Format: 1.7 Date: Wed, 06 Oct 2010 18:21:02 -0400 Source: openssl Binary: openssl openssl-doc libssl0.9.8 libcrypto0.9.8-udeb libssl-dev libssl0.9.8-dbg Architecture: hppa_translations hppa Version: 0.9.8g-4ubuntu3.11 Distribution: hardy Urgency: low Maintainer: Ubuntu/hppa Build Daemon Changed-By: Marc Deslauriers Description: libcrypto0.9.8-udeb - crypto shared library - udeb (udeb) libssl-dev - SSL development libraries, header files and documentation libssl0.9.8 - SSL shared libraries libssl0.9.8-dbg - Symbol tables for libssl and libcrypto openssl - Secure Socket Layer (SSL) binary and related cryptographic tools openssl-doc - Secure Socket Layer (SSL) documentation Launchpad-Bugs-Fixed: 655884 Changes: openssl (0.9.8g-4ubuntu3.11) hardy-security; urgency=low . * SECURITY UPDATE: denial of service and possible code execution via unchecked bn_wexpand return values. (LP: #655884) - crypto/bn/{bn_mul,bn_div,bn_gf2m}.c, crypto/ec/ec2_smpl.c, engines/e_ubsec.c: check return values. - http://cvs.openssl.org/chngview?cn=18936 - http://cvs.openssl.org/chngview?cn=19309 - CVE-2009-3245 * SECURITY UPDATE: denial of service and possible code execution via crafted private key with an invalid prime. - ssl/s3_clnt.c: set bn_ctx to NULL after freeing it. - http://www.mail-archive.com/openssl-dev@openssl.org/msg28049.html - CVE-2010-2939 Files: 8f1d876df7d8e38a51112afbda531094 17302 raw-translations - openssl_0.9.8g-4ubuntu3.11_hppa_translations.tar.gz 84fd49ae1d9274efc9bba762777d37e2 405230 utils optional openssl_0.9.8g-4ubuntu3.11_hppa.deb a1ea51ea0037885a0c32a9794b3377a0 963374 libs important libssl0.9.8_0.9.8g-4ubuntu3.11_hppa.deb 5dcef889884343f1fa523935fcd6a1db 628330 debian-installer optional libcrypto0.9.8-udeb_0.9.8g-4ubuntu3.11_hppa.udeb 7e9a26f5192f811a77832fcf24960803 2131104 libdevel optional libssl-dev_0.9.8g-4ubuntu3.11_hppa.deb 3d38bcc1f66358f75427077d59928bdd 1539122 libdevel extra libssl0.9.8-dbg_0.9.8g-4ubuntu3.11_hppa.deb Original-Maintainer: Debian OpenSSL Team Package-Type: udeb