~ubuntu-branches/ubuntu/lucid/openssl/lucid-security

  • Committer: Package Import Robot
  • Author(s): Marc Deslauriers
  • Date: 2014-08-07 08:48:43 UTC
  • Revision ID: package-import@ubuntu.com-20140807084843-tdiyho5w4ps784yx
Tags: 0.9.8k-7ubuntu8.20
* SECURITY UPDATE: double free when processing DTLS packets
  - debian/patches/CVE-2014-3505.patch: fix double free in ssl/d1_both.c.
  - CVE-2014-3505
* SECURITY UPDATE: DTLS memory exhaustion
  - debian/patches/CVE-2014-3506.patch: fix DTLS handshake message size
    checks in ssl/d1_both.c.
  - CVE-2014-3506
* SECURITY UPDATE: information leak in pretty printing functions
  - debian/patches/CVE-2014-3508.patch: fix OID handling in
    crypto/asn1/a_object.c, crypto/objects/obj_dat.c, crypto/asn1/asn1.h,
    crypto/asn1/asn1_err.c.
  - CVE-2014-3508
* SECURITY UPDATE: DTLS anonymous EC(DH) denial of service
  - debian/patches/CVE-2014-3510.patch: check for server certs in
    ssl/d1_clnt.c, ssl/s3_clnt.c.
  - CVE-2014-3510
* SECURITY UPDATE: TLS protocol downgrade attack
  - debian/patches/CVE-2014-3511.patch: properly handle fragments in
    ssl/s23_srvr.c.
  - CVE-2014-3511
Filename Latest Rev Last Changed Committer Comment Size
..
aesni.patch 44.1.1 14 years ago Bazaar Package Importer Update AES-NI patch to openssl-0.9.8-aesni-modes-p 95.6 KB Diff Download File
Bsymbolic-functions.patch 35 15 years ago Bazaar Package Importer debian/patches/{disable-sslv2,Bsymbolic-functions} 9.4 KB Diff Download File
ca.patch 11.1.6 15 years ago Bazaar Package Importer * Split all the patches into a separate files * St 1.2 KB Diff Download File
config-hurd.patch 11.1.6 15 years ago Bazaar Package Importer * Split all the patches into a separate files * St 413 bytes Diff Download File
CVE-2006-7250+2012-1165.patch 50 12 years ago Package Import Robot * SECURITY UPDATE: NULL pointer dereference in S/M 874 bytes Diff Download File
CVE-2009-1377.patch 11.1.6 15 years ago Bazaar Package Importer * Split all the patches into a separate files * St 1.4 KB Diff Download File
CVE-2009-1378.patch 11.1.6 15 years ago Bazaar Package Importer * Split all the patches into a separate files * St 897 bytes Diff Download File
CVE-2009-1379.patch 11.1.6 15 years ago Bazaar Package Importer * Split all the patches into a separate files * St 576 bytes Diff Download File
CVE-2009-1387.patch 11.1.6 15 years ago Bazaar Package Importer * Split all the patches into a separate files * St 1.3 KB Diff Download File
CVE-2009-2409.patch 11.1.6 15 years ago Bazaar Package Importer * Split all the patches into a separate files * St 1002 bytes Diff Download File
CVE-2009-3245.patch 43 14 years ago Bazaar Package Importer * SECURITY UPDATE: denial of service and possible 4.4 KB Diff Download File
CVE-2009-3555-RFC5746.patch 44 14 years ago Bazaar Package Importer * SECURITY UPDATE: TLS renegotiation flaw (LP: #61 60.2 KB Diff Download File
CVE-2009-3555.patch 11.1.8 15 years ago Bazaar Package Importer Disable SSL/TLS renegotiation (CVE-2009-3555) (Clo 5 KB Diff Download File
CVE-2009-4355.patch 40 15 years ago Bazaar Package Importer * SECURITY UPDATE: memory leak possible during sta 1.6 KB Diff Download File
CVE-2010-0740.patch 43 14 years ago Bazaar Package Importer * SECURITY UPDATE: denial of service and possible 890 bytes Diff Download File
CVE-2010-2939.patch 45 14 years ago Bazaar Package Importer * SECURITY UPDATE: denial of service and possible 660 bytes Diff Download File
CVE-2011-1945.patch 49 13 years ago Package Import Robot * SECURITY UPDATE: ECDSA private key timing attack 854 bytes Diff Download File
CVE-2011-3210.patch 49 13 years ago Package Import Robot * SECURITY UPDATE: ECDSA private key timing attack 2.9 KB Diff Download File
