Format: 1.8
Date: Wed, 06 Oct 2010 17:38:20 -0400
Source: openssl
Binary: openssl openssl-doc libssl0.9.8 libcrypto0.9.8-udeb libssl-dev libssl0.9.8-dbg
Architecture: i386 all i386_translations
Version: 0.9.8g-16ubuntu3.3
Distribution: karmic
Urgency: low
Maintainer: Ubuntu/i386 Build Daemon <buildd@vernadsky.buildd>
Changed-By: Marc Deslauriers <marc.deslauriers@ubuntu.com>
Description: 
 libcrypto0.9.8-udeb - crypto shared library - udeb (udeb)
 libssl-dev - SSL development libraries, header files and documentation
 libssl0.9.8 - SSL shared libraries
 libssl0.9.8-dbg - Symbol tables for libssl and libcrypto
 openssl    - Secure Socket Layer (SSL) binary and related cryptographic tools
 openssl-doc - Secure Socket Layer (SSL) documentation
Changes: 
 openssl (0.9.8g-16ubuntu3.3) karmic-security; urgency=low
 .
   * SECURITY UPDATE: denial of service and possible code execution via
     unchecked bn_wexpand return values. (LP: #655884)
     - crypto/bn/{bn_mul,bn_div,bn_gf2m}.c, crypto/ec/ec2_smpl.c,
       engines/e_ubsec.c: check return values.
     - http://cvs.openssl.org/chngview?cn=18936
     - http://cvs.openssl.org/chngview?cn=19309
     - CVE-2009-3245
   * SECURITY UPDATE: denial of service and possible code execution via
     crafted private key with an invalid prime.
     - ssl/s3_clnt.c: set bn_ctx to NULL after freeing it.
     - http://www.mail-archive.com/openssl-dev@openssl.org/msg28049.html
     - CVE-2010-2939
Checksums-Sha1: 
 aa6f480da2c0c7f1c9855f5c32123a10c8da1405 397862 openssl_0.9.8g-16ubuntu3.3_i386.deb
 959387c22f5e8769bfc33ff5fede6840f2ccdc67 632242 openssl-doc_0.9.8g-16ubuntu3.3_all.deb
 22af2929fdd8d8a0c721885e91062e467b4cdabf 2923206 libssl0.9.8_0.9.8g-16ubuntu3.3_i386.deb
 59877e1f9fd4d16c5e4c2613e6d9ba272343212d 571492 libcrypto0.9.8-udeb_0.9.8g-16ubuntu3.3_i386.udeb
 3ab7c6b2eb220d0b2bc93ecb7da1143a403994ff 1974780 libssl-dev_0.9.8g-16ubuntu3.3_i386.deb
 8116d541ac720137250defe6fe71a920a9906f0d 5631492 libssl0.9.8-dbg_0.9.8g-16ubuntu3.3_i386.deb
 654185676105a78286cf32486709bb1434ae74c3 18463 openssl_0.9.8g-16ubuntu3.3_i386_translations.tar.gz
Checksums-Sha256: 
 6f7024847cc9d52e20f47755b188958c2408c599f6a7a54eb33cbe2013516874 397862 openssl_0.9.8g-16ubuntu3.3_i386.deb
 2dbd285973690887f250a74c9f45580cee07462afb26d65d9cb1099271d8aceb 632242 openssl-doc_0.9.8g-16ubuntu3.3_all.deb
 0fb0672f8727899087406d6ad19527bf5491c65dddec8c52e5cd4a3c47af960b 2923206 libssl0.9.8_0.9.8g-16ubuntu3.3_i386.deb
 2e1a09deb10b49dba93ac21053d2c4bf44e5d52953b454f5ccbd0ff74c50428e 571492 libcrypto0.9.8-udeb_0.9.8g-16ubuntu3.3_i386.udeb
 4f63287b13ab2ef314525d39fd1e115c215c9d8525113e93897d5b2b7cba427b 1974780 libssl-dev_0.9.8g-16ubuntu3.3_i386.deb
 51988c18bc582b5c7332cda017c689380197bc35d64797e0eb977373190f8301 5631492 libssl0.9.8-dbg_0.9.8g-16ubuntu3.3_i386.deb
 d9a26f1afefd38b05609966667cb46c22e63471448885460fc8050e38b5edf74 18463 openssl_0.9.8g-16ubuntu3.3_i386_translations.tar.gz
Files: 
 ec75c20ceccb9dc03389b16749cb5a94 397862 utils optional openssl_0.9.8g-16ubuntu3.3_i386.deb
 ff64041876ffd28b984fd2fc3ff06ba2 632242 doc optional openssl-doc_0.9.8g-16ubuntu3.3_all.deb
 969c0ef378c3297235973f074a6b7c6d 2923206 libs important libssl0.9.8_0.9.8g-16ubuntu3.3_i386.deb
 2087f12aca01430f88a0661b359c14ea 571492 debian-installer optional libcrypto0.9.8-udeb_0.9.8g-16ubuntu3.3_i386.udeb
 8c4fa3efd98a3f0878444df33017e9ed 1974780 libdevel optional libssl-dev_0.9.8g-16ubuntu3.3_i386.deb
 3bc84132150bce2e1779630f4d1c9461 5631492 libdevel extra libssl0.9.8-dbg_0.9.8g-16ubuntu3.3_i386.deb
 ecc6b58673e0111c68e607ff54873617 18463 raw-translations - openssl_0.9.8g-16ubuntu3.3_i386_translations.tar.gz
Launchpad-Bugs-Fixed: 655884
Original-Maintainer: Debian OpenSSL Team <pkg-openssl-devel@lists.alioth.debian.org>
Package-Type: udeb