Univention Bugzilla – Bug 53861
openssl1.0: Multiple issues (4.4)
Last modified: 2021-10-01 14:28:38 CEST
New Debian openssl1.0 1.0.2u-1~deb9u6 fixes: This update addresses the following issue(s): * * Read buffer overruns processing ASN.1 strings (CVE-2021-3712)
--- mirror/ftp/4.4/unmaintained/4.4-8/source/openssl1.0_1.0.2u-1~deb9u4.dsc +++ apt/ucs_4.4-0-errata4.4-8/source/openssl1.0_1.0.2u-1~deb9u6.dsc @@ -1,3 +1,17 @@ +1.0.2u-1~deb9u6 [Wed, 29 Sep 2021 22:03:02 +0200] Thorsten Alteholz <debian@alteholz.de>: + + * Non-maintainer upload by the LTS Team. + * CVE-2021-3712 + Read buffer overruns processing ASN.1 strings + +1.0.2u-1~deb9u5 [Wed, 15 Sep 2021 17:11:02 +0200] Sylvain Beucler <beuc@debian.org>: + + * Non-maintainer upload by the LTS Security Team. + * Fix verification error with alternate chains. + Addresses issue with Let's Encrypt certificates starting 2021-10-01. + https://lists.debian.org/debian-lts/2021/09/msg00008.html + https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=961889 + 1.0.2u-1~deb9u4 [Thu, 18 Feb 2021 18:00:31 +0000] Chris Lamb <lamby@debian.org>: * Non-maintainer upload by the LTS team. <http://piuparts.knut.univention.de/4.4-8/#5714330615742200600>
OK: yaml OK: announce_errata OK: patch OK: piuparts [4.4-8] dbd6b5f6b5 Bug #53861: openssl1.0 1.0.2u-1~deb9u6 doc/errata/staging/openssl1.0.yaml | 12 ++++++++++++ 1 file changed, 12 insertions(+)
<https://errata.software-univention.de/#/?erratum=4.4x1060>