[Bug 240364] [NEW] openssl-blacklist sync request

Jamie Strandboge Mon, 16 Jun 2008 04:25:50 -0700

Public bug reported:

Binary package hint: openssl-blacklist


Please sync openssl-blacklist 0.4 from Debian sid to intrepid main.

There are no Ubuntu specific changes.  openssl-blacklist 0.2 was
imported into Debian from 0.1-0ubuntu0.8.04.4, and development continued
from there. The following changes took place in Debian:

openssl-blacklist (0.4) unstable; urgency=low

  * allow checking of certificate requests
  * only check moduli with an exponent of 65537 (the default on Debian/Ubuntu)
  * update gen_certs.sh for when ~/.rnd does not exist when openssl is run
    which can happen with openssl 0.9.8g and higher
  * update gen_certs.sh to use '0' (in case of PID randomization)
  * added more examples
  * only prompt once for password (Closes: #483500)
  * properly cache database reads when bits are same
  * added '-m' and '-b' arguments. This is helpful for applications calling
    openssl-vulnkey when the modulus and bits are known, such as openvpn.
  * man page updates
  * added test.sh
  * added blacklists for when ~/.rnd does not exist when openssl is run
    (LP: #232104)
  * added 512 bit and partial 4096 blacklists (need le64) (LP: #231014)
  * reorganized source databases, and ship the new gen_certs.sh format
  * debian/rules: updated to use new blacklist format and organization
  * create openssl-blacklist-extra package (but don't ship 4096 yet)

 -- Jamie Strandboge <[EMAIL PROTECTED]>  Tue, 10 Jun 2008 09:09:48 -0400
openssl-blacklist (0.3.2) unstable; urgency=low

  * debian/{rules,dirs,openssl-blacklist.install}: move openssl-vulnkey to
    /usr/bin (Closes: #482435).
  * examples/gen_certs.sh:
    - test for fixed libssl versions (Closes: #483310).
    - correctly skip pre-existing PEM files, thanks to Michel Meyers
      (Closes: #483542).
    - skip invalid pid 32768.
  * openssl-vulnkey: allow reading from stding, based on patch from
    Daniel Kahn Gillmor (Closes: #482427).
  * debian/control: swap maintainer so Ubuntu syncs do not get confused.
  
 -- Kees Cook <[EMAIL PROTECTED]>  Thu, 29 May 2008 15:19:16 -0700 
    
openssl-blacklist (0.3.1) unstable; urgency=low
    
  * openssl-vulnkey: fix typo in manpage.
  * debian/control: add Vcs details, adjust uploaders line.
  * debian/rules: switch to using dh_installexamples.

 -- Kees Cook <[EMAIL PROTECTED]>  Wed, 28 May 2008 13:25:46 -0700
  
openssl-blacklist (0.3) unstable; urgency=low
  
  * Initial Debian release (keeping changelog for clarity), Closes: #482047.

The above are already in -security fro dapper-hardy. This brings
intrepid up to date without any Ubuntu specific changes.

** Affects: openssl-blacklist (Ubuntu)
     Importance: Undecided
         Status: New

-- 
openssl-blacklist sync request
https://bugs.launchpad.net/bugs/240364
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 240364] [NEW] openssl-blacklist sync request

Reply via email to