Format: 1.8
Date: Mon, 17 Apr 2023 15:11:39 -0300
Source: openssl
Binary: libcrypto1.1-udeb libssl-dev libssl1.1 libssl1.1-udeb openssl
Architecture: ppc64el ppc64el_translations
Version: 1.1.1f-1ubuntu2.18
Distribution: focal
Urgency: medium
Maintainer: Launchpad Build Daemon <buildd@bos02-ppc64el-022.buildd>
Changed-By: Camila Camargo de Matos <camila.camargodematos@canonical.com>
Description:
 libcrypto1.1-udeb - Secure Sockets Layer toolkit - libcrypto udeb (udeb)
 libssl-dev - Secure Sockets Layer toolkit - development files
 libssl1.1  - Secure Sockets Layer toolkit - shared libraries
 libssl1.1-udeb - ssl shared library - udeb (udeb)
 openssl    - Secure Sockets Layer toolkit - cryptographic utility
Changes:
 openssl (1.1.1f-1ubuntu2.18) focal-security; urgency=medium
 .
   * SECURITY UPDATE: excessive resource use when verifying policy constraints
     - debian/patches/CVE-2023-0464-1.patch: limit the number of nodes created
       in a policy tree (the default limit is set to 1000 nodes).
     - debian/patches/CVE-2023-0464-2.patch: add test cases for the policy
       resource overuse.
     - debian/patches/CVE-2023-0464-3.patch: disable the policy tree
       exponential growth test conditionally.
     - CVE-2023-0464
   * SECURITY UPDATE: invalid certificate policies ignored in leaf certificates
     - debian/patches/CVE-2023-0465-1.patch: ensure that EXFLAG_INVALID_POLICY
       is checked even in leaf certs.
     - debian/patches/CVE-2023-0465-2.patch: generate some certificates with
       the certificatePolicies extension.
     - debian/patches/CVE-2023-0465-3.patch: add a certificate policies test.
     - CVE-2023-0466
   * SECURITY UPDATE: certificate policy check in X509_VERIFY_PARAM_add0_policy
     not enabled as documented
     - debian/patches/CVE-2023-0466.patch: fix documentation of
       X509_VERIFY_PARAM_add0_policy().
     - CVE-2023-0466
Checksums-Sha1:
 73f99488be0857de962c202691c87e851c2df7c3 1124908 libcrypto1.1-udeb_1.1.1f-1ubuntu2.18_ppc64el.udeb
 ae3d6b72c101e40343ed00e11f22e355a32bc7f9 1670280 libssl-dev_1.1.1f-1ubuntu2.18_ppc64el.deb
 d633424c19b63eaad5fcdd2d09f60b9cbf2e69af 3173320 libssl1.1-dbgsym_1.1.1f-1ubuntu2.18_ppc64el.ddeb
 8226ede48e72355d82cee1d0c700ccdb7f029d39 205524 libssl1.1-udeb_1.1.1f-1ubuntu2.18_ppc64el.udeb
 29bb9b3971b7e11ca2592cf8bae60f3f2610e951 1363056 libssl1.1_1.1.1f-1ubuntu2.18_ppc64el.deb
 bb92ec41c64c4f0159a15e2f81c9fb3f65d0f924 566484 openssl-dbgsym_1.1.1f-1ubuntu2.18_ppc64el.ddeb
 7fe08ffce9405d35a0ea482c2b2ed1640a43ebcc 7526 openssl_1.1.1f-1ubuntu2.18_ppc64el.buildinfo
 c41351499968f8ebdfb7d8ca486763690d5f25d7 621584 openssl_1.1.1f-1ubuntu2.18_ppc64el.deb
 300b42593a7eea5955213fcb35a766d375113b39 27415 openssl_1.1.1f-1ubuntu2.18_ppc64el_translations.tar.gz
Checksums-Sha256:
 d24fe7aa4596257e962ed7ab6bf6d1af58e31767b22e089e919e7bd1fbe1e434 1124908 libcrypto1.1-udeb_1.1.1f-1ubuntu2.18_ppc64el.udeb
 80e72995e8f3436f2c0c1cfee850cdf51eb39253daf07aba68c592da492a219a 1670280 libssl-dev_1.1.1f-1ubuntu2.18_ppc64el.deb
 71057500211d7bf4bd3337dcce24c368c9d5383b1895c4f70930df343c35fdb8 3173320 libssl1.1-dbgsym_1.1.1f-1ubuntu2.18_ppc64el.ddeb
 c42598ff47454231b5d9b45069998f80bb34dce1b5f0a203823b929ef90ede09 205524 libssl1.1-udeb_1.1.1f-1ubuntu2.18_ppc64el.udeb
 e0d64750ac0408bbc79e15c0cc94ace65d8cb0e81f4601719de2a280b022777b 1363056 libssl1.1_1.1.1f-1ubuntu2.18_ppc64el.deb
 f38cc80b79624f30c9bd92ba84ea63f953ba5684b723551b0d947dc52c59c5eb 566484 openssl-dbgsym_1.1.1f-1ubuntu2.18_ppc64el.ddeb
 207baa256748c799035053ba8d244e0343fef02298e9ff080555b4f37a9a1a10 7526 openssl_1.1.1f-1ubuntu2.18_ppc64el.buildinfo
 047979e6110cf18c258eb8252bdd4ccfa91fae55d4581d40eebfac16e854a21b 621584 openssl_1.1.1f-1ubuntu2.18_ppc64el.deb
 4ca7c09994111c0fd3ed513b0d3f7bd8564a6787a280e1192fc5301233db8e71 27415 openssl_1.1.1f-1ubuntu2.18_ppc64el_translations.tar.gz
Files:
 b5def93af6f7d89891633e0e3f6d9efa 1124908 debian-installer optional libcrypto1.1-udeb_1.1.1f-1ubuntu2.18_ppc64el.udeb
 f6521629d9e962d728bcaa8eca02d0c0 1670280 libdevel optional libssl-dev_1.1.1f-1ubuntu2.18_ppc64el.deb
 b0cf5dd063ad038a99567dfa44f48eca 3173320 debug optional libssl1.1-dbgsym_1.1.1f-1ubuntu2.18_ppc64el.ddeb
 edb27308c00ca793a992231bbaa9d16d 205524 debian-installer optional libssl1.1-udeb_1.1.1f-1ubuntu2.18_ppc64el.udeb
 4d8916c96013b60001f2037291ed0fbb 1363056 libs optional libssl1.1_1.1.1f-1ubuntu2.18_ppc64el.deb
 67ab8be73d1c6fee07750d0087c6ca47 566484 debug optional openssl-dbgsym_1.1.1f-1ubuntu2.18_ppc64el.ddeb
 9cbe2bb11c707f163a429cd9053b09a0 7526 utils optional openssl_1.1.1f-1ubuntu2.18_ppc64el.buildinfo
 e830c7fc12c3e68d4445c59028434447 621584 utils optional openssl_1.1.1f-1ubuntu2.18_ppc64el.deb
 6b2c66115ad799e817e6ee85f969b75f 27415 raw-translations - openssl_1.1.1f-1ubuntu2.18_ppc64el_translations.tar.gz
Original-Maintainer: Debian OpenSSL Team <pkg-openssl-devel@lists.alioth.debian.org>