Format: 1.8
Date: Thu, 11 Jun 2015 07:10:41 -0400
Source: openssl
Binary: openssl libssl1.0.0 libcrypto1.0.0-udeb libssl1.0.0-udeb libssl-dev libssl-doc libssl1.0.0-dbg
Architecture: ppc64el ppc64el_translations
Version: 1.0.1f-1ubuntu11.4
Distribution: vivid
Urgency: medium
Maintainer: Ubuntu Build Daemon <buildd@fisher01.buildd>
Changed-By: Marc Deslauriers <marc.deslauriers@ubuntu.com>
Description:
 libcrypto1.0.0-udeb - Secure Sockets Layer toolkit - libcrypto udeb (udeb)
 libssl-dev - Secure Sockets Layer toolkit - development files
 libssl-doc - Secure Sockets Layer toolkit - development documentation
 libssl1.0.0 - Secure Sockets Layer toolkit - shared libraries
 libssl1.0.0-dbg - Secure Sockets Layer toolkit - debug information
 libssl1.0.0-udeb - ssl shared library - udeb (udeb)
 openssl    - Secure Sockets Layer toolkit - cryptographic utility
Changes:
 openssl (1.0.1f-1ubuntu11.4) vivid-security; urgency=medium
 .
   * SECURITY IMPROVEMENT: reject dh keys smaller than 768 bits
     - debian/patches/reject_small_dh.patch: reject small dh keys in
       ssl/s3_clnt.c, ssl/ssl.h, ssl/ssl_err.c, update documentation in
       doc/ssl/SSL_CTX_set_tmp_dh_callback.pod, make s_server use 2048-bit
       dh in apps/s_server.c, clarify docs in doc/apps/dhparam.pod.
   * SECURITY UPDATE: denial of service and possible code execution via
     invalid free in DTLS
     - debian/patches/CVE-2014-8176.patch: fix invalid free in ssl/d1_lib.c.
     - CVE-2014-8176
   * SECURITY UPDATE: denial of service via malformed ECParameters
     - debian/patches/CVE-2015-1788.patch: improve logic in
       crypto/bn/bn_gf2m.c.
     - CVE-2015-1788
   * SECURITY UPDATE: denial of service via out-of-bounds read in
     X509_cmp_time
     - debian/patches/CVE-2015-1789.patch: properly parse time format in
       crypto/x509/x509_vfy.c.
     - CVE-2015-1789
   * SECURITY UPDATE: denial of service via missing EnvelopedContent
     - debian/patches/CVE-2015-1790.patch: handle NULL data_body in
       crypto/pkcs7/pk7_doit.c.
     - CVE-2015-1790
   * SECURITY UPDATE: race condition in NewSessionTicket
     - debian/patches/CVE-2015-1791.patch: create a new session in
       ssl/s3_clnt.c, ssl/ssl.h, ssl/ssl_err.c, ssl/ssl_locl.h,
       ssl/ssl_sess.c.
     - debian/patches/CVE-2015-1791-2.patch: fix kerberos issue in
       ssl/ssl_sess.c.
     - debian/patches/CVE-2015-1791-3.patch: more ssl_session_dup fixes in
       ssl/ssl_sess.c.
     - CVE-2015-1791
   * SECURITY UPDATE: CMS verify infinite loop with unknown hash function
     - debian/patches/CVE-2015-1792.patch: fix infinite loop in
       crypto/cms/cms_smime.c.
     - CVE-2015-1792
Checksums-Sha1:
 94c78ca6064ccbba247a251576d545ecef72d13a 482934 openssl_1.0.1f-1ubuntu11.4_ppc64el.deb
 34cfda008f45fe0818d814c9a5040bbd30353fb0 794606 libssl1.0.0_1.0.1f-1ubuntu11.4_ppc64el.deb
 9234f8747d34da5344ca6e40cea39813416d1525 581504 libcrypto1.0.0-udeb_1.0.1f-1ubuntu11.4_ppc64el.udeb
 5b48f7f4c568baa85a7c38d9073a651a2a877d0c 118942 libssl1.0.0-udeb_1.0.1f-1ubuntu11.4_ppc64el.udeb
 049822ef42ff96e40dbf0c0d175f8d1f7cd24317 1125240 libssl-dev_1.0.1f-1ubuntu11.4_ppc64el.deb
 0e9b85b78c80515a9e3dc3cc2ebe8ae0c68dfa0d 2884094 libssl1.0.0-dbg_1.0.1f-1ubuntu11.4_ppc64el.deb
 678c333798ddd59a5a492c37b84eedfcc0741655 1120 openssl-dbgsym_1.0.1f-1ubuntu11.4_ppc64el.ddeb
