Skip to content

Changelog openssl (1.1.1-1ubuntu2.1~18.04.21)


openssl (1.1.1-1ubuntu2.1~18.04.21) bionic-security; urgency=medium

   * SECURITY UPDATE: Timing Oracle in RSA Decryption
     - debian/patches/CVE-2022-4304.patch: fix timing oracle in
       crypto/bn/bn_blind.c, crypto/bn/bn_err.c, crypto/bn/bn_lcl.h,
       crypto/bn/rsa_sup_mul.c, crypto/err/openssl.txt,
       crypto/rsa/rsa_ossl.c, include/openssl/bnerr.h,
       crypto/include/internal/bn_int.h, crypto/bn/
     - CVE-2022-4304
   * SECURITY UPDATE: Double free after calling PEM_read_bio_ex
     - debian/patches/CVE-2022-4450-1.patch: avoid dangling ptrs in header
       and data params for PEM_read_bio_ex in crypto/pem/pem_lib.c.
     - debian/patches/CVE-2022-4450-2.patch: add a test in test/pemtest.c.
     - CVE-2022-4450
   * SECURITY UPDATE: Use-after-free following BIO_new_NDEF
     - debian/patches/CVE-2023-0215-1.patch: fix a UAF resulting from a bug
       in BIO_new_NDEF in crypto/asn1/bio_ndef.c.
     - debian/patches/CVE-2023-0215-2.patch: check CMS failure during BIO
       setup with -stream is handled correctly in
       test/recipes/80-test_cms.t, test/smime-certs/badrsa.pem.
     - CVE-2023-0215
   * SECURITY UPDATE: X.400 address type confusion in X.509 GeneralName
     - debian/patches/CVE-2023-0286.patch: fix GENERAL_NAME_cmp for
       x400Address in crypto/x509/v3_genn.c, include/openssl/x509v3.h,
     - CVE-2023-0286


openssl (1.1.1-1ubuntu2.1~18.04.20) bionic-security; urgency=medium

   * SECURITY UPDATE: AES OCB fails to encrypt some bytes
     - debian/patches/CVE-2022-2097-1.patch: fix AES OCB encrypt/decrypt for
       x86 AES-NI in crypto/aes/asm/
     - debian/patches/CVE-2022-2097-2.patch: add AES OCB test vectors in
     - CVE-2022-2097

openssl (1.1.1-1ubuntu2.1~18.04.19) bionic-security; urgency=medium

   [ Simon Chopin ]
   * d/p/lp1978093/*: renew some expiring test certificates (LP: #1978093)
   [ Marc Deslauriers ]
   * SECURITY UPDATE: c_rehash script allows command injection
     - debian/patches/CVE-2022-1292.patch: switch to upstream patch, and
       apply it before c_rehash-compat.patch.
     - debian/patches/CVE-2022-2068.patch: fix file operations in
     - debian/patches/c_rehash-compat.patch: updated patch to apply after
       the security updates.
     - CVE-2022-2068

openssl (1.1.1-1ubuntu2.1~18.04.18) bionic; urgency=medium

   * Backport pr9780:
     - d/p/pr9780_0001-Don-t-send-a-status_request-extension-in-a-Certifica.patch
     - d/p/pr9780_0002-Teach-TLSProxy-how-to-parse-CertificateRequest-messa.patch
     (LP: #1940141)

openssl (1.1.1-1ubuntu2.1~18.04.17) bionic-security; urgency=medium

   * SECURITY UPDATE: c_rehash script allows command injection
     - debian/patches/CVE-2022-1292.patch: do not use shell to invoke
       openssl in tools/
     - CVE-2022-1292
   * NOTE: This package does _not_ contain the changes from
     1.1.1-1ubuntu2.1~18.04.16 in bionic-proposed.

