Accepted openssl 3.0.10-1 (source) into unstable

To: debian-devel-changes@lists.debian.org
Subject: Accepted openssl 3.0.10-1 (source) into unstable
From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
Date: Tue, 01 Aug 2023 21:22:27 +0000
Message-id: <[🔎] E1qQwp1-004ZF0-Sj@fasolo.debian.org>
Mail-followup-to: debian-devel@lists.debian.org
Reply-to: debian-devel@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Tue, 01 Aug 2023 22:00:05 +0200
Source: openssl
Architecture: source
Version: 3.0.10-1
Distribution: unstable
Urgency: medium
Maintainer: Debian OpenSSL Team <pkg-openssl-devel@alioth-lists.debian.net>
Changed-By: Sebastian Andrzej Siewior <sebastian@breakpoint.cc>
Closes: 1041817 1041818
Changes:
 openssl (3.0.10-1) unstable; urgency=medium
 .
   * Import 3.0.10
    - CVE-2023-2975 (AES-SIV implementation ignores empty associated data
      entries) (Closes: #1041818).
    - CVE-2023-3446 (Excessive time spent checking DH keys and parameters).
      (Closes: #1041817).
    - CVE-2023-3817 (Excessive time spent checking DH q parameter value).
    - Drop bc and m4 from B-D.
Checksums-Sha1:
 a9507a8da83d2bad475c1e58af9f36cef2f6dd90 2461 openssl_3.0.10-1.dsc
 f6ce69840df105fd4b9450f76075068e236d620f 15194904 openssl_3.0.10.orig.tar.gz
 7202004768624695f6820f89ccdd0630b3e75f61 833 openssl_3.0.10.orig.tar.gz.asc
 c9367279ee2baabc0f7f8700c4e5fda03879928c 69012 openssl_3.0.10-1.debian.tar.xz
Checksums-Sha256:
 c264f03731d2b2258c6875494a8a8980306758244808d22758b1d8c4ffcb7c2e 2461 openssl_3.0.10-1.dsc
 1761d4f5b13a1028b9b6f3d4b8e17feb0cedc9370f6afe61d7193d2cdce83323 15194904 openssl_3.0.10.orig.tar.gz
 f6f2e5f62e74a7f87d37e0d1de70b3612b01a9afcfdc00bc05fde82611f26e3d 833 openssl_3.0.10.orig.tar.gz.asc
 38ee9bd198c5f49fa4315cfb3884fe0fb78818d9caed2f9c7a428889cfd4a825 69012 openssl_3.0.10-1.debian.tar.xz
Files:
 bcc7346eddf63bfa718f4885b404b9e3 2461 utils optional openssl_3.0.10-1.dsc
 5d689e1534373e0b0540b5c087b5d99a 15194904 utils optional openssl_3.0.10.orig.tar.gz
 c09fc217a3fa447163558f2490d4a2d8 833 utils optional openssl_3.0.10.orig.tar.gz.asc
 31acc02fc833c58e0c15d400fbe84dab 69012 utils optional openssl_3.0.10-1.debian.tar.xz

-----BEGIN PGP SIGNATURE-----
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=lCG1
-----END PGP SIGNATURE-----

Reply to:

Prev by Date: Accepted mpv 0.36.0-1 (source) into unstable
Next by Date: Accepted openssl 3.1.2-1 (source) into experimental
Previous by thread: Accepted mpv 0.36.0-1 (source) into unstable
Next by thread: Accepted openssl 3.1.2-1 (source) into experimental
Index(es):
- Date
- Thread