7 | 7 |
example code is shipped).
|
8 | 8 |
- drop Priority: important.
|
9 | 9 |
- use signing-key.asc and a https links for downloads
|
|
10 |
* Use compat 11.
|
10 | 11 |
|
11 | 12 |
-- Sebastian Andrzej Siewior <sebastian@breakpoint.cc> Tue, 29 May 2018 22:04:14 +0200
|
12 | 13 |
|
|
565 | 566 |
ca-certificates has been split.
|
566 | 567 |
* Fix libdoc-manpgs-pod-spell.patch to only fix spalling errors
|
567 | 568 |
* Remove make-targets.patch. It prevented the test dir from being cleaned.
|
568 | |
* Update to a git snapshot of the OpenSSL_1_0_1-stable branch.
|
|
569 |
* Update to a git snapshot of the OpenSSL_1_0_1-stable branch.
|
569 | 570 |
- Fixes CVE-2013-6449 (Closes: #732754)
|
570 | 571 |
- Fixes CVE-2013-6450
|
571 | 572 |
- Drop patches ssltest_no_sslv2.patch cpuid.patch aesni-mac.patch
|
|
1110 | 1111 |
-- Christoph Martin <Christoph.Martin@Uni-Mainz.DE> Thu, 17 Jul 2008 09:53:01 +0200
|
1111 | 1112 |
|
1112 | 1113 |
openssl (0.9.8g-10.1) unstable; urgency=high
|
1113 | |
|
|
1114 |
|
1114 | 1115 |
* Non-maintainer upload by the Security team.
|
1115 | 1116 |
* Fix denial of service if the 'Server Key exchange message'
|
1116 | 1117 |
is omitted from a TLS handshake which could lead to a client
|
|
1119 | 1120 |
done in Debian.
|
1120 | 1121 |
* Fix double free in TLS server name extension which leads to a remote
|
1121 | 1122 |
denial of service (CVE-2008-0891; Closes: #483379).
|
1122 | |
|
|
1123 |
|
1123 | 1124 |
-- Nico Golde <nion@debian.org> Tue, 27 May 2008 11:13:44 +0200
|
1124 | 1125 |
|
1125 | 1126 |
openssl (0.9.8g-10) unstable; urgency=low
|
|
1304 | 1305 |
|
1305 | 1306 |
openssl (0.9.8e-4) unstable; urgency=low
|
1306 | 1307 |
|
1307 | |
* openssl should depend on libssl0.9.8 0.9.8e-1 since it
|
|
1308 |
* openssl should depend on libssl0.9.8 0.9.8e-1 since it
|
1308 | 1309 |
uses some of the defines that changed to functions.
|
1309 | |
Other things build against libssl or libcrypto shouldn't
|
|
1310 |
Other things build against libssl or libcrypto shouldn't
|
1310 | 1311 |
have this problem since they use the old headers.
|
1311 | 1312 |
(Closes: #414283)
|
1312 | 1313 |
|
|
1448 | 1449 |
fetchmail ftpd-ssl proftpd proftpd-ldap proftpd-mysql proftpd-pgsql
|
1449 | 1450 |
* libssl0.9.8.postinst: The check to see if something was installed
|
1450 | 1451 |
wasn't working.
|
1451 | |
* libssl0.9.8.postinst: Add workaround to find the name of the init
|
|
1452 |
* libssl0.9.8.postinst: Add workaround to find the name of the init
|
1452 | 1453 |
script for proftpd and dovecot.
|
1453 | 1454 |
* libssl0.9.8.postinst: Use invoke-rc.d when it's available.
|
1454 | 1455 |
* Change Standards-Version to 3.7.0:
|
|
1530 | 1531 |
had the location in the string wrong, powerpc had it missing.
|
1531 | 1532 |
* Add includes for stddef to get size_t in md2.h, md4.h, md5.h,
|
1532 | 1533 |
ripemd.h and sha.h. (Closes: #333101)
|
1533 | |
* Run make test for each of the versions we build, make it
|
|
1534 |
* Run make test for each of the versions we build, make it
|
1534 | 1535 |
not fail the build process if an error is found.
|
1535 | 1536 |
* Add build dependency on bc for the regression tests.
|
1536 | 1537 |
|
|
1571 | 1572 |
* add swedish debconf template (closes: #330554)
|
1572 | 1573 |
|
1573 | 1574 |
Kurt Roeckx:
|
1574 | |
* Also add noexecstack option for amd64, since it now has an
|
|
1575 |
* Also add noexecstack option for amd64, since it now has an
|
1575 | 1576 |
executable stack with the assembler fixes for amd64.
|
1576 | 1577 |
|
1577 | 1578 |
-- Christoph Martin <christoph.martin@uni-mainz.de> Mon, 17 Oct 2005 17:01:06 +0200
|
|
1653 | 1654 |
openssl (0.9.7e-3) unstable; urgency=high
|
1654 | 1655 |
|
1655 | 1656 |
* really fix der_chop. The fix from -1 was not really included (closes:
|
1656 | |
#281212)
|
|
1657 |
#281212)
|
1657 | 1658 |
* still fixes security problem CAN-2004-0975 etc.