openssl (1.1.1-1ubuntu2.1~18.04.15) bionic-security; urgency=medium

   * SECURITY UPDATE: Infinite loop in BN_mod_sqrt()
     - debian/patches/CVE-2022-0778-1.patch: fix infinite loop in
     - debian/patches/CVE-2022-0778-2.patch: add documentation of
       BN_mod_sqrt() in doc/man3/BN_add.pod.
     - debian/patches/CVE-2022-0778-3.patch: add a negative testcase for
       BN_mod_sqrt in test/bntest.c, test/recipes/10-test_bn_data/bnmod.txt.
     - CVE-2022-0778


openssl (1.1.1-1ubuntu2.1~18.04.14) bionic; urgency=medium

   * Cherry-pick upstream fixes to prevent double engine loading (LP: #1951943)

openssl (1.1.1-1ubuntu2.1~18.04.13) bionic-security; urgency=medium

   * SECURITY UPDATE: SM2 Decryption Buffer Overflow
     - debian/patches/CVE-2021-3711-1.patch: correctly calculate the length
       of SM2 plaintext given the ciphertext in crypto/sm2/sm2_crypt.c,
       crypto/sm2/sm2_pmeth.c, crypto/include/internal/sm2.h,
     - debian/patches/CVE-2021-3711-2.patch: extend tests for SM2 decryption
       in test/recipes/30-test_evp_data/evppkey.txt.
     - debian/patches/CVE-2021-3711-3.patch: check the plaintext buffer is
       large enough when decrypting SM2 in crypto/sm2/sm2_crypt.c.
     - CVE-2021-3711
   * SECURITY UPDATE: Read buffer overrun in X509_aux_print()
     - debian/patches/CVE-2021-3712.patch: fix a read buffer overrun in
       X509_aux_print() in crypto/x509/t_x509.c.
     - debian/patches/CVE-2021-3712-2.patch: fix i2v_GENERAL_NAME to not
       assume NUL terminated strings in crypto/x509v3/v3_alt.c,
       crypto/x509v3/v3_utl.c, crypto/include/internal/x509_int.h.
     - debian/patches/CVE-2021-3712-3.patch: fix POLICYINFO printing to not
       assume NUL terminated strings in crypto/x509v3/v3_cpols.c.
     - debian/patches/CVE-2021-3712-4.patch: fix printing of
       PROXY_CERT_INFO_EXTENSION to not assume NUL terminated strings in
     - debian/patches/CVE-2021-3712-5.patch: fix the name constraints code
       to not assume NUL terminated strings in crypto/x509v3/v3_ncons.c.
     - debian/patches/CVE-2021-3712-6.patch: fix test code to not assume NUL
       terminated strings in test/x509_time_test.c.
     - debian/patches/CVE-2021-3712-7.patch: fix append_ia5 function to not
       assume NUL terminated strings in crypto/x509v3/v3_utl.c.
     - debian/patches/CVE-2021-3712-8.patch: fix NETSCAPE_SPKI_print
       function to not assume NUL terminated strings in
     - debian/patches/CVE-2021-3712-9.patch: fix
       EC_GROUP_new_from_ecparameters to check the base length in
     - debian/patches/CVE-2021-3712-10.patch: allow fuzz builds to detect
       string overruns in crypto/asn1/asn1_lib.c.
     - debian/patches/CVE-2021-3712-11.patch: fix the error handling in
       i2v_AUTHORITY_KEYID in crypto/x509v3/v3_akey.c.
     - debian/patches/CVE-2021-3712-12.patch: allow fuzz builds to detect
       string overruns in crypto/asn1/asn1_lib.c.
     - debian/patches/CVE-2021-3712-13.patch: fix the name constraints code
       to not assume NUL terminated strings in crypto/x509v3/v3_ncons.c.
     - debian/patches/CVE-2021-3712-14.patch: fix i2v_GENERAL_NAME to not
       assume NUL terminated strings in crypto/x509v3/v3_utl.c.
     - CVE-2021-3712

openssl (1.1.1-1ubuntu2.1~18.04.10) bionic; urgency=medium

   * Cherry-pick an upstream patch to fix s390x AES code (LP: #1931994)

openssl (1.1.1-1ubuntu2.1~18.04.9) bionic-security; urgency=medium

   * SECURITY UPDATE: NULL pointer deref in signature_algorithms processing
     - debian/patches/CVE-2021-3449-1.patch: fix NULL pointer dereference in
     - debian/patches/CVE-2021-3449-2.patch: teach TLSProxy how to encrypt
       <= TLSv1.2 ETM records in util/perl/TLSProxy/
     - debian/patches/CVE-2021-3449-3.patch: add a test to
     - debian/patches/CVE-2021-3449-4.patch: ensure buffer/length pairs are
       always in sync in ssl/s3_lib.c, ssl/ssl_lib.c,
       ssl/statem/extensions.c, ssl/statem/extensions_clnt.c,
       ssl/statem/statem_clnt.c, ssl/statem/statem_srvr.c.
     - CVE-2021-3449

