excessive resource use when verifying policy constraints
     - debian/patches/CVE-2023-0464-1.patch: limit the number of nodes created
       in a policy tree (the default limit is set to 1000 nodes).
     - debian/patches/CVE-2023-0464-2.patch: add test cases for the policy
       resource overuse.
     - debian/patches/CVE-2023-0464-3.patch: disable the policy tree
       exponential growth test conditionally.
     - CVE-2023-0464
   * SECURITY UPDATE: invalid certificate policies ignored in leaf certificates
     - debian/patches/CVE-2023-0465-1.patch: ensure that EXFLAG_INVALID_POLICY
       is checked even in leaf certs.
     - debian/patches/CVE-2023-0465-2.patch: generate some certificates with
       the certificatePolicies extension.
     - debian/patches/CVE-2023-0465-3.patch: add a certificate policies test.
     - CVE-2023-0466
   * SECURITY UPDATE: certificate policy check in X509_VERIFY_PARAM_add0_policy
     not enabled as documented
     - debian/patches/CVE-2023-0466.patch: fix documentation of
       X509_VERIFY_PARAM_add0_policy().
     - CVE-2023-0466
Checksums-Sha1:
 2ce9cce00234c96b80d624642f2d12962dc0c45f 763372 libcrypto1.1-udeb_1.1.1-1ubuntu2.1~18.04.22_s390x.udeb
 742277651da492af92988817babd4ce2de9d0363 1239796 libssl-dev_1.1.1-1ubuntu2.1~18.04.22_s390x.deb
 a4c54f56f0dee2f8a5e039cf9bcad80e17205b46 3414840 libssl1.1-dbgsym_1.1.1-1ubuntu2.1~18.04.22_s390x.ddeb
 7402165fe87c490a0a0d9c3fbfdcac2c2f1ca37f 173356 libssl1.1-udeb_1.1.1-1ubuntu2.1~18.04.22_s390x.udeb
 522787d516994b821708e2949f5319381c746a57 973600 libssl1.1_1.1.1-1ubuntu2.1~18.04.22_s390x.deb
 c0cbe9384e7564972999f7de3d2f19708e8a60b4 562168 openssl-dbgsym_1.1.1-1ubuntu2.1~18.04.22_s390x.ddeb
 8554d1b6fd3cd2159ef3571bf1cc74ffbb5bdd6b 7472 openssl_1.1.1-1ubuntu2.1~18.04.22_s390x.buildinfo
 3adf8a563d2c8d92be42348a554cbd8fdf27375c 598956 openssl_1.1.1-1ubuntu2.1~18.04.22_s390x.deb
 0853a43870dbd7b0c0ec3ca0169de9e086dfd6d3 26160 openssl_1.1.1-1ubuntu2.1~18.04.22_s390x_translations.tar.gz
Checksums-Sha256:
 c46544d59e53ad5de2c4e27773454513d694b396a5eacb496e9233d2f9962de2 763372 libcrypto1.1-udeb_1.1.1-1ubuntu2.1~18.04.22_s390x.udeb
 857b8df8296068dd051bdca79f592bb1d3ccc572f88febf977c7abc07812220b 1239796 libssl-dev_1.1.1-1ubuntu2.1~18.04.22_s390x.deb
 b3b3240bbd5de0efb659284defec9f55338e638065e17208cda4a69f92e3f383 3414840 libssl1.1-dbgsym_1.1.1-1ubuntu2.1~18.04.22_s390x.ddeb
 24760ab6d71b3effd68c7f57bb46da2ed8877e654187d66c66281c13f00a8c39 173356 libssl1.1-udeb_1.1.1-1ubuntu2.1~18.04.22_s390x.udeb
 317526d01186077f4620687b8b48ec6b8481645b8259ba18fc5c5fa45db5436d 973600 libssl1.1_1.1.1-1ubuntu2.1~18.04.22_s390x.deb
 c6a9e2b53f7f1d3014c43b843e58e2a233409874a60e3b3bbed12f949bd745c4 562168 openssl-dbgsym_1.1.1-1ubuntu2.1~18.04.22_s390x.ddeb
 2e7f775731a5401703db354a15b8766b58259832bf139ded4285594abd74759e 7472 openssl_1.1.1-1ubuntu2.1~18.04.22_s390x.buildinfo
 ffb78c88bada2b5be1dd73a850cea67fd9c20c5b57709ef9cffbb1402b144ad8 598956 openssl_1.1.1-1ubuntu2.1~18.04.22_s390x.deb
 86ad43b8b0c609043ac9350b3776e091e66127b0520df3350a154be88cdfe65d 26160 openssl_1.1.1-1ubuntu2.1~18.04.22_s390x_translations.tar.gz
Files:
 338ac2c29a666a3975cc5a525b7fd7a8 763372 debian-installer optional libcrypto1.1-udeb_1.1.1-1ubuntu2.1~18.04.22_s390x.udeb
 05af8f5a4d605ea243859f554f6f62ce 1239796 libdevel optional libssl-dev_1.1.1-1ubuntu2.1~18.04.22_s390x.deb
 c7044fb89e5a288bc23f675ef78a9efc 3414840 debug optional libssl1.1-dbgsym_1.1.1-1ubuntu2.1~18.04.22_s390x.ddeb
 b90d2aa9d35d5f47173d63206e06ecda 173356 debian-installer optional libssl1.1-udeb_1.1.1-1ubuntu2.1~18.04.22_s390x.udeb
 49932ec044712aecb831a19a0d81d0c2 973600 libs optional libssl1.1_1.1.1-1ubuntu2.1~18.04.22_s390x.deb
 615ed4226b36d8bd84bae6b159a845eb 562168 debug optional openssl-dbgsym_1.1.1-1ubuntu2.1~18.04.22_s390x.ddeb
 3c965b2a36f58ea1ddaba90fdc734fab 7472 utils optional openssl_1.1.1-1ubuntu2.1~18.04.22_s390x.buildinfo
 37c2d32929b4b42d0e1fc8be644f7d8d 598956 utils optional openssl_1.1.1-1ubuntu2.1~18.04.22_s390x.deb
 106301ac53c548cc5818585883838d79 26160 raw-translations - openssl_1.1.1-1ubuntu2.1~18.04.22_s390x_translations.tar.gz
Original-Maintainer: Debian OpenSSL Team <pkg-openssl-devel@lists.alioth.debian.org>