~ubuntu-branches/ubuntu/lucid/openssl/lucid-security

Committer: Package Import Robot
Author(s): Marc Deslauriers
Date: 2014-06-20 13:59:20 UTC
Revision ID: package-import@ubuntu.com-20140620135920-njqxz2sd1or0i23e

Tags: 0.9.8k-7ubuntu8.19

* SECURITY UPDATE: regression with certain renegotiations (LP: #1332643)
- debian/patches/CVE-2014-0224-regression2.patch: accept CCS after
sending finished ssl/s3_clnt.c.

files added:
debian/patches/CVE-2014-0224-regression2.patch

files modified:
debian/changelog

debian/patches/series

Show diffs side-by-side

added added

removed removed

debian/changelog

openssl (0.9.8k-7ubuntu8.19) lucid-security; urgency=medium

* SECURITY UPDATE: regression with certain renegotiations (LP: #1332643)

- debian/patches/CVE-2014-0224-regression2.patch: accept CCS after

sending finished ssl/s3_clnt.c.

-- Marc Deslauriers <marc.deslauriers@ubuntu.com> Fri, 20 Jun 2014 13:59:20 -0400

openssl (0.9.8k-7ubuntu8.18) lucid-security; urgency=medium

* SECURITY UPDATE: MITM via change cipher spec

Older »