openssl (1.1.1-1ubuntu2.1~18.04.8) bionic-security; urgency=medium

   * SECURITY UPDATE: Integer overflow in CipherUpdate
     - debian/patches/CVE-2021-23840-pre1.patch: add a new EVP error code in
       crypto/err/openssl.txt, crypto/evp/evp_err.c,
     - debian/patches/CVE-2021-23840.patch: don't overflow the output length
       in EVP_CipherUpdate calls in crypto/err/openssl.txt,
       crypto/evp/evp_enc.c, crypto/evp/evp_err.c, include/openssl/evperr.h.
     - CVE-2021-23840
   * SECURITY UPDATE: Null pointer deref in X509_issuer_and_serial_hash()
     - debian/patches/CVE-2021-23841.patch: fix Null pointer deref in
     - CVE-2021-23841


openssl (1.1.1-1ubuntu2.1~18.04.7) bionic-security; urgency=medium

     - debian/patches/CVE-2020-1971-1.patch: use explicit tagging for
       DirectoryString in crypto/x509v3/v3_genn.c.
     - debian/patches/CVE-2020-1971-2.patch: correctly compare EdiPartyName
       in crypto/x509v3/v3_genn.c.
     - debian/patches/CVE-2020-1971-3.patch: check that multi-strings/CHOICE
       types don't use implicit tagging in crypto/asn1/asn1_err.c,
       crypto/asn1/tasn_dec.c, crypto/err/openssl.txt,
     - debian/patches/CVE-2020-1971-4.patch: complain if we are attempting
       to encode with an invalid ASN.1 template in crypto/asn1/asn1_err.c,
       crypto/asn1/tasn_enc.c, crypto/err/openssl.txt,
     - debian/patches/CVE-2020-1971-5.patch: add a test for GENERAL_NAME_cmp
       in test/v3nametest.c.
     - debian/patches/CVE-2020-1971-6.patch: add a test for
       encoding/decoding using an invalid ASN.1 Template in
       test/asn1_decode_test.c, test/asn1_encode_test.c.
     - CVE-2020-1971

openssl (1.1.1-1ubuntu2.1~18.04.6) bionic-security; urgency=medium

   * SECURITY UPDATE: ECDSA remote timing attack
     - debian/patches/CVE-2019-1547.patch: for ECC parameters with NULL or
       zero cofactor, compute it in crypto/ec/ec_lib.c.
     - CVE-2019-1547
   * SECURITY UPDATE: Fork Protection
     - debian/patches/CVE-2019-1549.patch: ensure fork-safety without using
       a pthread_atfork handler in crypto/include/internal/rand_int.h,
       crypto/init.c, crypto/rand/drbg_lib.c, crypto/rand/rand_lcl.h,
       crypto/rand/rand_lib.c, crypto/threads_none.c,
       crypto/threads_pthread.c, crypto/threads_win.c,
       include/internal/cryptlib.h, test/drbgtest.c.
     - CVE-2019-1549
   * SECURITY UPDATE: rsaz_512_sqr overflow bug on x86_64
     - debian/patches/CVE-2019-1551.patch: fix an overflow bug in
       rsaz_512_sqr in crypto/bn/asm/
     - CVE-2019-1551
   * SECURITY UPDATE: Padding Oracle issue
     - debian/patches/CVE-2019-1563.patch: fix a padding oracle in
       PKCS7_dataDecode and CMS_decrypt_set1_pkey in crypto/cms/cms_env.c,
       crypto/cms/cms_lcl.h, crypto/cms/cms_smime.c,
     - CVE-2019-1563


openssl (1.1.1-1ubuntu2.1~18.04.5) bionic-security; urgency=medium

   * debian/patches/OPENSSL_malloc_init_hang.patch: make
     OPENSSL_malloc_init() a no-op to remove a potential infinite loop that
     can occur in some situations, such as with MySQL 5.7 on s390x.

