109
|
|
* SECURITY UPDATE: denial of service via DTLS SRTP memory leak - debian/patches/CVE-2014-3513.patch: fix logic in ssl/d1_srtp.c, ssl/srtp.h, ssl/t1_lib.c, util/mk1mf.pl, util/mkdef.pl, util/ssleay.num. - CVE-2014-3513 * SECURITY UPDATE: denial of service via session ticket integrity check memory leak - debian/patches/CVE-2014-3567.patch: perform cleanup in ssl/t1_lib.c. - CVE-2014-3567 * SECURITY UPDATE: fix the no-ssl3 build option - debian/patches/CVE-2014-3568.patch: fix conditional code in ssl/s23_clnt.c, ssl/s23_srvr.c. - CVE-2014-3568 * SECURITY IMPROVEMENT: Added TLS_FALLBACK_SCSV support to mitigate a protocol downgrade attack to SSLv3 that exposes the POODLE attack. - debian/patches/tls_fallback_scsv_support.patch: added support for TLS_FALLBACK_SCSV in apps/s_client.c, crypto/err/openssl.ec, ssl/d1_lib.c, ssl/dtls1.h, ssl/s23_clnt.c, ssl/s23_srvr.c, ssl/s2_lib.c, ssl/s3_enc.c, ssl/s3_lib.c, ssl/ssl.h, ssl/ssl3.h, ssl/ssl_err.c, ssl/ssl_lib.c, ssl/t1_enc.c, ssl/tls1.h, doc/apps/s_client.pod, doc/ssl/SSL_CTX_set_mode.pod.
|
Marc Deslauriers |
1.0.1f-1ubuntu9 |
9 years ago
|
|
|
108
|
|
|
Colin Watson |
1.0.1f-1ubuntu8 |
9 years ago
|
|
|
107
|
|
|
Marc Deslauriers |
1.0.1f-1ubuntu7 |
9 years ago
|
|
|
106
|
|
|
Marc Deslauriers |
1.0.1f-1ubuntu6 |
9 years ago
|
|
|
105
|
|
|
Marc Deslauriers |
1.0.1f-1ubuntu5 |
9 years ago
|
|
|
104
|
|
|
Marc Deslauriers |
1.0.1f-1ubuntu4 |
9 years ago
|
|
|
103
|
|
|
Marc Deslauriers |
1.0.1f-1ubuntu3 |
9 years ago
|
|
|
102
|
|
|
Marc Deslauriers |
1.0.1f-1ubuntu2 |
10 years ago
|
|
|
101
|
|
|
Marc Deslauriers |
1.0.1f-1ubuntu1 |
10 years ago
|
|
|
100
|
|
|
Marc Deslauriers |
1.0.1e-4ubuntu4 |
10 years ago
|
|
|
99
|
|
|
Matthias Klose |
1.0.1e-4ubuntu3 |
10 years ago
|
|
|
98
|
|
|
Marc Deslauriers |
1.0.1e-4ubuntu2 |
10 years ago
|
|
|
97
|
|
|
Matthias Klose |
1.0.1e-4ubuntu1 |
10 years ago
|
|
|
96
|
|
* Merge with Debian, remaining changes. - debian/libssl1.0.0.postinst: + Display a system restart required notification on libssl1.0.0 upgrade on servers. + Use a different priority for libssl1.0.0/restart-services depending on whether a desktop, or server dist-upgrade is being performed. - debian/{libssl1.0.0-udeb.dirs, control, rules}: Create libssl1.0.0-udeb, for the benefit of wget-udeb (no wget-udeb package in Debian). - debian/{libcrypto1.0.0-udeb.dirs, libssl1.0.0.dirs, libssl1.0.0.files, rules}: Move runtime libraries to /lib, for the benefit of wpasupplicant. - debian/patches/perlpath-quilt.patch: Don't change perl #! paths under .pc. - debian/rules: + Don't run 'make test' when cross-building. + Use host compiler when cross-building. Patch from Neil Williams. + Don't build for processors no longer supported: i586 (on i386) + Fix Makefile to properly clean up libs/ dirs in clean target. + Replace duplicate files in the doc directory with symlinks. - Unapply patch c_rehash-multi and comment it out in the series as it breaks parsing of certificates with CRLF line endings and other cases (see Debian #642314 for discussion), it also changes the semantics of c_rehash directories by requiring applications to parse hash link targets as files containing potentially *multiple* certificates rather than exactly one. - debian/patches/tls12_workarounds.patch: Workaround large client hello issues when TLS 1.1 and lower is in use - debian/control: Mark Debian Vcs-* as XS-Debian-Vcs-* - debian/patches/ubuntu_deb676533_arm_asm.patch: Enable arm assembly code. - debian/patches/arm64-support: Add basic arm64 support (no assembler) - debian/rules: Enable optimized 64bit elliptic curve code contributed by Google. * debian/patches/tls12_workarounds.patch: updated to also disable TLS 1.2 in test suite since we disable it in the client. * Disable compression to avoid CRIME systemwide (CVE-2012-4929). * Dropped changes: - debian/patches/ubuntu_deb676533_arm_asm.patch, applied in Debian.
|
Matthias Klose |
1.0.1e-3ubuntu1 |
10 years ago
|
|
|
95
|
|
|
Seth Arnold |
1.0.1e-2ubuntu1.1 |
10 years ago
|
|
|
94
|
|
|
Marc Deslauriers |
1.0.1e-2ubuntu1 |
10 years ago
|
|
|
93
|
|
|
Marc Deslauriers |
1.0.1c-4ubuntu8 |
11 years ago
|
|
|
92
|
|
|
Dmitrijs Ledkovs |
1.0.1c-4ubuntu7 |
11 years ago
|
|
|
91
|
|
|
Marc Deslauriers |
1.0.1c-4ubuntu6 |
11 years ago
|
|
|
90
|
|
|
Marc Deslauriers |
1.0.1c-4ubuntu5 |
11 years ago
|
|
|