-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Fri, 27 Jan 2017 22:22:13 +0100 Source: openssl Binary: openssl libssl1.0.0 libcrypto1.0.0-udeb libssl-dev libssl-doc libssl1.0.0-dbg Architecture: source all Version: 1.0.2k-1~bpo8+1 Distribution: jessie-backports Urgency: medium Maintainer: Debian OpenSSL Team <pkg-openssl-devel@lists.alioth.debian.org> Changed-By: Sebastian Andrzej Siewior <sebastian@breakpoint.cc> Description: libcrypto1.0.0-udeb - Secure Sockets Layer toolkit - libcrypto udeb (udeb) libssl-dev - Secure Sockets Layer toolkit - development files libssl-doc - Secure Sockets Layer toolkit - development documentation libssl1.0.0 - Secure Sockets Layer toolkit - shared libraries libssl1.0.0-dbg - Secure Sockets Layer toolkit - debug information openssl - Secure Sockets Layer toolkit - cryptographic utility Closes: 736687 Changes: openssl (1.0.2k-1~bpo8+1) jessie-backports; urgency=medium . * New upstream release - Fixes CVE-2017-3731 - Fixes CVE-2017-3732 - Fixes CVE-2016-7055 * Disable internal free list handling without breaking the ABI (disable_freelist.patch). * Mark RC4 and 3DES as weak which removes them from the SSL/TLS protocol (Closes: #736687). Checksums-Sha1: 46a0d06723919b59c5f5cf5882079e628943165e 2269 openssl_1.0.2k-1~bpo8+1.dsc 5f26a624479c51847ebd2f22bb9f84b3b44dcb44 5309236 openssl_1.0.2k.orig.tar.gz dc8668024f74b222bb17a3ba9387ea384466b14c 77056 openssl_1.0.2k-1~bpo8+1.debian.tar.xz e2d9bc2a03299a3e6cb37a1993fdab4fcd1a2690 1270252 libssl-doc_1.0.2k-1~bpo8+1_all.deb Checksums-Sha256: b010af3435d2a1c26b1022b075300864627d2aa65534a3e09f4cca47f08561d0 2269 openssl_1.0.2k-1~bpo8+1.dsc 6b3977c61f2aedf0f96367dcfb5c6e578cf37e7b8d913b4ecb6643c3cb88d8c0 5309236 openssl_1.0.2k.orig.tar.gz f42af1ba0a629e132cea7c9e2aa4c30d189365654ebcc2f4652efc102452b5ba 77056 openssl_1.0.2k-1~bpo8+1.debian.tar.xz 19f91812cd0eaad4199555966316ac43c656421f5e20fda56a1ab775d3934dce 1270252 libssl-doc_1.0.2k-1~bpo8+1_all.deb Files: 67bdd4ef265e8c45d5caeb17b6a97779 2269 utils optional openssl_1.0.2k-1~bpo8+1.dsc f965fc0bf01bf882b31314b61391ae65 5309236 utils optional openssl_1.0.2k.orig.tar.gz 1ebb7e9f61cd289c6e92a7dea7b2b845 77056 utils optional openssl_1.0.2k-1~bpo8+1.debian.tar.xz 20c01aabbac46a7ab48074f7afdd3f57 1270252 doc optional libssl-doc_1.0.2k-1~bpo8+1_all.deb Package-Type: udeb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEZCVGlf/wqkRmzBnme5boFiqM9dEFAliLy/MACgkQe5boFiqM 9dFcjxAAvWPNNJ2Bkqla5Ux85DLcYi45M91q8oJJMuCzydqTbD1Rnx3uV/SLCQpJ faHMTXxySZIFbMI0TF5enbTH4PsKfkuKmzvb8JdeIxP3Pt4wi77kuUnApAleVIvd cSazIut+4d45G/BFgjmBthsD3TKL6byYnPdB0au1ThQNzus1357ZzxPJpP5yzsEr uCHtRYA2/Ejd/7jX0rXUAhJ/EragwRpK7oo3VOWWwtJ2F+pNGHlOf0Hb4Fsq5hbF SCK4apWCgDgd8Rsyl1B3afpfoVFUHa83rNNWWjCdb9Qzed9xCG/7fjyL1Cfb02mG u34NL+dwF0qazySNPVdTKZ+SdF6mYpy7oulmuDpsLmHt5kF5MTT4pJidq8MLTnkP ykmQ2LGHRq1H356SFqqKHFFQZ/W6ByrSy+/Du7ZWQ/f9gc6SnzLUbdafxDMd44j0 eX98UzIBZIyZrsWbcwfeHvpCBqryq1tWS4Tae9Sz3IVZi7ladsIv8b6an/Ghm1/u 4GdYCIAkIsjzTuyfG1uf67PGD38pZFSSf9Rycwn00XNpGfuDyBT9vwq3qn5AufxX TtchpFpsA8/Cmqs+SK9eXokRBIXmUBp8ZLhpyhNoW8xGjR3tgxrPw5pXrPchRJ9h sq+bbem/JLhyrPGnTB4JtZ23re+TrDCN3hC1d+rwr40fFD0DVvA= =WLjW -----END PGP SIGNATURE-----