openssl (1.1.1-1ubuntu2.1~18.04.4) bionic; urgency=medium

   * Import libraries/restart-without-asking as used in postinst, to
     prevent failure to configure the package without debconf database.
     LP: #1832919

openssl (1.1.1-1ubuntu2.1~18.04.3) bionic; urgency=medium

   * Fix path to Xorg for reboot notifications on desktop. LP: #1832421
   * Cherrypick upstream fix to allow succesful init of libssl and
     libcrypto using separate calls with different options. LP: #1832659

openssl (1.1.1-1ubuntu2.1~18.04.2) bionic; urgency=medium

   * Cherrypick upstream patch to fix ca -spkac output to be text again.
     LP: #1828215
   * Cherrypick upstream patch to prevent over long nonces in ChaCha20-Poly1305
   * Bump major version of OpenSSL in postinst to trigger services restart
     upon upgrade. Many services listed there must be restarted when
     upgrading 1.1.0 to 1.1.1. LP: #1832522


openssl (1.1.1-1ubuntu2.1~18.04.1) bionic; urgency=medium

   * Backport OpenSSL 1.1.1 to 18.04 LTS. LP: #1797386
   * Adjust Breaks on versions published in bionic-release.

openssl (1.1.1-1ubuntu2.1) cosmic-security; urgency=medium

   * SECURITY UPDATE: timing side channel attack in DSA
     - debian/patches/CVE-2018-0734-1.patch: fix mod inverse in
     - debian/patches/CVE-2018-0734-2.patch: fix timing vulnerability in
     - debian/patches/CVE-2018-0734-3.patch: add a constant time flag in
     - CVE-2018-0734
   * SECURITY UPDATE: timing side channel attack in ECDSA
     - debian/patches/CVE-2018-0735.patch: fix timing vulberability in
     - CVE-2018-0735

openssl (1.1.1-1ubuntu2) cosmic; urgency=medium

   * Fixup typpos in the autopkgtest binary name.

openssl (1.1.1-1ubuntu1) cosmic; urgency=medium

   * Merge from Debian unstable, remaining changes:
     - Replace duplicate files in the doc directory with symlinks.
     - debian/libssl1.1.postinst:
       + Display a system restart required notification on libssl1.1
         upgrade on servers.
       + Use a different priority for libssl1.1/restart-services depending
         on whether a desktop, or server dist-upgrade is being performed.
     - Revert "Enable system default config to enforce TLS1.2 as a
       minimum" & "Increase default security level from 1 to 2".
     - Further decrease security level from 1 to 0, for compatibility with
       openssl 1.0.2.

openssl (1.1.1-1) unstable; urgency=medium

   * New upstream version.
    - Update symbol file for 1.1.1
    - CVE-2018-0732 (actually since pre8).
   * Add Breaks on python-httplib2 (Addresses: #907015)
   * Add hardening=+all.
   * Update to policy 4.2.1
     - Less verbose testsuite with terse
     - Use RRR=no

openssl (1.1.1~~pre9-1) unstable; urgency=medium

   * New upstream version.
     - Support the final TLS 1.3 version (RFC 8446)
   * Upload to unstable

openssl (1.1.1~~pre8-1) experimental; urgency=medium

   * New upstream version.

openssl (1.1.1~~pre7-1) experimental; urgency=medium

   * Drop afalgeng on kfreebsd-* which go enabled because they inherit from
     the linux target.
   * Fix debian-rules-sets-dpkg-architecture-variable.
   * Update to policy 4.1.4
     - only Suggest: libssl-doc instead Recommends (only documentation and
       example code is shipped).
     - drop Priority: important.
     - use signing-key.asc and a https links for downloads
   * Use compat 11.
     - this moves the examples to /usr/share/doc/libssl-{doc->dev}/demos but it
       seems to make sense.
   * Add a 25-test_verify.t for autopkgtest which runs against intalled
     openssl binary.
   * Fix CVE-2018-0737 (Closes: #895844).

openssl (1.1.1~~pre6-2) experimental; urgency=medium

   * Update libssl1.1.symbols

openssl (1.1.1~~pre6-1) experimental; urgency=medium

   * New upstream version
   * Increase default security level from 1 to 2. This moves from the 80 bit
     security level to the 112 bit securit level and will require 2048 bit RSA
     and DHE keys.

