Format: 1.8
Date: Mon, 17 Apr 2023 15:11:39 -0300
Source: openssl
Binary: libcrypto1.1-udeb libssl-dev libssl1.1 libssl1.1-udeb openssl
Architecture: riscv64 riscv64_translations
Version: 1.1.1f-1ubuntu2.18
Distribution: focal
Urgency: medium
Maintainer: Launchpad Build Daemon <buildd@riscv64-qemu-lgw01-025.buildd>
Changed-By: Camila Camargo de Matos <camila.camargodematos@canonical.com>
Description:
 libcrypto1.1-udeb - Secure Sockets Layer toolkit - libcrypto udeb (udeb)
 libssl-dev - Secure Sockets Layer toolkit - development files
 libssl1.1  - Secure Sockets Layer toolkit - shared libraries
 libssl1.1-udeb - ssl shared library - udeb (udeb)
 openssl    - Secure Sockets Layer toolkit - cryptographic utility
Changes:
 openssl (1.1.1f-1ubuntu2.18) focal-security; urgency=medium
 .
   * SECURITY UPDATE: excessive resource use when verifying policy constraints
     - debian/patches/CVE-2023-0464-1.patch: limit the number of nodes created
       in a policy tree (the default limit is set to 1000 nodes).
     - debian/patches/CVE-2023-0464-2.patch: add test cases for the policy
       resource overuse.
     - debian/patches/CVE-2023-0464-3.patch: disable the policy tree
       exponential growth test conditionally.
     - CVE-2023-0464
   * SECURITY UPDATE: invalid certificate policies ignored in leaf certificates
     - debian/patches/CVE-2023-0465-1.patch: ensure that EXFLAG_INVALID_POLICY
       is checked even in leaf certs.
     - debian/patches/CVE-2023-0465-2.patch: generate some certificates with
       the certificatePolicies extension.
     - debian/patches/CVE-2023-0465-3.patch: add a certificate policies test.
     - CVE-2023-0466
   * SECURITY UPDATE: certificate policy check in X509_VERIFY_PARAM_add0_policy
     not enabled as documented
     - debian/patches/CVE-2023-0466.patch: fix documentation of
       X509_VERIFY_PARAM_add0_policy().
     - CVE-2023-0466
Checksums-Sha1:
 256a27e04516969bb23dfa2d35e20cd6569dd0e2 773908 libcrypto1.1-udeb_1.1.1f-1ubuntu2.18_riscv64.udeb
 e7a89deb65157a93d81b0b8e5856d210c0c544c6 2529172 libssl-dev_1.1.1f-1ubuntu2.18_riscv64.deb
 861a7ff7060c3690f1f4eb5bdd237d6228c05329 2787384 libssl1.1-dbgsym_1.1.1f-1ubuntu2.18_riscv64.ddeb
 0ba91a9c5eb71463d2020774a430a7cecca1265e 160964 libssl1.1-udeb_1.1.1f-1ubuntu2.18_riscv64.udeb
 5017812c3801dfa93eb9c8a8d4f2089c331ad74b 970672 libssl1.1_1.1.1f-1ubuntu2.18_riscv64.deb
 8d49f7a36a24af767e57e2d94ad2b8cc6126d8c7 523640 openssl-dbgsym_1.1.1f-1ubuntu2.18_riscv64.ddeb
 a0c9b143dafb94273e8a66f0ce99885f64e90fdc 7248 openssl_1.1.1f-1ubuntu2.18_riscv64.buildinfo
 4cddb33ef339c4f52393f232c5a25bca5e33eb71 595192 openssl_1.1.1f-1ubuntu2.18_riscv64.deb
 a65cc10f8bc801ff79f87f77f908eef9c8eaed20 27735 openssl_1.1.1f-1ubuntu2.18_riscv64_translations.tar.gz
Checksums-Sha256:
 66b54deb04cabb1819eebbc3879c6d7a8691bf46c6cb4074ee3686c87b0ec38c 773908 libcrypto1.1-udeb_1.1.1f-1ubuntu2.18_riscv64.udeb
 171bc88270f035dbb4cd6dc5479cc97e990964553252c3a4cc2174f3de3d8db0 2529172 libssl-dev_1.1.1f-1ubuntu2.18_riscv64.deb
 d80abf258a85d78354ed9f3aebdd0783d6b7564904bec900451bc2833dd74cf7 2787384 libssl1.1-dbgsym_1.1.1f-1ubuntu2.18_riscv64.ddeb
 692838e73016c251a2e93530fe1f53e5a0229d011a970e47e07a6ccb12a07d6a 160964 libssl1.1-udeb_1.1.1f-1ubuntu2.18_riscv64.udeb
 8c89d0cc8696a7f8a59e881d3b479904fd8fb141b25e81e43aac164864aa5db2 970672 libssl1.1_1.1.1f-1ubuntu2.18_riscv64.deb
 5acbf60294e89c2e64d3f5794462b0685b94c273b3902d99d5f9fa107e52c9a1 523640 openssl-dbgsym_1.1.1f-1ubuntu2.18_riscv64.ddeb
 4aaaae1d98561b13a6f6163c41bbcee7caedf8af746ab65affc452b14bb17f18 7248 openssl_1.1.1f-1ubuntu2.18_riscv64.buildinfo
 ba82fbceac7cf5c6b69667c9f8ea3c26d705a0138f94123e766f154b5da1761d 595192 openssl_1.1.1f-1ubuntu2.18_riscv64.deb
 393bd7e2337cf1c2992035a2c724840c3ac1a9ffe03df749dfa94a9c1b92e39a 27735 openssl_1.1.1f-1ubuntu2.18_riscv64_translations.tar.gz
Files:
 fc24ca9cd644b4d40bff5216f24adc68 773908 debian-installer optional libcrypto1.1-udeb_1.1.1f-1ubuntu2.18_riscv64.udeb
 2078a5a4be2ecbe1645f1ec64ef054ac 2529172 libdevel optional libssl-dev_1.1.1f-1ubuntu2.18_riscv64.deb
 4c020c9053810a3cd0f1ba415b2e1b36 2787384 debug optional libssl1.1-dbgsym_1.1.1f-1ubuntu2.18_riscv64.ddeb
 dcb00093b3a5d8b12c772fe92504a532 160964 debian-installer optional libssl1.1-udeb_1.1.1f-1ubuntu2.18_riscv64.udeb
 23f5a5b434fa85451e3bc210d80fd0da 970672 libs optional libssl1.1_1.1.1f-1ubuntu2.18_riscv64.deb
 3eecedfd939dda9a6958912277a90765 523640 debug optional openssl-dbgsym_1.1.1f-1ubuntu2.18_riscv64.ddeb
 5d62421cb5696035792e76d2c89f3764 7248 utils optional openssl_1.1.1f-1ubuntu2.18_riscv64.buildinfo
 1e8c9c06a5df2251a9ada7e52892f9a9 595192 utils optional openssl_1.1.1f-1ubuntu2.18_riscv64.deb
 94e581939f240067ced10921dbcb4827 27735 raw-translations - openssl_1.1.1f-1ubuntu2.18_riscv64_translations.tar.gz
Original-Maintainer: Debian OpenSSL Team <pkg-openssl-devel@lists.alioth.debian.org>