59
|
|
|
Steve Beattie |
|
12 years ago
|
|
|
58
|
|
* Resynchronise with Debian, fixes CVE-2011-1945, CVE-2011-3207 and CVE-2011-3210. Remaining changes: - debian/libssl1.0.0.postinst: + Display a system restart required notification bubble on libssl1.0.0 upgrade. + Use a different priority for libssl1.0.0/restart-services depending on whether a desktop, or server dist-upgrade is being performed. - debian/{libssl1.0.0-udeb.dirs, control, rules}: Create libssl1.0.0-udeb, for the benefit of wget-udeb (no wget-udeb package in Debian). - debian/{libcrypto1.0.0-udeb.dirs, libssl1.0.0.dirs, libssl1.0.0.files, rules}: Move runtime libraries to /lib, for the benefit of wpasupplicant. - debian/patches/aesni.patch: Backport Intel AES-NI support, now from http://rt.openssl.org/Ticket/Display.html?id=2065 rather than the 0.9.8 variant. - debian/patches/Bsymbolic-functions.patch: Link using -Bsymbolic-functions. - debian/patches/perlpath-quilt.patch: Don't change perl #! paths under .pc. - debian/rules: + Don't run 'make test' when cross-building. + Use host compiler when cross-building. Patch from Neil Williams. + Don't build for processors no longer supported: i486, i586 (on i386), v8 (on sparc). + Fix Makefile to properly clean up libs/ dirs in clean target. + Replace duplicate files in the doc directory with symlinks. * Add a missing $(DEB_HOST_MULTIARCH) * New upstream version - Fix bug where CRLs with nextUpdate in the past are sometimes accepted by initialising X509_STORE_CTX properly. (CVE-2011-3207) - Fix SSL memory handling for (EC)DH ciphersuites, in particular for multi-threaded use of ECDH. (CVE-2011-3210) - Add protection against ECDSA timing attacks (CVE-2011-1945) * Block DigiNotar certifiates. Patch from Raphael Geissert <geissert@debian.org> * Generate hashes for all certs in a file (Closes: #628780, #594524) Patch from Klaus Ethgen <Klaus@Ethgen.de> * Add multiarch support (Closs: #638137) Patch from Steve Langasek / Ubuntu * Symbols from the gost engine were removed because it didn't have a linker file. Thanks to Roman I Khimov <khimov@altell.ru> (Closes: #631503) * Add support for s390x. Patch from Aurelien Jarno <aurel32@debian.org> (Closes: #641100) * Add build-arch and build-indep targets to the rules file. * Make it build on sparc64. Patch from Aurelien Jarno. (Closes: #626060) * Apply patches from Scott Schaefer <saschaefer@neurodiverse.org> to fix various pod and spelling errors. (Closes: #622820, #605561) * Add missing symbols for the engines (Closes: #623038) * More spelling fixes from Scott Schaefer (Closes: #395424) * Patch from Scott Schaefer to better document pkcs12 password options (Closes: #462489) * Document dgst -hmac option. Patch by Thorsten Glaser <tg@mirbsd.de> (Closes: #529586)
|
Steve Beattie |
|
12 years ago
|
|
|
57
|
|
|
Steve Langasek |
1.0.0d-2ubuntu2 |
12 years ago
|
|
|
56
|
|
|
Steve Langasek |
|
12 years ago
|
|
|
55
|
|
* Resynchronise with Debian (LP: #675566). Remaining changes: - debian/libssl1.0.0.postinst: + Display a system restart required notification bubble on libssl1.0.0 upgrade. + Use a different priority for libssl1.0.0/restart-services depending on whether a desktop, or server dist-upgrade is being performed. - debian/{libssl1.0.0-udeb.dirs, control, rules}: Create libssl1.0.0-udeb, for the benefit of wget-udeb (no wget-udeb package in Debian). - debian/{libcrypto1.0.0-udeb.dirs, libssl1.0.0.dirs, libssl1.0.0.files, rules}: Move runtime libraries to /lib, for the benefit of wpasupplicant. - debian/patches/aesni.patch: Backport Intel AES-NI support, now from http://rt.openssl.org/Ticket/Display.html?id=2065 rather than the 0.9.8 variant. - debian/patches/Bsymbolic-functions.patch: Link using -Bsymbolic-functions. - debian/patches/perlpath-quilt.patch: Don't change perl #! paths under .pc. - debian/rules: + Don't run 'make test' when cross-building. + Use host compiler when cross-building. Patch from Neil Williams. + Don't build for processors no longer supported: i486, i586 (on i386), v8 (on sparc). + Fix Makefile to properly clean up libs/ dirs in clean target. + Replace duplicate files in the doc directory with symlinks. * Update architectures affected by Bsymbolic-functions.patch. * Drop debian/patches/no-sslv2.patch; Debian now adds the 'no-ssl2' configure option, which compiles out SSLv2 support entirely, so this is no longer needed. * Drop openssl-doc in favour of the libssl-doc package introduced by Debian. Add Conflicts/Replaces until the next LTS release.