openssl (1.1.1~~pre4-1) experimental; urgency=medium

   * Update to 1.1.1-pre4 (Closes: #892276, #894282).
   * Add riscv64 target (Closes: #891797).

openssl (1.1.1~~pre3-1) experimental; urgency=medium

   * Update to 1.1.1-pre3
   * Don't suggest 1024 bit RSA key to be typical (Closes: #878303).
   * Don't insist on TLS1.3 cipher for <TLS1.3 connections (Closes: #891570).
   * Enable system default config to enforce TLS1.2 as a minimum.

openssl (1.1.1~~pre2-1) experimental; urgency=medium

   * Update to 1.1.1-pre2

openssl (1.1.1~~pre1-1) experimental; urgency=medium

   * Abort the build if symbols are discovered which are not part of the
     symbols file.
   * Add config support for MIPS R6, patch by YunQiang Su (Closes: #882007).
   * Enable afalgeng on Linux targets (Closes: #888305)
   * Update 1.1.1-pre1.


openssl (1.1.0g-2) unstable; urgency=high

   * Avoid problems with aes assembler on armhf using binutils 2.29

openssl (1.1.0g-1) unstable; urgency=medium

   [ Kurt Roeckx ]
   * New upstream version
     - Fixes CVE-2017-3735
     - Fixes CVE-2017-3736
   * Remove patches applied upstream
   * Temporary enable TLS 1.0 and 1.1 again (#875423)
   * Attempt to fix testsuite race condition
   * update no-symbolic.patch to apply

openssl (1.1.0f-5) unstable; urgency=medium

   * Instead of completly disabling TLS 1.0 and 1.1, just set the minimum
     version to TLS 1.2 by default. TLS 1.0 and 1.1 can be enabled again by
     calling SSL_CTX_set_min_proto_version() or SSL_set_min_proto_version().

openssl (1.1.0f-4) unstable; urgency=medium

   [ Sebastian Andrzej Siewior ]
   * Add support for arm64ilp32, patch by Wookey (Closes: #867240)
   [ Kurt Roeckx ]
   * Disable TLS 1.0 and 1.1, leaving 1.2 as the only supported SSL/TLS
     version. This will likely break things, but the hope is that by
     the release of Buster everything will speak at least TLS 1.2. This will be
     reconsidered before the Buster release.
   * Fix a race condition in the test suite (Closes: #869856)

openssl (1.1.0f-3) unstable; urgency=medium

   * Don't cleanup a thread-local key we didn't create it (Closes: #863707)

openssl (1.1.0f-2) unstable; urgency=medium

   * Make the udeb use a versioned depends (Closes: #864080)
   * Conflict with libssl1.0-dev (Closes: #863367)

openssl (1.1.0f-1) unstable; urgency=medium

   * New upstream version
     - Fix regression in req -x509 (Closes: #839575)
     - Properly detect features on the AMD Ryzen processor (Closes: #861145)
     - Don't mention -tls1_3 in the manpage (Closes: #859191)
   * Update libssl1.1.symbols for new symbols
   * Update man-section.patch

openssl (1.1.0e-2) unstable; urgency=medium

   * Make openssl depend on perl-base (Closes: #860254)

openssl (1.1.0e-1) unstable; urgency=high

   * New upstream version
     - Fixes CVE-2017-3733
     - Remove patches that are applied upstream.

openssl (1.1.0d-2) unstable; urgency=medium

   * Fix building of arch and all packages in a minimal environment
     (Closes: #852900).
   * Fix precomputing SHA1 by adding the following patches from upstream:
     - Add-a-couple-of-test-to-check-CRL-fingerprint.patch
     - Document-what-EXFLAG_SET-is-for-in-x509v3.h.patch
     - X509_CRL_digest-ensure-precomputed-sha1-hash-before-.patch
     (Closes: #852920).

openssl (1.1.0d-1) unstable; urgency=medium

   * New Upstream release
     - Fixes CVE-2017-3731
     - Fixes CVE-2017-3730
     - Fixes CVE-2017-3732
     - drop revert_ssl_read.patch and
       0001-Add-missing-zdelete-for-some-linux-arches.patch, applied upstream.
   * add new symbols.