CVE-2011-4108.patch 49 13 years ago Package Import Robot * SECURITY UPDATE: ECDSA private key timing attack 3.6 KB Diff Download File
CVE-2011-4109.patch 49 13 years ago Package Import Robot * SECURITY UPDATE: ECDSA private key timing attack 2.2 KB Diff Download File
CVE-2011-4576.patch 49 13 years ago Package Import Robot * SECURITY UPDATE: ECDSA private key timing attack 706 bytes Diff Download File
CVE-2011-4577.patch 49 13 years ago Package Import Robot * SECURITY UPDATE: ECDSA private key timing attack 6.8 KB Diff Download File
CVE-2011-4619.patch 49 13 years ago Package Import Robot * SECURITY UPDATE: ECDSA private key timing attack 4.4 KB Diff Download File
CVE-2012-0050.patch 49 13 years ago Package Import Robot * SECURITY UPDATE: ECDSA private key timing attack 1.3 KB Diff Download File
CVE-2012-0884-extra.patch 52 12 years ago Package Import Robot * SECURITY UPDATE: denial of service attack in DTL 2.1 KB Diff Download File
CVE-2012-0884.patch 52 12 years ago Package Import Robot * SECURITY UPDATE: denial of service attack in DTL 10.6 KB Diff Download File
CVE-2012-2110.patch 50 12 years ago Package Import Robot * SECURITY UPDATE: NULL pointer dereference in S/M 4.6 KB Diff Download File
CVE-2012-2110b.patch 51 12 years ago Package Import Robot * SECURITY UPDATE: incomplete fix for CVE-2012-211 653 bytes Diff Download File
CVE-2012-2131.patch 51 12 years ago Package Import Robot * SECURITY UPDATE: incomplete fix for CVE-2012-211 971 bytes Diff Download File
CVE-2012-2333.patch 52 12 years ago Package Import Robot * SECURITY UPDATE: denial of service attack in DTL 1020 bytes Diff Download File
CVE-2013-0166.patch 53 11 years ago Package Import Robot * SECURITY UPDATE: denial of service via invalid O 1.3 KB Diff Download File
CVE-2013-0169.patch 53 11 years ago Package Import Robot * SECURITY UPDATE: denial of service via invalid O 66.1 KB Diff Download File
CVE-2014-0221.patch 55 10 years ago Package Import Robot * SECURITY UPDATE: MITM via change cipher spec - 1 KB Diff Download File
CVE-2014-0224-1.patch 55 10 years ago Package Import Robot * SECURITY UPDATE: MITM via change cipher spec - 2.7 KB Diff Download File
CVE-2014-0224-2.patch 55 10 years ago Package Import Robot * SECURITY UPDATE: MITM via change cipher spec - 804 bytes Diff Download File
CVE-2014-0224-3.patch 55 10 years ago Package Import Robot * SECURITY UPDATE: MITM via change cipher spec - 491 bytes Diff Download File
CVE-2014-0224-regression2.patch 56 10 years ago Package Import Robot * SECURITY UPDATE: regression with certain renegot 1022 bytes Diff Download File
CVE-2014-3505.patch 57 10 years ago Package Import Robot * SECURITY UPDATE: double free when processing DTL 1.3 KB Diff Download File
CVE-2014-3506.patch 57 10 years ago Package Import Robot * SECURITY UPDATE: double free when processing DTL 2.1 KB Diff Download File
CVE-2014-3508.patch 57 10 years ago Package Import Robot * SECURITY UPDATE: double free when processing DTL 4.8 KB Diff Download File
CVE-2014-3510.patch 57 10 years ago Package Import Robot * SECURITY UPDATE: double free when processing DTL 2.1 KB Diff Download File
CVE-2014-3511.patch 57 10 years ago Package Import Robot * SECURITY UPDATE: double free when processing DTL 2.5 KB Diff Download File
debian-targets.patch 11.1.6 15 years ago Bazaar Package Importer * Split all the patches into a separate files * St 9 KB Diff Download File
dtls-compatibility.patch 42 14 years ago Bazaar Package Importer debian/patches/dtls-compatibility.patch: backport 5.9 KB Diff Download File
engines-path.patch 11.1.6 15 years ago Bazaar Package Importer * Split all the patches into a separate files * St 2.3 KB Diff Download File
