Bugs fixes in "openssl098"
| Origin | Bug number | Title | Date fixed |
|---|---|---|---|
| CVE | CVE-2012-0884 | The implementation of Cryptographic Message Syntax (CMS) and PKCS #7 in OpenSSL before 0.9.8u and 1.x before 1.0.0h does not properly restrict certain | 2014-07-02 |
| CVE | CVE-2012-2333 | Integer underflow in OpenSSL before 0.9.8x, 1.0.0 before 1.0.0j, and 1.0.1 before 1.0.1c, when TLS 1.1, TLS 1.2, or DTLS is used with CBC encryption, | 2014-07-02 |
| CVE | CVE-2013-0166 | OpenSSL before 0.9.8y, 1.0.0 before 1.0.0k, and 1.0.1 before 1.0.1d does not properly perform signature verification for OCSP responses, which allows | 2014-07-02 |
| CVE | CVE-2013-0169 | The TLS protocol 1.1 and 1.2 and the DTLS protocol 1.0 and 1.2, as used in OpenSSL, OpenJDK, PolarSSL, and other products, do not properly consider t | 2014-07-02 |
| CVE | CVE-2014-0195 | DTLS invalid fragment vulnerability | 2014-07-02 |
| CVE | CVE-2014-0221 | DTLS recursion flaw | 2014-07-02 |
| CVE | CVE-2014-0224 | SSL/TLS MITM vulnerability | 2014-07-02 |
| Launchpad | 1331452 | Please backport current CVEs for Precise LTS openssl098 | 2014-07-02 |
| CVE | CVE-2012-0884 | The implementation of Cryptographic Message Syntax (CMS) and PKCS #7 in OpenSSL before 0.9.8u and 1.x before 1.0.0h does not properly restrict certain | 2014-07-02 |
| CVE | CVE-2012-2333 | Integer underflow in OpenSSL before 0.9.8x, 1.0.0 before 1.0.0j, and 1.0.1 before 1.0.1c, when TLS 1.1, TLS 1.2, or DTLS is used with CBC encryption, | 2014-07-02 |
| CVE | CVE-2013-0166 | OpenSSL before 0.9.8y, 1.0.0 before 1.0.0k, and 1.0.1 before 1.0.1d does not properly perform signature verification for OCSP responses, which allows | 2014-07-02 |
| CVE | CVE-2013-0169 | The TLS protocol 1.1 and 1.2 and the DTLS protocol 1.0 and 1.2, as used in OpenSSL, OpenJDK, PolarSSL, and other products, do not properly consider t | 2014-07-02 |
| CVE | CVE-2014-0195 | DTLS invalid fragment vulnerability | 2014-07-02 |
| CVE | CVE-2014-0221 | DTLS recursion flaw | 2014-07-02 |
| CVE | CVE-2014-0224 | SSL/TLS MITM vulnerability | 2014-07-02 |
| Launchpad | 1331452 | Please backport current CVEs for Precise LTS openssl098 | 2014-07-02 |
| CVE | CVE-2012-0884 | The implementation of Cryptographic Message Syntax (CMS) and PKCS #7 in OpenSSL before 0.9.8u and 1.x before 1.0.0h does not properly restrict certain | 2014-07-02 |
| CVE | CVE-2012-2333 | Integer underflow in OpenSSL before 0.9.8x, 1.0.0 before 1.0.0j, and 1.0.1 before 1.0.1c, when TLS 1.1, TLS 1.2, or DTLS is used with CBC encryption, | 2014-07-02 |
| CVE | CVE-2013-0166 | OpenSSL before 0.9.8y, 1.0.0 before 1.0.0k, and 1.0.1 before 1.0.1d does not properly perform signature verification for OCSP responses, which allows | 2014-07-02 |
| CVE | CVE-2013-0169 | The TLS protocol 1.1 and 1.2 and the DTLS protocol 1.0 and 1.2, as used in OpenSSL, OpenJDK, PolarSSL, and other products, do not properly consider t | 2014-07-02 |
About
-
Send Feedback to @ubuntu_updates
