Format: 1.7
Date: Tue, 08 Sep 2009 15:05:08 -0400
Source: openssl
Binary: openssl openssl-doc libssl0.9.8 libcrypto0.9.8-udeb libssl-dev libssl0.9.8-dbg
Architecture: amd64_translations amd64
Version: 0.9.8g-4ubuntu3.8
Distribution: hardy
Urgency: low
Maintainer: Ubuntu/amd64 Build Daemon <buildd@yellow.buildd>
Changed-By: Marc Deslauriers <marc.deslauriers@ubuntu.com>
Description: 
 libcrypto0.9.8-udeb - crypto shared library - udeb (udeb)
 libssl-dev - SSL development libraries, header files and documentation
 libssl0.9.8 - SSL shared libraries
 libssl0.9.8-dbg - Symbol tables for libssl and libcrypto
 openssl    - Secure Socket Layer (SSL) binary and related cryptographic tools
 openssl-doc - Secure Socket Layer (SSL) documentation
Changes: 
 openssl (0.9.8g-4ubuntu3.8) hardy-security; urgency=low
 .
   * SECURITY UPDATE: certificate spoofing via hash collisions from MD2
     design flaws.
     - crypto/evp/c_alld.c, ssl/ssl_algs.c: disable MD2 digest.
     - crypto/x509/x509_vfy.c: skip signature check for self signed
       certificates
     - http://marc.info/?l=openssl-cvs&m=124508133203041&w=2
     - http://marc.info/?l=openssl-cvs&m=124704528713852&w=2
     - CVE-2009-2409
Files: 
 42be58f64ed50f1e0b1258b2b1524074 17360 raw-translations - openssl_0.9.8g-4ubuntu3.8_amd64_translations.tar.gz
 928bcbd1ef9baf825769e259ced76412 390610 utils optional openssl_0.9.8g-4ubuntu3.8_amd64.deb
 197ab1c2536e7f2ca0ec7dff452e47ee 932496 libs important libssl0.9.8_0.9.8g-4ubuntu3.8_amd64.deb
 31336cc381b5a7982adabcb878c4fb68 603976 debian-installer optional libcrypto0.9.8-udeb_0.9.8g-4ubuntu3.8_amd64.udeb
 fd797d25f2b8e852c9e0e77a8fc09345 2065074 libdevel optional libssl-dev_0.9.8g-4ubuntu3.8_amd64.deb
 0d8669e22481e71a750fae0719574852 1606002 libdevel extra libssl0.9.8-dbg_0.9.8g-4ubuntu3.8_amd64.deb
Original-Maintainer: Debian OpenSSL Team <pkg-openssl-devel@lists.alioth.debian.org>
Package-Type: udeb