** Merge proposal linked:
https://code.launchpad.net/~adrien/ubuntu/+source/openssl/+git/openssl/+merge/480581
** Merge proposal linked:
https://code.launchpad.net/~adrien/ubuntu/+source/openssl/+git/openssl/+merge/480582
--
You received this bug notification because you are a member of
** Merge proposal linked:
https://code.launchpad.net/~adrien/ubuntu/+source/openssl/+git/openssl/+merge/476331
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/2073991
Title:
Add FIPS defines to No
This bug was fixed in the package openssl - 3.3.1-2ubuntu2
---
openssl (3.3.1-2ubuntu2) oracular; urgency=medium
* SECURITY UPDATE: Possible denial of service in X.509 name checks
- debian/patches/CVE-2024-6119.patch: avoid type errors in EAI-related
name check logic in cr
Sponsored upload to oracular.
** Changed in: openssl (Ubuntu Oracular)
Status: Won't Fix => Fix Committed
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/2073991
Title:
Add FIPS defines to Nob
** Merge proposal linked:
https://code.launchpad.net/~adrien/ubuntu/+source/openssl/+git/openssl/+merge/473083
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/2073991
Title:
Add FIPS defines to No
Alright, 0046-signature-Clamp-PSS-salt-len-to-MD-len.patch has been
merged upstream for openssl 3.1:
https://github.com/openssl/openssl/commit/6c73ca4a2f4ea71f4a880670624e7b2fdb6f32da
No concern for OSSL_PKEY_RSA_PSS_SALT_LEN_AUTO_DIGEST_MAX and
RSA_PSS_SALTLEN_AUTO_DIGEST_MAX in openssl >= 3.1 an
I've been preparing a build that includes these changes.
These are fine:
UBUNTU_OSSL_PROV_FIPS_PARAM_UNAPPROVED_USAGE
UBUNTU_OSSL_SELF_TEST_DESC_PCT_DH
These don't seem fine:
OSSL_PKEY_RSA_PSS_SALT_LEN_AUTO_DIGEST_MAX
RSA_PSS_SALTLEN_AUTO_DIGEST_MAX
Defining them would change the behavior of t
Updating target. Would be nice to have in Noble but no strong need at
the moment. Target is 25.04 which I can't refer to at the moment
unfortunately since the release is not create in launchpad yet.
** Changed in: openssl (Ubuntu Noble)
Importance: Undecided => Low
** Changed in: openssl (Ubun
Hi Eric and thanks for the report.
The SRU process necessarily takes time and openssl is a library that is
installed everywhere and is therefore more difficult to get through the SRU
process.
Time-wise (including due to my own availability), I don't think there will be a
patched openssl version
** Changed in: openssl (Ubuntu)
Milestone: None => ubuntu-24.10
** Also affects: openssl (Ubuntu Oracular)
Importance: Undecided
Status: New
** Also affects: openssl (Ubuntu Noble)
Importance: Undecided
Status: New
** Changed in: openssl (Ubuntu Noble)
Milestone: None
10 matches
Mail list logo
