Viewing all changes in revision 20.
- Committer: Package Import Robot
- Date: 2013-09-20 15:44:13 UTC
- Revision ID: package-import@ubuntu.com-20130920154413-afhewbyytv9btbbd
* SECURITY UPDATE: incorrect ssl cert validation via NUL byte in
subjectAltName
- debian/patches/CVE-2013-4314.patch: fix leak in OpenSSL/crypto/x509.c,
properly handle subjectAltName in OpenSSL/crypto/x509ext.c, added
tests to OpenSSL/test/test_crypto.py.
- CVE-2013-4314
subjectAltName
- debian/patches/CVE-2013-4314.patch: fix leak in OpenSSL/crypto/x509.c,
properly handle subjectAltName in OpenSSL/crypto/x509ext.c, added
tests to OpenSSL/test/test_crypto.py.
- CVE-2013-4314
- files added:
- .pc/CVE-2013-4314.patch
- .pc/CVE-2013-4314.patch/OpenSSL
- .pc/CVE-2013-4314.patch/OpenSSL/crypto
- .pc/CVE-2013-4314.patch/OpenSSL/test
- files modified:
- .pc/applied-patches
expand all
collapse all
added
removed