fix_renegotiation.patch 55 10 years ago Package Import Robot * SECURITY UPDATE: MITM via change cipher spec - 2.2 KB Diff Download File
kfreebsd-pipe.patch 11.1.6 15 years ago Bazaar Package Importer * Split all the patches into a separate files * St 583 bytes Diff Download File
make-targets.patch 11.1.6 15 years ago Bazaar Package Importer * Split all the patches into a separate files * St 429 bytes Diff Download File
man-dir.patch 11.1.6 15 years ago Bazaar Package Importer * Split all the patches into a separate files * St 365 bytes Diff Download File
man-section.patch 11.1.6 15 years ago Bazaar Package Importer * Split all the patches into a separate files * St 1.1 KB Diff Download File
no-rpath.patch 11.1.6 15 years ago Bazaar Package Importer * Split all the patches into a separate files * St 669 bytes Diff Download File
no-symbolic.patch 11.1.6 15 years ago Bazaar Package Importer * Split all the patches into a separate files * St 626 bytes Diff Download File
no_check_self_signed.patch 11.1.7 15 years ago Bazaar Package Importer Don't check self signed certificate signatures in 1.4 KB Diff Download File
openssl-1.0.1e-env-zlib.patch 54 11 years ago Package Import Robot * SECURITY UPDATE: Disable compression to avoid CR 1.9 KB Diff Download File
openssl-CVE-2010-3864-secadv_20101116-0.9.8.patch 46 14 years ago Bazaar Package Importer * SECURITY UPDATE: TLS race condition leading to a 3 KB Diff Download File
openssl-CVE-2010-4180-secadv_20101202-0.9.8.patch 47 14 years ago Bazaar Package Importer * SECURITY UPDATE: ciphersuite downgrade vulnerabi 3.7 KB Diff Download File
openssl-CVE-2011-0014-secadv_20110208.patch 48 14 years ago Bazaar Package Importer * SECURITY UPDATE: OCSP stapling vulnerability - 2.3 KB Diff Download File
openssl-fix_ECDSA_tests.patch 49 13 years ago Package Import Robot * SECURITY UPDATE: ECDSA private key timing attack 4.2 KB Diff Download File
openssl-forward-interop.patch 48 14 years ago Bazaar Package Importer * SECURITY UPDATE: OCSP stapling vulnerability - 1.5 KB Diff Download File
pic.patch 11.1.6 15 years ago Bazaar Package Importer * Split all the patches into a separate files * St 10.5 KB Diff Download File
pk7_mime_free.patch 11.1.6 15 years ago Bazaar Package Importer * Split all the patches into a separate files * St 872 bytes Diff Download File
pkg-config.patch 11.1.6 15 years ago Bazaar Package Importer * Split all the patches into a separate files * St 1.4 KB Diff Download File
rc4-amd64.patch 11.1.6 15 years ago Bazaar Package Importer * Split all the patches into a separate files * St 1 KB Diff Download File
rehash-crt.patch 11.1.6 15 years ago Bazaar Package Importer * Split all the patches into a separate files * St 1.2 KB Diff Download File
rehash_pod.patch 11.1.6 15 years ago Bazaar Package Importer * Split all the patches into a separate files * St 2.9 KB Diff Download File
series 57 10 years ago Package Import Robot * SECURITY UPDATE: double free when processing DTL 1.6 KB Diff Download File
shared-lib-ext.patch 11.1.6 15 years ago Bazaar Package Importer * Split all the patches into a separate files * St 708 bytes Diff Download File
stddef.patch 11.1.6 15 years ago Bazaar Package Importer * Split all the patches into a separate files * St 392 bytes Diff Download File
tls_ext_v3.patch 11.1.6 15 years ago Bazaar Package Importer * Split all the patches into a separate files * St 914 bytes Diff Download File
valgrind.patch 11.1.6 15 years ago Bazaar Package Importer * Split all the patches into a separate files * St 578 bytes Diff Download File
version-script.patch 11.1.6 15 years ago Bazaar Package Importer * Split all the patches into a separate files * St 1.1 KB Diff Download File