← Back to branch summary

~ubuntu-branches/ubuntu/oneiric/openssl/oneiric-201110041452

~ubuntu-branches/ubuntu/oneiric/openssl/oneiric-201110041452

« back to all changes in this revision

Viewing changes to debian/changelog

Committer: Bazaar Package Importer
Author(s): Steve Beattie
Date: 2010-11-16 10:07:49 UTC
Revision ID: james.westby@ubuntu.com-20101116100749-yr1a9k5pjqs56v39

Tags: 0.9.8o-1ubuntu4.2

https://launchpad.net/bugs/676243

* SECURITY UPDATE: TLS race condition leading to a buffer overflow and
  possible code execution. (LP: #676243)
  - patches/debian/openssl-CVE-2010-3864-secadv_20101116-0.9.8.patch:
    stricter NULL/not-NULL checking in ssl/t1_lib.c
  - CVE-2010-3864

files added:
.pc/openssl-CVE-2010-3864-secadv_20101116-0.9.8.patch

.pc/openssl-CVE-2010-3864-secadv_20101116-0.9.8.patch/ssl

.pc/openssl-CVE-2010-3864-secadv_20101116-0.9.8.patch/ssl/t1_lib.c

debian/patches/openssl-CVE-2010-3864-secadv_20101116-0.9.8.patch

files modified:
.pc/applied-patches

debian/changelog

debian/patches/series

ssl/t1_lib.c

Show diffs side-by-side

added added

removed removed

debian/changelog

1

openssl (0.9.8o-1ubuntu4.2) maverick-security; urgency=low

2

3

* SECURITY UPDATE: TLS race condition leading to a buffer overflow and

4

possible code execution. (LP: #676243)

5

- patches/debian/openssl-CVE-2010-3864-secadv_20101116-0.9.8.patch:

6

stricter NULL/not-NULL checking in ssl/t1_lib.c

7

- CVE-2010-3864

8

9

-- Steve Beattie <sbeattie@ubuntu.com> Tue, 16 Nov 2010 10:07:49 -0800

10

1

11

openssl (0.9.8o-1ubuntu4.1) maverick-security; urgency=low

2

12

3

13

* SECURITY UPDATE: denial of service and possible code execution via

Older »