openssl (1.1.0c-4) unstable; urgency=medium

   * Make build-indep build again.
   * Don't depend on perl:any in openssl as it breaks debootstrap
    ("Closes: #852017).

openssl (1.1.0c-3) unstable; urgency=medium

   * Add myself as Uploader.
   * Add support for tilegx, patch by Helmut Grohne (Closes: #848957).
   * redo the rules file to some newer debhelper:
     - everyfile should remain, nothing should get lost
     - the scripts in the doc package gained an exec bit
     - openssl gained a dep on perl (the package contains perl scripts)
     - libssl1.0.2-dbg is gone, we have dbgsym now
     - dh compat 10
     - pkg.install instead of pkg.files is used for install
   * Mark libssl-doc as MA foreign
   * Update Standards-Version from 3.9.5 to 3.9.8. No changes required.
   * Document the change for openssl's enc command between 1.1.0 and pre 1.1.0
     in the NEWS file (Closes: #843064).
   * Add an override for lintian for the non-standard private directory


openssl (1.1.0c-2) unstable; urgency=medium

   * Revert behaviour of SSL_read() and SSL_write(), and update documentation.
     (Closes: #844234)
   * Add missing -zdelete on x32 (Closes: #844715)
   * Add a Breaks on salt-common. Addresses #844706

openssl (1.1.0c-1) unstable; urgency=medium

   * New upstrem release
     - Fix CVE-2016-7053
     - Fix CVE-2016-7054
     - Fix CVE-2016-7055
   * remove no-rpath.patch, applied upstream.
   * Remove old d2i test cases, use the one from the upstream tarball.
   * Update libssl1.1.symbols for new sysmbols.

openssl (1.1.0b-2) unstable; urgency=low

   * Upload to unstable

openssl (1.1.0b-1) experimental; urgency=medium

   * New upstream release
     - Fixes CVE-2016-6309

openssl (1.1.0a-1) experimental; urgency=medium

   * New upstream release
     - Fix CVE-2016-6304
     - Fix CVE-2016-6305
     - Fix CVE-2016-6307
     - Fix CVE-2016-6308
   * Update c_rehash-compat.patch to apply to new version.
   * Update symbol file.

openssl (1.1.0-1) experimental; urgency=medium

   [ Kurt Roeckx ]
   * New upstream version
   * Use Package-Type instead of XC-Package-Type
   * Remove "Priority: optional" in the binary packages.
   * Add Homepage
   * Use dpkg-buildflags's LDFLAGS also for building the shared libraries.
   [ Sebastian Andrzej Siewior ]
   * drop config-hurd.patch, we don't use `config' and it works without the
   * Drop depend on zlib1g-dev since we don't use it anymore (Closes: #767207)
   * Make the openssl package Multi-Arch: foregin (Closes: #827028)

openssl (1.1.0~pre6-1) experimental; urgency=medium

   [ Sebastian Andrzej Siewior ]
   * drop engines-path.patch. Upstream uses a 1.1 suffixes now.
   [ Kurt Roeckx ]
   * New upstream version
   * Drop upstream snapshot
   * Update symbols file
   * Use some https instead of http URLs

openssl (1.1.0~pre5-5) experimental; urgency=medium

   * Update snapshot to commit fe964f0c88f6780fd30b26e306484b981b0a8480

openssl (1.1.0~pre5-4) experimental; urgency=medium

   * Update snapshot to commit c32bdbf171ce6650ef045ec47b5abe0de7c264db
   * Remove utils-mkdir-p-check-if-dir-exists-also-after-mkdir-f.patch, applied

openssl (1.1.0~pre5-3) experimental; urgency=medium

   [ Kurt Roeckx ]
   * Don't use assembler on hppa, it's not writen for Linux.