|
Colin Watson |
1.0.0d-2ubuntu1 |
13 years ago
|
|
|
54
|
|
* Merge from debian unstable. Remaining changes: (LP: #718205) - d/libssl0.9.8.postinst: + Display a system restart required notification bubble on libssl0.9.8 upgrade. + Use a different priority for libssl0.9.8/restart-services depending on whether a desktop, or server dist-upgrade is being performed. - d/{libssl0.9.8-udeb.dirs, control, rules}: Create libssl0.9.8-udeb, for the benefit of wget-udeb (no wget-udeb package in Debian). - d/{libcrypto0.9.8-udeb.dirs, libssl0.9.8.dirs, libssl0.9.8.files, rules}: Move runtime libraries to /lib, for the benefit of wpasupplicant. - d/{control, openssl-doc.docs, openssl.docs, openssl.dirs}: + Ship documentation in openssl-doc, suggested by the package. (Closes: #470594) - d/p/aesni.patch: Backport Intel AES-NI support from http://rt.openssl.org/Ticket/Display.html?id=2067 (refreshed) - d/p/Bsymbolic-functions.patch: Link using -Bsymbolic-functions. - d/p/perlpath-quilt.patch: Don't change perl #! paths under .pc. - d/p/no-sslv2.patch: Disable SSLv2 to match NSS and GnuTLS. The protocol is unsafe and extremely deprecated. (Closes: #589706) - d/rules: + Disable SSLv2 during compile. (Closes: #589706) + Don't run 'make test' when cross-building. + Use host compiler when cross-building. Patch from Neil Williams. (Closes: #465248) + Don't build for processors no longer supported: i486, i586 (on i386), v8 (on sparc). + Fix Makefile to properly clean up libs/ dirs in clean target. (Closes: #611667) + Replace duplicate files in the doc directory with symlinks. * This upload fixed CVE: (LP: #718208) - CVE-2011-0014
|
Artur Rona |
0.9.8o-5ubuntu1 |
13 years ago
|
|
|
53
|
|
|
Steve Langasek |
0.9.8o-4ubuntu2 |
13 years ago
|
|
|
52
|
|
|
Artur Rona |
0.9.8o-4ubuntu1 |
13 years ago
|
|
|
51
|
|
|
Steve Beattie |
0.9.8o-3ubuntu1 |
13 years ago
|
|
|
50
|
|
|
Steve Beattie |
0.9.8o-1ubuntu4.2 |
13 years ago
|
|
|
49
|
|
|
Marc Deslauriers |
0.9.8o-1ubuntu4.1 |
13 years ago
|
|
|
48
|
|
|
Colin Watson |
0.9.8o-1ubuntu4 |
13 years ago
|
|
|
47
|
|
|
Colin Watson |
|
13 years ago
|
|
|
46
|
|
|
Kees Cook |
0.9.8o-1ubuntu3 |
13 years ago
|
|
|
45
|
|
|
Matthias Klose |
0.9.8o-1ubuntu2 |
13 years ago
|
|
|
44
|
|
|
Marc Deslauriers |
0.9.8o-1ubuntu1 |
13 years ago
|
|
|
43
|
|
|
Marc Deslauriers |
0.9.8k-7ubuntu8 |
14 years ago
|
|
|
42
|
|
|
Marc Deslauriers |
0.9.8k-7ubuntu7 |
14 years ago
|
|
|
41
|
|
|
Colin Watson |
0.9.8k-7ubuntu6 |
14 years ago
|
|
|
40
|
|
|
Kees Cook |
0.9.8k-7ubuntu5 |
14 years ago
|
|
|