Public bug reported:
Binary package hint: openssl
Debian has a new version to be merged.
openssl (0.9.8g-15) unstable; urgency=low
* Internal calls to didn't properly check for errors which
resulted in malformed DSA and ECDSA signatures being treated as
a good signature rather than as an error. (CVE-2008-5077)
* ipv6_from_asc() could write 1 byte longer than the buffer in case
the ipv6 address didn't have "::" part. (Closes: #506111)
-- Kurt Roeckx <k...@roeckx.be> Mon, 05 Jan 2009 21:14:31 +0100
** Affects: openssl (Ubuntu)
Importance: Undecided
Status: Confirmed
--
Please merge openssl_0.9.8g-15(main) from debian unstable
https://bugs.launchpad.net/bugs/314984
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
