-
Committer:
Package Import Robot
-
Author(s):
Steve Beattie
-
Date:
2012-05-24 16:05:04 UTC
-
Revision ID:
package-import@ubuntu.com-20120524160504-garuec6xfobdxmvj
Tags: 1.0.1-4ubuntu6
* SECURITY UPDATE: denial of service attack in DTLS, TLS v1.1 and
TLS v1.2 implementation
- debian/patches/CVE_2012-2333.patch: guard for integer overflow
before skipping explicit IV
- CVE-2012-2333
* debian/patches/CVE-2012-0884-extra.patch: initialize tkeylen
properly when encrypting CMS messages.