openssl (1.1.0~pre5-2) experimental; urgency=medium

   [ Sebastian Andrzej Siewior ]
   * Run the testsuite with verbose output.
   * Use $(MAKE) so the whole make environment is passed to its child and we
     can build in parallel with -jX
   * Update snapshot to commit 5000a6d1215e ("Fix an error path leak in int

openssl (1.1.0~pre5-1) experimental; urgency=medium

   * New upstream version with soname change.  Upload to experimental.
     - Rename binary packages
     - Remove patches:
       - block_diginotar.patch: All cross certificates expired in 2013
       - block_digicert_malaysia.patch: intermediate certificates expired in
       - man-dir.patch: Fixed upstream
       - valgrind.patch: Upstream no longer adds the uninitialized data to the
       - shared-lib-ext.patch: No longer needed
       - version-script.patch: Upstream does symbol versioning itself now
       - disable_freelist.patch: No longer needed
       - soname.patch: Was to change to the 1.0.2 soname that upstream never had
       - disable_sslv3_test.patch: Fixed upstream
       - libdoc-manpgs-pod-spell.patch: Fixed upstream (Closes: #813191)
     - Rewrite debian-targets.patch to work with the new configuration system.
     - Update other patches to apply
     - Update list of install docs
     - Use DESTDIR instead of INSTALL_PREFIX
     - Clean up more files
     - Remove the configure option enable-tlsext no-ssl2 since they're no
       longer supported.
   * Add upstream snapshot:
     - Add d2i-tests.tar to get new binary test files.
   * Don't build i686 optimized version anymore on i386, it's now the default.
     (Closes: #823774)

openssl (1.0.2h-1) unstable; urgency=high

   * New upstream version
     - Fixes CVE-2016-2107
     - Fixes CVE-2016-2105
     - Fixes CVE-2016-2106
     - Fixes CVE-2016-2109
     - Fixes CVE-2016-2176

openssl (1.0.2g-2) unstable; urgency=medium

   * Use assembler of arm64 (Closes: #794326)
     Patch from Riku Voipio <>
   * Add a udeb for libssl, based on similar changes done in Ubuntu
     starting in version 0.9.8o-4ubuntu1 (Closes: #802591)
     Patch from Margarita Manterola <>
   * Add support for nios2 (Closes: #816239)
     Based on patch from Marek Vasut <>
   * Update Spanish translation from Manuel "Venturi" Porras Peralta
     <> (Closes: #773601)
   * Don't build an i586 optimized version anymore, the default
     already targets that.  Patch from Sven Joachim <>
     (Closes: #759811)

openssl (1.0.2g-1) unstable; urgency=high

   * New upstream version
   * Fix CVE-2016-0797
   * Fix CVE-2016-0798
   * Fix CVE-2016-0799
   * Fix CVE-2016-0702
   * Fix CVE-2016-0705
   * Disable EXPORT and LOW ciphers: The DROWN attack (CVE-2016-0800)
     makes use of those, and SLOTH attack (CVE-2015-7575) can make use of them

openssl (1.0.2f-2) unstable; urgency=high

   * New upstream version.
     - Fixes CVE-2016-0701
     - Not affected by CVE-2015-3197 because SSLv2 is disabled.


openssl (1.0.2e-1) unstable; urgency=high

   * New upstream release
     - Fix CVE-2015-3193
     - Fix CVE-2015-3194
     - Fix CVE-2015-3195
     - Fix CVE-2015-3196
   * Remove all symlinks during clean
   * Run make depend after configure
   * Remove openssl_button.* from the doc package

openssl (1.0.2d-3) unstable; urgency=medium

   * Upload to unstable

openssl (1.0.2d-2) experimental; urgency=medium

   * Build with no-ssl3-method to remove all SSLv3 support.  This results in
     the functions SSLv3_method(), SSLv3_server_method() and
     SSLv3_client_method() being removed from libssl.  Change the soname as
     result of that and also changes name of the binary package.
     (Closes: #768476)
   * Enable rfc3779 and cms support (Closes: #630790)
   * Fix cross compilation for mips architectures. (Closes: #782492)

openssl (1.0.2d-1) unstable; urgency=high

   * New upstream version
     - Fixes CVE-2015-1793

openssl (1.0.2c-1) unstable; urgency=medium

   * New upstream version
     - Fixes ABI (Closes: #788511)

openssl (1.0.2b-1) unstable; urgency=high

   * New upstream version
     - Fix CVE-2015-4000
     - Fix CVE-2015-1788
     - Fix CVE-2015-1789
     - Fix CVE-2015-1790
     - Fix CVE-2015-1792
     - Fix CVE-2015-1791
   * Update c_rehash-compat.patch to make it apply to the new version.
   * Remove openssl-pod-misspell.patch applied upstream

