-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Tue, 16 Feb 2021 23:08:43 +0100 Source: openssl Architecture: source Version: 1.1.1d-0+deb10u5 Distribution: buster-security Urgency: medium Maintainer: Debian OpenSSL Team <pkg-openssl-devel@lists.alioth.debian.org> Changed-By: Sebastian Andrzej Siewior <sebastian@breakpoint.cc> Closes: 947949 Changes: openssl (1.1.1d-0+deb10u5) buster-security; urgency=medium . * CVE-2021-23841 (NULL pointer deref in X509_issuer_and_serial_hash()). * CVE-2021-23840 (Possible overflow of the output length argument in EVP_CipherUpdate(), EVP_EncryptUpdate() and EVP_DecryptUpdate()). * CVE-2019-1551 (Overflow in the x64_64 Montgomery squaring procedure), (Closes: #947949). Checksums-Sha1: 37c6f31d7c2581d09040b1975de0d4757290ffd8 2472 openssl_1.1.1d-0+deb10u5.dsc 2c6bc1d2da71f668f1dde7b195a6e7ffe5b85ce4 95940 openssl_1.1.1d-0+deb10u5.debian.tar.xz Checksums-Sha256: a09e1135475dc740ceeb86c3c9ce8eec6bcc931df2a06a70f461ff0ce477c180 2472 openssl_1.1.1d-0+deb10u5.dsc 70c3d201429bf5cdb198837da7ebe9e2bfe956f929ddc069f06cbb7508989c50 95940 openssl_1.1.1d-0+deb10u5.debian.tar.xz Files: e85e779b8b5d51a9636f8755e71d2c6f 2472 utils optional openssl_1.1.1d-0+deb10u5.dsc 5dd192467f3f3f5898145521274263e9 95940 utils optional openssl_1.1.1d-0+deb10u5.debian.tar.xz -----BEGIN PGP SIGNATURE----- iQGzBAEBCgAdFiEEV4kucFIzBRM39v3RBWQfF1cS+lsFAmAsRA0ACgkQBWQfF1cS +lvTRgv/aDQQxtN/ErUzRyW72L55ViPmS1AA2NAZAXxlA9Z3k3gUG/W4pgs9eIlR y9bq8cbGzgqjW61aM6Of/DtLPf2O63MMF+3evgBDeBusj87oyl5JFtYWFmqUdcNI Ee0JwUvLJlCA+fJLsbM3iexmYGZjaakPLGYWtWU1FCD/2X7fqwxIAHBE8mnpHEy5 n8HFvKWuOGlHKrlU9YcG684xUi4aeRirxu43n02UXbqLTxu5Qm52YctfU0hmb8+A CgElEXniYhuJweDMjtjf5nqNM+WIcDNzK9vo1Ky5cAWFK9uElLw4mLuj5H/ZpqX2 Yin8bU7AIMrjNDHnhc7fA+V1yNy5te7XnAf+m+CFqEl4atIbYEEmfG4TZ0S5CyeX PlNg5XhjI0QrKORRSwnVZvna0klcuvF09c5hsC13c8OwO8hc5Jc5NfBqTJalACW+ Oa5lh9WcbrY4WgZdasgxhdmNL2r/AD6gy7VQjoG3ME9DFDGsSwRkWDISMa36qEaI 0jpNbvOj =H1KK -----END PGP SIGNATURE-----
