1
Candidate: CVE-2009-0129
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0129
5
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=511519
7
libcrypt-openssl-dsa-perl does not properly check the return value from the
8
OpenSSL DSA_verify and DSA_do_verify functions, which might allow remote
9
attackers to bypass validation of the certificate chain via a malformed
10
SSL/TLS signature, a similar vulnerability to CVE-2008-5077.
18
Patches_libcrypt-openssl-dsa-perl:
19
upstream_libcrypt-openssl-dsa-perl: released (0.13-4)
20
dapper_libcrypt-openssl-dsa-perl: DNE
21
gutsy_libcrypt-openssl-dsa-perl: needed (reached end-of-life)
22
hardy_libcrypt-openssl-dsa-perl: ignored (reached end-of-life)
23
intrepid_libcrypt-openssl-dsa-perl: needed (reached end-of-life)
24
jaunty_libcrypt-openssl-dsa-perl: not-affected (0.13-4)
25
karmic_libcrypt-openssl-dsa-perl: not-affected
26
lucid_libcrypt-openssl-dsa-perl: not-affected
27
maverick_libcrypt-openssl-dsa-perl: not-affected
28
natty_libcrypt-openssl-dsa-perl: not-affected
29
oneiric_libcrypt-openssl-dsa-perl: not-affected
30
devel_libcrypt-openssl-dsa-perl: not-affected