Viewing all changes in revision 91.
- Committer: Package Import Robot
- Date: 2014-04-07 15:44:36 UTC
- Revision ID: package-import@ubuntu.com-20140407154436-rnxgy4izv16plabi
* SECURITY UPDATE: side-channel attack on Montgomery ladder implementation
- debian/patches/CVE-2014-0076.patch: add and use constant time swap in
crypto/bn/bn.h, crypto/bn/bn_lib.c, crypto/ec/ec2_mult.c,
util/libeay.num.
- CVE-2014-0076
* SECURITY UPDATE: memory disclosure in TLS heartbeat extension
- debian/patches/CVE-2014-0160.patch: use correct lengths in
ssl/d1_both.c, ssl/t1_lib.c.
- CVE-2014-0160
- debian/patches/CVE-2014-0076.patch: add and use constant time swap in
crypto/bn/bn.h, crypto/bn/bn_lib.c, crypto/ec/ec2_mult.c,
util/libeay.num.
- CVE-2014-0076
* SECURITY UPDATE: memory disclosure in TLS heartbeat extension
- debian/patches/CVE-2014-0160.patch: use correct lengths in
ssl/d1_both.c, ssl/t1_lib.c.
- CVE-2014-0160
- files added:
- .pc/CVE-2014-0076.patch
- .pc/CVE-2014-0076.patch/crypto
- .pc/CVE-2014-0076.patch/crypto/bn
- .pc/CVE-2014-0076.patch/crypto/ec
- .pc/CVE-2014-0076.patch/util
- .pc/CVE-2014-0160.patch
- .pc/CVE-2014-0160.patch/ssl
- files modified:
- .pc/applied-patches
expand all
collapse all
added
removed