|
1658 | 1659 |
- tempfile raise condition in der_chop
|
1659 | |
- Avoid a race condition when CRLs are checked in a multi threaded
|
|
1660 |
- Avoid a race condition when CRLs are checked in a multi threaded
|
1660 | 1661 |
environment.
|
1661 | 1662 |
|
1662 | 1663 |
-- Christoph Martin <christoph.martin@uni-mainz.de> Thu, 16 Dec 2004 18:41:29 +0100
|
|
1666 | 1667 |
* fix perl path in der_chop and c_rehash (closes: #281212)
|
1667 | 1668 |
* still fixes security problem CAN-2004-0975 etc.
|
1668 | 1669 |
- tempfile raise condition in der_chop
|
1669 | |
- Avoid a race condition when CRLs are checked in a multi threaded
|
|
1670 |
- Avoid a race condition when CRLs are checked in a multi threaded
|
1670 | 1671 |
environment.
|
1671 | 1672 |
|
1672 | 1673 |
-- Christoph Martin <christoph.martin@uni-mainz.de> Sun, 14 Nov 2004 20:16:21 +0100
|
|
1674 | 1675 |
openssl (0.9.7e-1) unstable; urgency=high
|
1675 | 1676 |
|
1676 | 1677 |
* SECURITY UPDATE: fix insecure temporary file handling
|
1677 | |
* apps/der_chop:
|
|
1678 |
* apps/der_chop:
|
1678 | 1679 |
- replaced $$-style creation of temporary files with
|
1679 | 1680 |
File::Temp::tempfile()
|
1680 | 1681 |
- removed unused temporary file name in do_certificate()
|
|
1682 | 1683 |
CAN-2004-0975 (closes: #278260)
|
1683 | 1684 |
* fix ASN1_STRING_to_UTF8 with UTF8 (closes: #260357)
|
1684 | 1685 |
* New upstream release with security fixes
|
1685 | |
- Avoid a race condition when CRLs are checked in a multi threaded
|
|
1686 |
- Avoid a race condition when CRLs are checked in a multi threaded
|
1686 | 1687 |
environment.
|
1687 | 1688 |
- Various fixes to s3_pkt.c so alerts are sent properly.
|
1688 | 1689 |
- Reduce the chances of duplicate issuer name and serial numbers (in
|
1689 | 1690 |
violation of RFC3280) using the OpenSSL certificate creation
|
1690 | |
utilities.
|
|
1691 |
utilities.
|
1691 | 1692 |
* depends openssl on perl-base instead of perl (closes: #280225)
|
1692 | 1693 |
* support powerpc64 in Configure (closes: #275224)
|
1693 | 1694 |
* include cs translation (closes: #273517)
|
|
1761 | 1762 |
openssl (0.9.7c-3) unstable; urgency=low
|
1762 | 1763 |
|
1763 | 1764 |
* fix POSIX conformance for head in libssl0.9.7.postinst (closes:
|
1764 | |
#214700)
|
|
1765 |
#214700)
|
1765 | 1766 |
|
1766 | 1767 |
-- Christoph Martin <christoph.martin@uni-mainz.de> Wed, 8 Oct 2003 14:02:38 +0200
|
1767 | 1768 |
|
|
1851 | 1852 |
openssl (0.9.7-3) unstable; urgency=low
|
1852 | 1853 |
|
1853 | 1854 |
* enable build of ultrasparc code on non ultrasparc machines (closes:
|
1854 | |
#177024)
|
|
1855 |
#177024)
|
1855 | 1856 |
|
1856 | 1857 |
-- Christoph Martin <christoph.martin@uni-mainz.de> Fri, 17 Jan 2003 08:22:13 +0100
|
1857 | 1858 |
|
1858 | 1859 |
openssl (0.9.7-2) unstable; urgency=low
|
1859 | 1860 |
|
1860 | |
* include changes between 0.9.6g-9 and -10
|
|
1861 |
* include changes between 0.9.6g-9 and -10
|
1861 | 1862 |
* fix problem in build-process on i386 with libc6 version number
|
1862 | 1863 |
|
1863 | 1864 |
-- Christoph Martin <christoph.martin@uni-mainz.de> Mon, 13 Jan 2003 14:26:56 +0100
|
|
1959 | 1960 |
* new upstream (minor) version
|
1960 | 1961 |
* includes Configure lines for debian-*bsd-* (closes: #130413)
|
1961 | 1962 |
* fix wrong prototype for BN_pseudo_rand_range in BN_rand(3ssl) (closes:
|
1962 | |
#144586)
|
|
1963 |
#144586)
|
1963 | 1964 |
* fix typos in package description (closes: #141469)
|
1964 | 1965 |
* fix typo in SSL_CTX_set_cert_store manpage (closes: #135297)
