Ubuntu
openssl package

incorrect integer conversions in OpenSSL can result in memory corruption.

Bug #985716 reported by luca on 2012-04-19

This bug report is a duplicate of: Bug #985870: OpenSSL version update security announcement. Edit Remove

This bug affects 3 people

Affects		Status	Importance	Assigned to	Milestone
	openssl (Ubuntu)	Confirmed	Undecided	Unassigned

Bug Description

This is a very serious security bug, I guess you're already working on a release with the fix but just in case:
http://seclists.org/fulldisclosure/2012/Apr/210

The issue was already disclosed, so I will make it public so people know is reported (I guess you're already receiving millons of private bug reports)

CVE References

2012-2110

Revision history for this message

Launchpad Janitor (janitor) wrote on 2012-04-19:

Status changed to 'Confirmed' because the bug affects multiple users.

Changed in openssl (Ubuntu):
status:	New → Confirmed

Report a bug

This report contains Public information

Everyone can see this information.

Duplicate of bug #985870 Remove

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.

Ubuntuopenssl package