Bugs fixes in "openssl"
| Origin | Bug number | Title | Date fixed |
|---|---|---|---|
| Launchpad | 1828215 | openssl ca -spkac output regressed | 2019-06-14 |
| CVE | CVE-2019-1543 | ChaCha20-Poly1305 is an AEAD cipher, and requires a unique nonce input for every encryption operation. RFC 7539 specifies that the nonce value (IV) s | 2019-06-12 |
| Launchpad | 1832522 | openssl maintainer scripts do not trigger services restart | 2019-06-12 |
| Launchpad | 1828215 | openssl ca -spkac output regressed | 2019-06-12 |
| CVE | CVE-2019-1559 | 0-byte record padding oracle | 2019-02-27 |
| CVE | CVE-2019-1559 | 0-byte record padding oracle | 2019-02-27 |
| CVE | CVE-2018-0734 | The OpenSSL DSA signature algorithm has been shown to be vulnerable to a timing side channel attack. An attacker could use variations in the signing | 2018-12-06 |
| CVE | CVE-2018-5407 | Simultaneous Multi-threading (SMT) in processors can enable local users to exploit software vulnerable to timing attacks via a side-channel timing at | 2018-12-06 |
| CVE | CVE-2018-0734 | The OpenSSL DSA signature algorithm has been shown to be vulnerable to a timing side channel attack. An attacker could use variations in the signing | 2018-12-06 |
| CVE | CVE-2018-5407 | Simultaneous Multi-threading (SMT) in processors can enable local users to exploit software vulnerable to timing attacks via a side-channel timing at | 2018-12-06 |
| CVE | CVE-2018-0734 | The OpenSSL DSA signature algorithm has been shown to be vulnerable to a timing side channel attack. An attacker could use variations in the signing | 2018-12-06 |
| CVE | CVE-2018-5407 | Simultaneous Multi-threading (SMT) in processors can enable local users to exploit software vulnerable to timing attacks via a side-channel timing at | 2018-12-06 |
| CVE | CVE-2018-0734 | The OpenSSL DSA signature algorithm has been shown to be vulnerable to a timing side channel attack. An attacker could use variations in the signing | 2018-12-06 |
| CVE | CVE-2018-5407 | Simultaneous Multi-threading (SMT) in processors can enable local users to exploit software vulnerable to timing attacks via a side-channel timing at | 2018-12-06 |
| CVE | CVE-2018-0734 | The OpenSSL DSA signature algorithm has been shown to be vulnerable to a timing side channel attack. An attacker could use variations in the signing | 2018-12-06 |
| CVE | CVE-2018-5407 | Simultaneous Multi-threading (SMT) in processors can enable local users to exploit software vulnerable to timing attacks via a side-channel timing at | 2018-12-06 |
| CVE | CVE-2018-0734 | The OpenSSL DSA signature algorithm has been shown to be vulnerable to a timing side channel attack. An attacker could use variations in the signing | 2018-12-06 |
| CVE | CVE-2018-5407 | Simultaneous Multi-threading (SMT) in processors can enable local users to exploit software vulnerable to timing attacks via a side-channel timing at | 2018-12-06 |
| CVE | CVE-2018-0732 | During key agreement in a TLS handshake using a DH(E) based ciphersuite a malicious server can send a very large prime value to the client. This will | 2018-06-26 |
| CVE | CVE-2018-0495 | Libgcrypt before 1.7.10 and 1.8.x before 1.8.3 allows a memory-cache side-channel attack on ECDSA signatures that can be mitigated through the use of | 2018-06-26 |
About
-
Send Feedback to @ubuntu_updates
