Viewing all changes in revision 86.
- Committer: Package Import Robot
- Date: 2013-02-18 13:13:42 UTC
- Revision ID: package-import@ubuntu.com-20130218131342-s6jggyto6dwa1fzt
* SECURITY UPDATE: denial of service via invalid OCSP key
- debian/patches/CVE-2013-0166.patch: properly handle NULL key in
crypto/asn1/a_verify.c, crypto/ocsp/ocsp_vfy.c.
- CVE-2013-0166
* SECURITY UPDATE: "Lucky Thirteen" timing side-channel TLS attack
- debian/patches/CVE-2013-0169.patch: massive code changes
- CVE-2013-0169
* SECURITY UPDATE: denial of service via AES-NI and crafted CBC data
- Fix included in CVE-2013-0169 patch
- CVE-2012-2686
- debian/patches/CVE-2013-0166.patch: properly handle NULL key in
crypto/asn1/a_verify.c, crypto/ocsp/ocsp_vfy.c.
- CVE-2013-0166
* SECURITY UPDATE: "Lucky Thirteen" timing side-channel TLS attack
- debian/patches/CVE-2013-0169.patch: massive code changes
- CVE-2013-0169
* SECURITY UPDATE: denial of service via AES-NI and crafted CBC data
- Fix included in CVE-2013-0169 patch
- CVE-2012-2686
- files added:
- .pc/CVE-2013-0166.patch
- .pc/CVE-2013-0166.patch/crypto
- .pc/CVE-2013-0166.patch/crypto/asn1
- .pc/CVE-2013-0166.patch/crypto/ocsp
- .pc/CVE-2013-0169.patch
- .pc/CVE-2013-0169.patch/crypto
- .pc/CVE-2013-0169.patch/crypto/bn
- .pc/CVE-2013-0169.patch/crypto/evp
- .pc/CVE-2013-0169.patch/crypto/rsa
- .pc/CVE-2013-0169.patch/ssl
- .pc/CVE-2013-0169.patch/test
- .pc/CVE-2013-0169.patch/util
- files modified:
- .pc/applied-patches
expand all
collapse all
added
removed
