Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <dispatch@tracker.debian.org> , <debian-lts-changes@lists.debian.org>
Subject: Accepted openssl1.0 1.0.2u-1~deb9u4 (source amd64) into oldstable
Date: Thu, 18 Feb 2021 18:20:15 +0000
Signed by: Chris Lamb <lamby@debian.org>
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Thu, 18 Feb 2021 18:00:31 +0000
Source: openssl1.0
Binary: libssl1.0.2 libssl1.0-dev libcrypto1.0.2-udeb libssl1.0.2-udeb
Architecture: source amd64
Version: 1.0.2u-1~deb9u4
Distribution: stretch-security
Urgency: high
Maintainer: Debian OpenSSL Team <pkg-openssl-devel@lists.alioth.debian.org>
Changed-By: Chris Lamb <lamby@debian.org>
Description:
 libcrypto1.0.2-udeb - Secure Sockets Layer toolkit - libcrypto udeb (udeb)
 libssl1.0-dev - Secure Sockets Layer toolkit - development files
 libssl1.0.2 - Secure Sockets Layer toolkit - shared libraries
 libssl1.0.2-udeb - ssl shared library - udeb (udeb)
Changes:
 openssl1.0 (1.0.2u-1~deb9u4) stretch-security; urgency=high
 .
   * Non-maintainer upload by the LTS team.
   * CVE-2021-23840: Prevent an issue where "Digital EnVeloPe" EVP-related calls
     could cause applications to behave incorrectly or even crash.
   * CVE-2021-23841: Preevent an issue in the X509 certificate handler, caused
     by the lack of error handling while parsing "issuer" fields.
Checksums-Sha1:
 8fd25ec4bae9893b7a23524e234715fbfcd8389d 2304 openssl1.0_1.0.2u-1~deb9u4.dsc
 740916d79ab0d209d2775277b1c6c3ec2f6502b2 5355412 openssl1.0_1.0.2u.orig.tar.gz
 ad36cfa6656f8888eb535769f7ed330764f3bce1 100204 openssl1.0_1.0.2u-1~deb9u4.debian.tar.xz
 58b48e9e5a9df7368e97b4fc3d160380d3af58d9 882570 libcrypto1.0.2-udeb_1.0.2u-1~deb9u4_amd64.udeb
 e8b987a82f4551474fb6c9c7430d51886b369147 1573258 libssl1.0-dev_1.0.2u-1~deb9u4_amd64.deb
 9a7255de84f7a0d9044f227b8241c867df6cad3b 3169954 libssl1.0.2-dbgsym_1.0.2u-1~deb9u4_amd64.deb
 d0000d0b7c59445f6ba77491995e2edb353789e5 141988 libssl1.0.2-udeb_1.0.2u-1~deb9u4_amd64.udeb
 7be10c2fc417d67193480c266e2fe0d11cee37b2 1305502 libssl1.0.2_1.0.2u-1~deb9u4_amd64.deb
 edfcdd333bebdd4356f662210f4b2b4c2ba3a83f 7138 openssl1.0_1.0.2u-1~deb9u4_amd64.buildinfo
Checksums-Sha256:
 6efcbe988fe4397c0f5719867cb8bd4424c7dd5a5dbea96fd086e902ffd263c1 2304 openssl1.0_1.0.2u-1~deb9u4.dsc
 ecd0c6ffb493dd06707d38b14bb4d8c2288bb7033735606569d8f90f89669d16 5355412 openssl1.0_1.0.2u.orig.tar.gz
 7192b63ce719400c71b14be26fae75491debd87095b949ad4731ed3bc10b3d70 100204 openssl1.0_1.0.2u-1~deb9u4.debian.tar.xz