|
1965 | 1966 |
|
|
1975 | 1976 |
|
1976 | 1977 |
* new upstream version with a lot of bugfixes
|
1977 | 1978 |
* remove directory /usr/include/openssl from openssl package (closes:
|
1978 | |
bug #121226)
|
|
1979 |
bug #121226)
|
1979 | 1980 |
* remove selfdepends from libssl0.9.6
|
1980 | 1981 |
* link openssl binary shared again
|
1981 | 1982 |
|
|
1990 | 1991 |
|
1991 | 1992 |
openssl (0.9.6b-3) unstable; urgency=low
|
1992 | 1993 |
|
1993 | |
* disable idea, mdc2 and rc5 because they are not free (closes: #65368)
|
|
1994 |
* disable idea, mdc2 and rc5 because they are not free (closes: #65368)
|
1994 | 1995 |
* ready to be moved from nonus to main
|
1995 | 1996 |
|
1996 | 1997 |
-- Christoph Martin <christoph.martin@uni-mainz.de> Wed, 21 Nov 2001 17:51:41 +0100
|
|
2004 | 2005 |
|
2005 | 2006 |
openssl (0.9.6b-1) unstable; urgency=medium
|
2006 | 2007 |
|
2007 | |
* new upstream fixes some security issues (closes: #105835, #100146)
|
|
2008 |
* new upstream fixes some security issues (closes: #105835, #100146)
|
2008 | 2009 |
* added support for s390 (closes: #105681)
|
2009 | 2010 |
* added support for sh (closes: #100003)
|
2010 | 2011 |
* change priority of libssl096 to standard as ssh depends on it (closes:
|
2011 | |
#105440)
|
|
2012 |
#105440)
|
2012 | 2013 |
* don't optimize for i486 to support i386. (closes: #104127, #82194)
|
2013 | 2014 |
|
2014 | 2015 |
-- Christoph Martin <christoph.martin@uni-mainz.de> Fri, 20 Jul 2001 15:52:42 +0200
|
|
2024 | 2025 |
|
2025 | 2026 |
* change Architecture of ssleay from any to all (closes: #92913)
|
2026 | 2027 |
* depend libssl-dev on the exact same version of libssl0.9.6 (closes:
|
2027 | |
#88939)
|
|
2028 |
#88939)
|
2028 | 2029 |
* remove lib{crypto,ssl}.a from openssl (closes: #93666)
|
2029 | 2030 |
* rebuild with newer gcc to fix atexit problem (closes: #94036)
|
2030 | 2031 |
|
|
2070 | 2071 |
|
2071 | 2072 |
openssl (0.9.5a-4) unstable; urgency=low
|
2072 | 2073 |
|
2073 | |
* include edg_rand_bytes patch from and for apache-ssl
|
|
2074 |
* include edg_rand_bytes patch from and for apache-ssl
|
2074 | 2075 |
|
2075 | 2076 |
-- Christoph Martin <christoph.martin@uni-mainz.de> Sat, 23 Sep 2000 16:48:06 +0200
|
2076 | 2077 |
|
|
2085 | 2086 |
|
2086 | 2087 |
openssl (0.9.5a-2) unstable; urgency=low
|
2087 | 2088 |
|
2088 | |
* try to fix the sharedlib problem. change soname of library
|
2089 | |
(closes: Bug#4622, #66102, #66538, #66123)
|
|
2089 |
* try to fix the sharedlib problem. change soname of library
|
|
2090 |
(closes: Bug#4622, #66102, #66538, #66123)
|
2090 | 2091 |
|
2091 | 2092 |
-- Christoph Martin <christoph.martin@uni-mainz.de> Wed, 12 Jul 2000 03:26:30 +0200
|
2092 | 2093 |
|
|
2105 | 2106 |
openssl (0.9.4-5) frozen unstable; urgency=medium
|
2106 | 2107 |
|
2107 | 2108 |
* cleanup of move of doc directories to /usr/share/doc (closes:
|
2108 | |
Bug#56430)
|
|
2109 |
Bug#56430)
|
2109 | 2110 |
* lintian issues (closes: Bug#49358)
|
2110 | 2111 |
* move demos from openssl to libssl09-dev (closes: Bug#59201)
|
2111 | 2112 |
* move to debhelpers
|
|
2158 | 2159 |
* added convenience package ssleay to help upgrade to openssl (Bug
|
2159 | 2160 |
#37185, #37623, #36326)
|
2160 | 2161 |
* added some missing dependencies from libssl09 (Bug #36681, #35867,
|
2161 | |
#36326)
|
|
2162 |
#36326)
|
2162 | 2163 |
* move lib*.so to libssl09-dev (Bug #36761)
|
2163 | 2164 |
* corrected version numbers of library files
|
2164 | 2165 |
* introduce link from /usr/lib/ssl to /etc/ssl (Bug #36710)
|