Format: 1.8
Date: Thu, 19 Mar 2015 10:07:13 -0400
Source: openssl
Binary: openssl libssl1.0.0 libcrypto1.0.0-udeb libssl1.0.0-udeb libssl-dev libssl-doc libssl1.0.0-dbg
Architecture: ppc64el ppc64el_translations
Version: 1.0.1f-1ubuntu11
Distribution: vivid-proposed
Urgency: medium
Maintainer: Ubuntu Build Daemon <buildd@fisher03.buildd>
Changed-By: Marc Deslauriers <marc.deslauriers@ubuntu.com>
Description:
 libcrypto1.0.0-udeb - Secure Sockets Layer toolkit - libcrypto udeb (udeb)
 libssl-dev - Secure Sockets Layer toolkit - development files
 libssl-doc - Secure Sockets Layer toolkit - development documentation
 libssl1.0.0 - Secure Sockets Layer toolkit - shared libraries
 libssl1.0.0-dbg - Secure Sockets Layer toolkit - debug information
 libssl1.0.0-udeb - ssl shared library - udeb (udeb)
 openssl    - Secure Sockets Layer toolkit - cryptographic utility
Changes:
 openssl (1.0.1f-1ubuntu11) vivid; urgency=medium
 .
   * SECURITY UPDATE: denial of service and possible memory corruption via
     malformed EC private key
     - debian/patches/CVE-2015-0209.patch: fix use after free in
       crypto/ec/ec_asn1.c.
     - debian/patches/CVE-2015-0209-2.patch: fix a failure to NULL a pointer
       freed on error in crypto/asn1/x_x509.c, crypto/ec/ec_asn1.c.
     - CVE-2015-0209
   * SECURITY UPDATE: denial of service via cert verification
     - debian/patches/CVE-2015-0286.patch: handle boolean types in
       crypto/asn1/a_type.c.
     - CVE-2015-0286
   * SECURITY UPDATE: ASN.1 structure reuse memory corruption
     - debian/patches/CVE-2015-0287.patch: free up structures in
       crypto/asn1/tasn_dec.c.
     - CVE-2015-0287
   * SECURITY UPDATE: denial of service via invalid certificate key
     - debian/patches/CVE-2015-0288.patch: check public key isn't NULL in
       crypto/x509/x509_req.c.
     - CVE-2015-0288
   * SECURITY UPDATE: denial of service and possible code execution via
     PKCS#7 parsing
     - debian/patches/CVE-2015-0289.patch: handle missing content in
       crypto/pkcs7/pk7_doit.c, crypto/pkcs7/pk7_lib.c.
     - CVE-2015-0289
   * SECURITY UPDATE: denial of service or memory corruption via base64
     decoding
     - debian/patches/CVE-2015-0292.patch: prevent underflow in
       crypto/evp/encode.c.
     - CVE-2015-0292
   * SECURITY UPDATE: denial of service via assert in SSLv2 servers
     - debian/patches/CVE-2015-0293.patch: check key lengths in
       ssl/s2_lib.c, ssl/s2_srvr.c.
     - debian/patches/CVE-2015-0293-2.patch: fix unsigned/signed warnings in
       ssl/s2_srvr.c.
     - CVE-2015-0293
Checksums-Sha1:
 c8553ed4850d665c634e27036add2b889af8cf80 481952 openssl_1.0.1f-1ubuntu11_ppc64el.deb
 4b226fc43307a8b2b2c2c5bf6c6318e7e311f989 793858 libssl1.0.0_1.0.1f-1ubuntu11_ppc64el.deb
 aa77f741fde7f285f1b2781c57318a24bd57e103 580222 libcrypto1.0.0-udeb_1.0.1f-1ubuntu11_ppc64el.udeb
 5af6731eeec66d29794981cc2b869e3e007a24bc 118322 libssl1.0.0-udeb_1.0.1f-1ubuntu11_ppc64el.udeb
 30b08008f8d3cfc92d693c366f338e957db6bfb1 1123934 libssl-dev_1.0.1f-1ubuntu11_ppc64el.deb
 19a720aacd36602724177c08022db7134a92db97 2887752 libssl1.0.0-dbg_1.0.1f-1ubuntu11_ppc64el.deb
 012f8af9257fb0234866e9942f7c3a58949ebb27 20444 openssl_1.0.1f-1ubuntu11_ppc64el_translations.tar.gz
Checksums-Sha256:
 b42c96a4e5b3d06044605965b4b70f8b47e7d0dd357538507a84ce4bebc6cc9f 481952 openssl_1.0.1f-1ubuntu11_ppc64el.deb
 a86388348e0b3b9c5cf9c85475c4e691bb00dfe0e8b130c881d7d51b23b13052 793858 libssl1.0.0_1.0.1f-1ubuntu11_ppc64el.deb
 f70bb06124b2a07d52c0a2621888e9d8ac2423fa5cdf48c2997d0b441d206729 580222 libcrypto1.0.0-udeb_1.0.1f-1ubuntu11_ppc64el.udeb
 134caff1a8f88b5ed8876715c63a456917784ef44d51af59869be534ffcd88b9 118322 libssl1.0.0-udeb_1.0.1f-1ubuntu11_ppc64el.udeb
 8692d25a9ec2691329c2f78aa8b51d3b16bb83e313880bd4b4a52d68a1e2c5b8 1123934 libssl-dev_1.0.1f-1ubuntu11_ppc64el.deb
 ccfbe8955c6f5d56e30b88237439b07c5797e72ec9b1fa02002cb0195f0db951 2887752 libssl1.0.0-dbg_1.0.1f-1ubuntu11_ppc64el.deb
 0d654704ecb24dfbcb4f046298edbc86ba99ad9cc7f0206641bf890582a1cdf2 20444 openssl_1.0.1f-1ubuntu11_ppc64el_translations.tar.gz
Files:
 56ae1743528a59884bd957b5bef13c7e 481952 utils optional openssl_1.0.1f-1ubuntu11_ppc64el.deb
 95a80a0de4bc5224fc28a6ff2f02b295 793858 libs important libssl1.0.0_1.0.1f-1ubuntu11_ppc64el.deb
 ea343cd64e2e26f188e24a034264182a 580222 debian-installer optional libcrypto1.0.0-udeb_1.0.1f-1ubuntu11_ppc64el.udeb
 604390c804a012e1a2e4d6194430eeec 118322 debian-installer optional libssl1.0.0-udeb_1.0.1f-1ubuntu11_ppc64el.udeb
 7775553e3718ae159642334936f29966 1123934 libdevel optional libssl-dev_1.0.1f-1ubuntu11_ppc64el.deb
 9050bbcef5ace1d591a57a98f03d1756 2887752 debug extra libssl1.0.0-dbg_1.0.1f-1ubuntu11_ppc64el.deb
 41e21464e76f17c92d6e2888e8ed199d 20444 raw-translations - openssl_1.0.1f-1ubuntu11_ppc64el_translations.tar.gz
Original-Maintainer: Debian OpenSSL Team <pkg-openssl-devel@lists.alioth.debian.org>
Package-Type: udeb