Debian Package Tracker

From: Kurt Roeckx <kurt@roeckx.be>
To: <debian-devel-changes@lists.debian.org>
Subject: Accepted openssl 1.0.2g-1 (source amd64 all) into unstable
Date: Tue, 01 Mar 2016 18:35:03 +0000
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Tue, 01 Mar 2016 18:31:09 +0100
Source: openssl
Binary: openssl libssl1.0.2 libcrypto1.0.2-udeb libssl-dev libssl-doc libssl1.0.2-dbg
Architecture: source amd64 all
Version: 1.0.2g-1
Distribution: unstable
Urgency: high
Maintainer: Debian OpenSSL Team <pkg-openssl-devel@lists.alioth.debian.org>
Changed-By: Kurt Roeckx <kurt@roeckx.be>
Description:
 libcrypto1.0.2-udeb - Secure Sockets Layer toolkit - libcrypto udeb (udeb)
 libssl-dev - Secure Sockets Layer toolkit - development files
 libssl-doc - Secure Sockets Layer toolkit - development documentation
 libssl1.0.2 - Secure Sockets Layer toolkit - shared libraries
 libssl1.0.2-dbg - Secure Sockets Layer toolkit - debug information
 openssl    - Secure Sockets Layer toolkit - cryptographic utility
Changes:
 openssl (1.0.2g-1) unstable; urgency=high
 .
   * New upstream version
   * Fix CVE-2016-0797
   * Fix CVE-2016-0798
   * Fix CVE-2016-0799
   * Fix CVE-2016-0702
   * Fix CVE-2016-0705
   * Disable EXPORT and LOW ciphers: The DROWN attack (CVE-2016-0800)
     makes use of those, and SLOTH attack (CVE-2015-7575) can make use of them
     too.
Checksums-Sha1:
 b4780d03ff2b0f6e863b61e9ecc75a78305b935b 2227 openssl_1.0.2g-1.dsc
 36af23887402a5ea4ebef91df8e61654906f58f2 5266102 openssl_1.0.2g.orig.tar.gz
 3ff0ac1e01379e9bb953d7f8e41f0e4d021a9cad 75992 openssl_1.0.2g-1.debian.tar.xz
 1dbdba2fd60908bde27e3c364fb60e8e7314fa31 874390 libcrypto1.0.2-udeb_1.0.2g-1_amd64.udeb
 ca57380f17b3107f1d7fc8b08873e0217e7aaf79 1540866 libssl-dev_1.0.2g-1_amd64.deb
 56f4cddcd4b5f81279fc4cde86360862aa393c43 1255374 libssl-doc_1.0.2g-1_all.deb
 1811c6208046b86197c57dad93c37960f164bd30 2976322 libssl1.0.2-dbg_1.0.2g-1_amd64.deb
 97534f348d8f91798e9eafb71560745cafa6bc56 1285334 libssl1.0.2_1.0.2g-1_amd64.deb
 62eed77946dbfbec81eba44cc6596a2f9612da7a 578016 openssl-dbgsym_1.0.2g-1_amd64.deb
 33fcb4ed27ea4073d4e0e952a3841f92fa2c5b9d 679374 openssl_1.0.2g-1_amd64.deb
Checksums-Sha256:
 a256e91bf5222a259cdf5d6dd612bf7b5896d26172e43db61be478d7be3e01d2 2227 openssl_1.0.2g-1.dsc
 b784b1b3907ce39abf4098702dade6365522a253ad1552e267a9a0e89594aa33 5266102 openssl_1.0.2g.orig.tar.gz
 ef389446cc3e06b0bdd4eecfd7346e111be6003dfac412c9a1d53465daebafe7 75992 openssl_1.0.2g-1.debian.tar.xz
 cc6fdee3dd01ad2aad25c34f9e0bc45d0c3c2ab53a3d195e3ded0e0609856a80 874390 libcrypto1.0.2-udeb_1.0.2g-1_amd64.udeb
 70243539694d97da2c8b4600f1f895ad77110ec6234efc8ae3b0dc18e01fdffd 1540866 libssl-dev_1.0.2g-1_amd64.deb
 df45239230151a9277c3b2de72a0a7960235c275b7d07679e993cc81aa302fa2 1255374 libssl-doc_1.0.2g-1_all.deb
 616c5ee318381deac8b726fdc168645e45e9f9e18d71b10140bd15f82540435c 2976322 libssl1.0.2-dbg_1.0.2g-1_amd64.deb
 e97a67a47e1c50fb39bd75cdbb9ec8b81adf0ae727676889207571d437e4ce24 1285334 libssl1.0.2_1.0.2g-1_amd64.deb
 1d7d599099403e3dbf15c63ff22a05e16e3d04942015b66cf6c5a80e55ee0620 578016 openssl-dbgsym_1.0.2g-1_amd64.deb
 b13a1e60a644ccd9c4ad8bed1e326f194f3e8d86b6bca588af7f934d4ccbe915 679374 openssl_1.0.2g-1_amd64.deb
Files:
 1723c2fd1847d4753571bd879a53ef07 2227 utils optional openssl_1.0.2g-1.dsc
 f3c710c045cdee5fd114feb69feba7aa 5266102 utils optional openssl_1.0.2g.orig.tar.gz
 272bb5771b92c2ce474009152a974c50 75992 utils optional openssl_1.0.2g-1.debian.tar.xz
 0b2b0a942d1c96162b78584fbc44aa5e 874390 debian-installer optional libcrypto1.0.2-udeb_1.0.2g-1_amd64.udeb
 823edd9fca2ebc430b52baa1a97ef099 1540866 libdevel optional libssl-dev_1.0.2g-1_amd64.deb
 9ee01eb76c12f355741b393d2a70a7da 1255374 doc optional libssl-doc_1.0.2g-1_all.deb
 14bd8b6b60944c18d597f417b275c52f 2976322 debug extra libssl1.0.2-dbg_1.0.2g-1_amd64.deb
 d601b267015ed9752eafbf54bd94e9a4 1285334 libs important libssl1.0.2_1.0.2g-1_amd64.deb
 4c617a20e958f28825536054aa4834d2 578016 debug extra openssl-dbgsym_1.0.2g-1_amd64.deb
 b25c631d604a31796e97cac19fcaf58c 679374 utils optional openssl_1.0.2g-1_amd64.deb
Package-Type: udeb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=znEa
-----END PGP SIGNATURE-----
News for package openssl
