[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Accepted openssl1.0 1.0.2u-1~deb9u2 (source) into oldstable

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Fri, 25 Sep 2020 17:14:36 -0400
Source: openssl1.0
Binary: libssl1.0.2 libssl1.0-dev libcrypto1.0.2-udeb libssl1.0.2-udeb
Architecture: source
Version: 1.0.2u-1~deb9u2
Distribution: stretch-security
Urgency: high
Maintainer: Debian OpenSSL Team <pkg-openssl-devel@lists.alioth.debian.org>
Changed-By: Roberto C. Sanchez <roberto@debian.org>
Description:
 libcrypto1.0.2-udeb - Secure Sockets Layer toolkit - libcrypto udeb (udeb)
 libssl1.0-dev - Secure Sockets Layer toolkit - development files
 libssl1.0.2 - Secure Sockets Layer toolkit - shared libraries
 libssl1.0.2-udeb - ssl shared library - udeb (udeb)
Changes:
 openssl1.0 (1.0.2u-1~deb9u2) stretch-security; urgency=high
 .
   * Non-maintainer upload by the LTS Team.
   * Fix CVE-2020-1968: disable ciphers that reuse the DH secret across
     multiple TLS connections in ssl/s3_lib.c.  Patch by Marc Deslauriers.
Checksums-Sha1:
 cd565abe5aab3c9a9bed9dac7eb656307fc944a7 2301 openssl1.0_1.0.2u-1~deb9u2.dsc
 424cb3e5f1e52d142b2aec28f537c3d37a8d27a2 95328 openssl1.0_1.0.2u-1~deb9u2.debian.tar.xz
 9a37005224eb9d47db19f86e91aac2110c4838c0 7190 openssl1.0_1.0.2u-1~deb9u2_amd64.buildinfo
Checksums-Sha256:
 dc6e3ba0885c093e1dc6f018c9ed3a78f274e8995a21e12e2c50659c1c085b9c 2301 openssl1.0_1.0.2u-1~deb9u2.dsc
 b2fa5e1cfc97c1b32d18fc90844e2dceccb198b757d193a01394a71ce7c876bf 95328 openssl1.0_1.0.2u-1~deb9u2.debian.tar.xz
 e4923ac65f0bed573f6b368cc309744ac93861a95275a785c7cb812158acef01 7190 openssl1.0_1.0.2u-1~deb9u2_amd64.buildinfo
Files:
 c6010c401334e5020b70b3d3426d6099 2301 utils optional openssl1.0_1.0.2u-1~deb9u2.dsc
 2a9e4d7f26112c0c391e57894ed4e707 95328 utils optional openssl1.0_1.0.2u-1~deb9u2.debian.tar.xz
 e873e07142f1273491e5ea350962c83d 7190 utils optional openssl1.0_1.0.2u-1~deb9u2_amd64.buildinfo

-----BEGIN PGP SIGNATURE-----
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=vctp
-----END PGP SIGNATURE-----
Reply to: