Univention Bugzilla – Bug 53842
openssl: Multiple issues (4.4)
Last modified: 2021-09-29 16:34:50 CEST
New Debian openssl 1.1.0l-1~deb9u4 fixes: This update addresses the following issue: * Read buffer overruns processing ASN.1 strings (CVE-2021-3712)
--- mirror/ftp/4.4/unmaintained/4.4-8/source/openssl_1.1.0l-1~deb9u3.dsc +++ apt/ucs_4.4-0-errata4.4-8/source/openssl_1.1.0l-1~deb9u4.dsc @@ -1,3 +1,9 @@ +1.1.0l-1~deb9u4 [Sun, 26 Sep 2021 19:03:02 +0200] Thorsten Alteholz <debian@alteholz.de>: + + * Non-maintainer upload by the LTS Team. + * CVE-2021-3712 + Read buffer overruns processing ASN.1 strings + 1.1.0l-1~deb9u3 [Thu, 18 Feb 2021 12:01:14 +0000] Chris Lamb <lamby@debian.org>: * CVE-2021-23840: Prevent an issue where "Digital EnVeloPe" EVP-related calls <http://piuparts.knut.univention.de/4.4-8/#6118916832765858288>
OK: yaml OK: announce_errata OK: patch OK: piuparts [4.4-8] 8dcc424f1a Bug #53842: openssl 1.1.0l-1~deb9u4 doc/errata/staging/openssl.yaml | 12 ++++++++++++ 1 file changed, 12 insertions(+)
<https://errata.software-univention.de/#/?erratum=4.4x1055>