Format: 1.8 Date: Mon, 17 Apr 2023 15:12:58 -0300 Source: openssl Binary: libssl-dev libssl3 openssl Built-For-Profiles: noudeb Architecture: ppc64el ppc64el_translations Version: 3.0.2-0ubuntu1.9 Distribution: jammy Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Camila Camargo de Matos Description: libssl-dev - Secure Sockets Layer toolkit - development files libssl3 - Secure Sockets Layer toolkit - shared libraries openssl - Secure Sockets Layer toolkit - cryptographic utility Changes: openssl (3.0.2-0ubuntu1.9) jammy-security; urgency=medium . * SECURITY UPDATE: double locking when processing X.509 certificate policy constraints - debian/patches/CVE-2022-3996-1.patch: revert commit 9aa4be69 and remove redundant flag setting. - debian/patches/CVE-2022-3996-2.patch: add test case for reported deadlock. - CVE-2022-3996 * SECURITY UPDATE: excessive resource use when verifying policy constraints - debian/patches/CVE-2023-0464-1.patch: limit the number of nodes created in a policy tree (the default limit is set to 1000 nodes). - debian/patches/CVE-2023-0464-2.patch: add test cases for the policy resource overuse. - debian/patches/CVE-2023-0464-3.patch: disable the policy tree exponential growth test conditionally. - CVE-2023-0464 * SECURITY UPDATE: invalid certificate policies ignored in leaf certificates - debian/patches/CVE-2023-0465-1.patch: ensure that EXFLAG_INVALID_POLICY is checked even in leaf certs. - debian/patches/CVE-2023-0465-2.patch: generate some certificates with the certificatePolicies extension. - debian/patches/CVE-2023-0465-3.patch: add a certificate policies test. - CVE-2023-0466 * SECURITY UPDATE: certificate policy check in X509_VERIFY_PARAM_add0_policy not enabled as documented - debian/patches/CVE-2023-0466.patch: fix documentation of X509_VERIFY_PARAM_add0_policy(). - CVE-2023-0466 Checksums-Sha1: c6c35810ce34ad8bb2a034da55bcca07b8def8e9 2616820 libssl-dev_3.0.2-0ubuntu1.9_ppc64el.deb f657f40a818284800e800904e4229f650c2665fc 5704036 libssl3-dbgsym_3.0.2-0ubuntu1.9_ppc64el.ddeb 16dc6d533fea9498dc32be88bc2bc3163d11289a 2147092 libssl3_3.0.2-0ubuntu1.9_ppc64el.deb f9a16a3d1342fd70fcba64178369788dfac48e4a 829288 openssl-dbgsym_3.0.2-0ubuntu1.9_ppc64el.ddeb 4481adad7e6b42cd62ab654840403a126401288e 7339 openssl_3.0.2-0ubuntu1.9_ppc64el.buildinfo d2e46ce6bd1b9054abb1b47f253f81fa38be5046 1196586 openssl_3.0.2-0ubuntu1.9_ppc64el.deb cc923ebe4e8760ae331aaca8205e00c2f9b79958 27418 openssl_3.0.2-0ubuntu1.9_ppc64el_translations.tar.gz Checksums-Sha256: 4cad7659f27805c8a24981c9420d60af3834f2a91921730fb828f45c4eb7b234 2616820 libssl-dev_3.0.2-0ubuntu1.9_ppc64el.deb bf006721339aa53f3491b23d670e6f46bb0f6ceb5d9500d1eebb76ee065768db 5704036 libssl3-dbgsym_3.0.2-0ubuntu1.9_ppc64el.ddeb 4302b953a9e6be704fb6361cdfe8a89ae3042705dc40586347acc449bc15caf8 2147092 libssl3_3.0.2-0ubuntu1.9_ppc64el.deb 92472fbefa99b849227143ce7be80453050586dfe0a7eafbdd3c5e281d4a9a4e 829288 openssl-dbgsym_3.0.2-0ubuntu1.9_ppc64el.ddeb a9863ae7033ba7a6e8ced711c4b250782b56cb09842d55b6552158c6138ba4a2 7339 openssl_3.0.2-0ubuntu1.9_ppc64el.buildinfo 78d195333162de0ee7bd9f6d8a1638f34f40c74bd2fd0d96e002cb904316d0a6 1196586 openssl_3.0.2-0ubuntu1.9_ppc64el.deb 71ddb61af15a6d5b46f3fe13fef54b248e6c65c64086ab46485abac7bda2e8e4 27418 openssl_3.0.2-0ubuntu1.9_ppc64el_translations.tar.gz Files: d299d2c5611c8ee19eae1c99b6decb35 2616820 libdevel optional libssl-dev_3.0.2-0ubuntu1.9_ppc64el.deb e6ec6a140081235f9c2cc9619f61efd8 5704036 debug optional libssl3-dbgsym_3.0.2-0ubuntu1.9_ppc64el.ddeb e625047f6e9d29f7185a7a68fe7ad5bf 2147092 libs optional libssl3_3.0.2-0ubuntu1.9_ppc64el.deb 2d2862d021eea90d522064d976bf1b07 829288 debug optional openssl-dbgsym_3.0.2-0ubuntu1.9_ppc64el.ddeb 8bd1d591d973ee48bf984f535b894235 7339 utils optional openssl_3.0.2-0ubuntu1.9_ppc64el.buildinfo 323b8e6f0a63151bc6a5b286b5ce7f2f 1196586 utils optional openssl_3.0.2-0ubuntu1.9_ppc64el.deb e3309c18dc7f4b114bd8442908bb8de5 27418 raw-translations - openssl_3.0.2-0ubuntu1.9_ppc64el_translations.tar.gz Original-Maintainer: Debian OpenSSL Team