 ebea65a1815f98108538578dedf7089039670636884b9b3fa8a0bce079987ebf 882570 libcrypto1.0.2-udeb_1.0.2u-1~deb9u4_amd64.udeb
 c5ce6f529da8199799aa0b33e043ba0e5b1d3034602ce7359153bcc1db870143 1573258 libssl1.0-dev_1.0.2u-1~deb9u4_amd64.deb
 fd96149d11740ac9749a99a2acd878bb41c990253cfd57e8d9b57338945c68d4 3169954 libssl1.0.2-dbgsym_1.0.2u-1~deb9u4_amd64.deb
 01599c6b8955888619f7d429687195016e8735d9d979f6b2dd25ad5d55b11288 141988 libssl1.0.2-udeb_1.0.2u-1~deb9u4_amd64.udeb
 f9bb273105ab4264e261c64fd3b155eea76904517be04c1676a77e5e0b737465 1305502 libssl1.0.2_1.0.2u-1~deb9u4_amd64.deb
 e0f0469e72dae987874a134f8d4cd21c80f28d8aaa3891ce619f5c6866904a81 7138 openssl1.0_1.0.2u-1~deb9u4_amd64.buildinfo
Files:
 6ccd24e578695f363e38eef6cee8cdba 2304 utils optional openssl1.0_1.0.2u-1~deb9u4.dsc
 cdc2638f789ecc2db2c91488265686c1 5355412 utils optional openssl1.0_1.0.2u.orig.tar.gz
 0e6976c049c8066c30250184fd92fbb2 100204 utils optional openssl1.0_1.0.2u-1~deb9u4.debian.tar.xz
 cafdde3b5512f0981606296fcf72bc59 882570 debian-installer optional libcrypto1.0.2-udeb_1.0.2u-1~deb9u4_amd64.udeb
 ba98b137e11acca35a0a0f8d69599e0b 1573258 libdevel optional libssl1.0-dev_1.0.2u-1~deb9u4_amd64.deb
 5f5c4691503bb6fe1102e6983c6b46df 3169954 debug extra libssl1.0.2-dbgsym_1.0.2u-1~deb9u4_amd64.deb
 aec23f5de85ed272db94286ca1ee24ef 141988 debian-installer optional libssl1.0.2-udeb_1.0.2u-1~deb9u4_amd64.udeb
 e08c58a1d4c1bfad4c240a2d47e6ef8b 1305502 libs important libssl1.0.2_1.0.2u-1~deb9u4_amd64.deb
 5dfd888ce451c3121c864dc8e0fea95f 7138 utils optional openssl1.0_1.0.2u-1~deb9u4_amd64.buildinfo
Package-Type: udeb

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCAAdFiEEwv5L0nHBObhsUz5GHpU+J9QxHlgFAmAurWgACgkQHpU+J9Qx
Hlgv4Q/8CQX5E/10QDqa73KX7PkW/h+8hd2qAZvC0Te/8Sg3/rU2cTU5Iv24zCkQ
z9GG12WjQHlYUijdfDrcxYgyAd2UWaHaLeN6rg27vSTuEGQfdXhGTcONm0l2+ioy
kL1lSoxNcXinCd9NGXkPw10QwxY6IbNNWmf0jrp+wlIBqgdSGvWTayQbyGa6IXRA
ZCLBnueZ2wIvF2eJJjP15gsxk6oLm45XycKoNnRVzLheDHPUmlc+Zvg9eIoJqCGJ
dQUrj9HSsfGrKG8VRZGlSaHuA7qcdJSgzrd8PAVjUrjEUqhsYwDZWLh6siY2omqD
Z3zKbKA7Tjh/2EUzjl5LL1qSq6nM8ynYNxRCnhuSTBvhEC460WSRnrWOxV3uMxlz
OMs4K4EQuPDGXRO4vJdTvmMAWw6BFdEU0yAfhVwptrOmy61N8u7ZWYolETURBOGu
HfFZVSOYcE9KX6kfAgC1kGiVqOWxicIsbrNV7+ZHX4VY5yMTg0JarYua28QORaDO
fgnVcMUtrhFE4u/+nOprFKNB6r7SJPeN4ZjAOauwkCh1KarbIvDbqedcApKR08rR
aSBd61IIqjlioAwJnJkBbm+2B68g33pgjxFCUckdam+st967gAIbyY0viV8JRAzT
q3fUVzxyGXXviyfbKRypr/Ocv+CYBrazWogNIjLRGqIqpc/7uvo=
=I/Jp
-----END PGP SIGNATURE-----
News for package openssl1.0
