-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 3.0 (quilt) Source: openssl Binary: openssl, libssl1.0.0, libcrypto1.0.0-udeb, libssl-dev, libssl-doc, libssl1.0.0-dbg Architecture: any all Version: 1.0.1e-2+deb7u15 Maintainer: Debian OpenSSL Team <[email protected]> Uploaders: Christoph Martin <[email protected]>, Kurt Roeckx <[email protected]> Standards-Version: 3.8.0 Vcs-Browser: http://svn.debian.org/wsvn/pkg-openssl/openssl Vcs-Svn: svn://svn.debian.org/pkg-openssl/openssl/ Build-Depends: debhelper (>= 8.1.3), zlib1g-dev, m4, bc, dpkg-dev (>= 1.15.7) Package-List: libcrypto1.0.0-udeb udeb debian-installer optional libssl-dev deb libdevel optional libssl-doc deb doc optional libssl1.0.0 deb libs important libssl1.0.0-dbg deb debug extra openssl deb utils optional Checksums-Sha1: 3f1b1223c9e8189bfe4e186d86449775bd903460 4459777 openssl_1.0.1e.orig.tar.gz b38aceb6f5ff6a18e6b31a446b51229c81243141 161956 openssl_1.0.1e-2+deb7u15.debian.tar.gz Checksums-Sha256: f74f15e8c8ff11aa3d5bb5f276d202ec18d7246e95f961db76054199c69c1ae3 4459777 openssl_1.0.1e.orig.tar.gz fa9688f3972c8fa48676965426ae23846b152348b169fcb1824550f83bdf4f94 161956 openssl_1.0.1e-2+deb7u15.debian.tar.gz Files: 66bf6f10f060d561929de96f9dfe5b8c 4459777 openssl_1.0.1e.orig.tar.gz dce120b041cd780cd5f88e483743c4cc 161956 openssl_1.0.1e-2+deb7u15.debian.tar.gz -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIcBAEBCgAGBQJVCd0CAAoJEOPE3c0eTBJEBzoP/jLOlczp4x6xuz+Tl41s4087 BQ/J+bJUJ/Nf1YsFmWMJx3CAp11/rrSqaTGKTKEz/IHqYiLky6iNWopg4lTSo8VA P1e/JQqwA6LW4Jv90AWkFmTSBnm7ltqkvvtZcfLV0dDvISKLXfMzCB8Rz0FIZsqX kk+kfo3P5Dxvh0GCxVjn4AkVRN//w9cVlHOUa4u5praBBbuDA77nLbkIOjPpkkVg a3nofr5ix9Az4xguqgf4Va4AUqu61CP0n1fa6r/Hzzyl7icHS5GxpTqFAk6qry/V 9rNEpfuLHVipCVQaclxKJxr4Ukw+Cze2CQ2LIFDXfsJiHsOPMCXYCpe73O95e+X0 Z2hPtSK4KdqV53aGmjZp+N6uX+o4RCHIA8Ad9KRmpLHC8hj0r0fB07USNRIRP1iW 3h8+UNbc78ilLmF20361p9JF4Dnx+kDWCZeVFcldiwz7uwhT9hLeWzprnHD8IUjx XUgoASSrH9gFlshN4EPyFA713wfnP70yfhW+kJcgiDYRpAkXGiEfFuDW93VKlX8A dd0WUQiQ/sn9L8srZPG6qfmLfqorty5gfksEHNCBRW6qsI8BoMCedBeg3ywljNo5 Gx7t1Cu9IgxpBjDw7Ms/9jT69S/EqUEQVUB4oYpTMFEcFWsVtBF4hjlFmEx8zZnw YyioIbF3kn7Pf7GCFMQZ =Bt2p -----END PGP SIGNATURE----- Changes: openssl (1.0.1e-2+deb7u15) wheezy-security; urgency=medium * Fix CVE-2015-0286 * Fix CVE-2015-0287 * Fix CVE-2015-0289 * Fix CVE-2015-0292 * Fix CVE-2015-0293 (not affected, SSLv2 disabled) * Fix CVE-2015-0209 * Fix CVE-2015-0288 * Remove export ciphers from DEFAULT. * Make DTLS always act as if read_ahead is set. This fixes a regression introduce by the fix for CVE-2014-3571. (Closes: #775502) * Fix error codes. -- Kurt Roeckx <[email protected]> Tue, 17 Mar 2015 19:11:55 +0100