 3a388638d40e81422bb4ba2dcdd1f6a65a1eafc4 958 libssl1.0.0-dbgsym_1.0.1f-1ubuntu11.4_ppc64el.ddeb
 637f0826c5741ccf66368ef79adcdb4a5769d7e7 990 libcrypto1.0.0-udeb-dbgsym_1.0.1f-1ubuntu11.4_ppc64el.ddeb
 c039a0869e2e85f2aec535bcdf87088259e3f5df 876 libssl1.0.0-udeb-dbgsym_1.0.1f-1ubuntu11.4_ppc64el.ddeb
 0a67ff1ab3e56ba6f0e8e9ca25204faa3ce3c00b 980 libssl-dev-dbgsym_1.0.1f-1ubuntu11.4_ppc64el.ddeb
 007b1bbd2fd27a38ce93e402ada1d1c8bbed0725 20441 openssl_1.0.1f-1ubuntu11.4_ppc64el_translations.tar.gz
Checksums-Sha256:
 69dc533b38e02f59dd0181cee5ac9fef677f791c7f3f47b40fdd1e71bf263ddb 482934 openssl_1.0.1f-1ubuntu11.4_ppc64el.deb
 6388415dcea56435a21ad31fdc24043202ea4ddfb1f635110f6cf5807335bf6b 794606 libssl1.0.0_1.0.1f-1ubuntu11.4_ppc64el.deb
 a1d3642f9535df2c0517942c5bd7d564c81cc4a96d32ce6c1049724d794cdcbc 581504 libcrypto1.0.0-udeb_1.0.1f-1ubuntu11.4_ppc64el.udeb
 50dcc5718ff6bc2f03b7c74f84a73b4710c07013d5a6dd7a5d2109c468cc4936 118942 libssl1.0.0-udeb_1.0.1f-1ubuntu11.4_ppc64el.udeb
 39a953ef172793074e575646a920c06d2bd830c8aaacc3804b7be74c7c5fb5a9 1125240 libssl-dev_1.0.1f-1ubuntu11.4_ppc64el.deb
 3897721bc69f12656b6e4e03c0cc557d430ea17cb31422f7dab2e33f8ce998f1 2884094 libssl1.0.0-dbg_1.0.1f-1ubuntu11.4_ppc64el.deb
 c6b9c299bc01fd5065612d144db4851b77f15429dc4bf11dae66d24797d5ba56 1120 openssl-dbgsym_1.0.1f-1ubuntu11.4_ppc64el.ddeb
 73962ea973093d4d72e236b94c9bb690311eeb5eed1f2bdb229de3a10584679d 958 libssl1.0.0-dbgsym_1.0.1f-1ubuntu11.4_ppc64el.ddeb
 e2a05d474c1734136b9d3449ba9abaa355c7b0efd461fdfb4682387af574cc28 990 libcrypto1.0.0-udeb-dbgsym_1.0.1f-1ubuntu11.4_ppc64el.ddeb
 69408542ad242644284f0cd26b5d2a55559bd40cf6e2811381acbbfb9aeeb0c1 876 libssl1.0.0-udeb-dbgsym_1.0.1f-1ubuntu11.4_ppc64el.ddeb
 1475ef09fae9a910eb4c1a5a2af25dddf949bc0c8d7465ba3a3ec1aa9e2aa1e9 980 libssl-dev-dbgsym_1.0.1f-1ubuntu11.4_ppc64el.ddeb
 a7a02ff186995039a533d1be08edb72d58cb879b9df73253fbeeb8e3815385b9 20441 openssl_1.0.1f-1ubuntu11.4_ppc64el_translations.tar.gz
Files:
 3b96493cdb3dfc2fcb498f0b43e92321 482934 utils optional openssl_1.0.1f-1ubuntu11.4_ppc64el.deb
 d2aa2aa24176c7658529ac21cb1f74bb 794606 libs important libssl1.0.0_1.0.1f-1ubuntu11.4_ppc64el.deb
 fd5ed0f31265aeab4a93c0de808fcf26 581504 debian-installer optional libcrypto1.0.0-udeb_1.0.1f-1ubuntu11.4_ppc64el.udeb
 9962b6ae3e1ea4f9c011cc98cc6be1b7 118942 debian-installer optional libssl1.0.0-udeb_1.0.1f-1ubuntu11.4_ppc64el.udeb
 7431e3111ef98b654ff07640108330cd 1125240 libdevel optional libssl-dev_1.0.1f-1ubuntu11.4_ppc64el.deb
 419d67b26a2ae1a9dc8bd47e92c97832 2884094 debug extra libssl1.0.0-dbg_1.0.1f-1ubuntu11.4_ppc64el.deb
 a6e8c809075b307b48840b8429001f5c 1120 utils extra openssl-dbgsym_1.0.1f-1ubuntu11.4_ppc64el.ddeb
 c1bf47c4a3343de92b7121cfd4e70016 958 libs extra libssl1.0.0-dbgsym_1.0.1f-1ubuntu11.4_ppc64el.ddeb
 fc3727ecc2b39d4999215e468078ae45 990 debian-installer extra libcrypto1.0.0-udeb-dbgsym_1.0.1f-1ubuntu11.4_ppc64el.ddeb
 ca0b78a7fa97dce135699134e1103f40 876 debian-installer extra libssl1.0.0-udeb-dbgsym_1.0.1f-1ubuntu11.4_ppc64el.ddeb
 dc039b69ba81d5820827394dd0eaf356 980 libdevel extra libssl-dev-dbgsym_1.0.1f-1ubuntu11.4_ppc64el.ddeb
 e249f20060c396859eced142d7737859 20441 raw-translations - openssl_1.0.1f-1ubuntu11.4_ppc64el_translations.tar.gz
Original-Maintainer: Debian OpenSSL Team <pkg-openssl-devel@lists.alioth.debian.org>
Package-Type: udeb