openssl (1.0.2a-1) unstable; urgency=medium

   * New upstrema version
     - Fix CVE-2015-0286
     - Fix CVE-2015-0287
     - Fix CVE-2015-0289
     - Fix CVE-2015-0293 (not affected, SSLv2 disabled)
     - Fix CVE-2015-0209
     - Fix CVE-2015-0288
     - Fix CVE-2015-0291
     - Fix CVE-2015-0290
     - Fix CVE-2015-0207
     - Fix CVE-2015-0208
     - Fix CVE-2015-1787
     - Fix CVE-2015-0285
   * Temporary enable SSLv3 methods again, but they will go away.
   * Don't set TERMIO anymore, use the default TERMIOS instead.

openssl (1.0.2-1) experimental; urgency=medium

   * New upstream release
     - Fixes CVE-2014-3571
     - Fixes CVE-2015-0206
     - Fixes CVE-2014-3569
     - Fixes CVE-2014-3572
     - Fixes CVE-2015-0204
     - Fixes CVE-2015-0205
     - Fixes CVE-2014-8275
     - Fixes CVE-2014-3570
     - Drop git_snapshot.patch
   * Drop gnu_source.patch, dgst_hmac.patch, stddef.patch,
     no_ssl3_method.patch: applied upstream
   * Update patches to apply


openssl (1.0.2~beta3-1) experimental; urgency=low

   * New usptream beta version
   * Add git snapshot
   * Merge changes between 1.0.1h-3 and 1.0.1j-1:
     - Disables SSLv3 because of CVE-2014-3566
   * Drop patch rehash-crt.patch: partially applied upstream.
     c_rehash now doesn't support files in DER format anymore.
   * Drop patch rehash_pod.patch: applied upstream
   * Update c_rehash-compat.patch to apply to new upstream version.  This
     undoes upstream's "-old" option and creates both the new and old again.
     It now also does it for CRLs.
   * Drop defaults.patch, applied upstream
   * dgst_hmac.patch updated to apply to upstream version.
   * engines-path.patch updated to apply to upstream version.
   * Update list of exported symbols
   * Update symbols files to require beta3
   * Enable unit tests
   * Add patch to add support for the no-ssl3-method option that completly
     disable SSLv3 and pass the option.  This drops the following functions
     from the library: SSLv3_method, SSLv3_server_method and

openssl (1.0.2~beta2-1) experimental; urgency=medium

   * New usptream beta version
     - Fix CVE-2014-0224
     - Fix CVE-2014-0221
     - Fix CVE-2014-0195
     - Fix CVE-2014-3470
     - Fix CVE-2014-0198
     - Fix CVE-2010-5298
     - Fix CVE-2014-0160
     - Fix CVE-2014-0076
   * Merge changes between 1.0.1f-1 and 1.0.1h-3:
     - postinst: Updated check for restarting services
   * libdoc-manpgs-pod-spell.patch and openssl-pod-misspell.patch
     partially applied upstream
   * Drop fix-pod-errors.patch, applied upstream.
   * Add support for ppc64le (Closes: #745657)
   * Add support for OpenRISC (Closes: #736772)

openssl (1.0.2~beta1-1) experimental; urgency=medium

   * New upstream beta version
     - Update list of symbols that should be exported and adjust the symbols
       file.  This also removes a bunch of duplicate symbols in the linker
     - Fix additional pod errors
     - Following patches have been applied upstream and are removed:
       libssl-misspell.patch, pod_req_misspell2.patch,
       pod_pksc12.misspell.patch, pod_s_server.misspell.patch,
       pod_x509setflags.misspell.patch, pod_ec.misspell.patch,
       pkcs12-doc.patch, req_bits.patch
     - Following patches have been partially applied upstream:
       libdoc-manpgs-pod-spell.patch, openssl-pod-misspell.patch
     - Remove openssl_fix_for_x32.patch, different patch applied upstream.
   * Add support for cross compiling (Closes: #465248)

openssl (1.0.1f-1) unstable; urgency=high

   * New upstream version
     - Fix for TLS record tampering bug CVE-2013-4353
     - Drop the snapshot patch
   * update watch file to check for upstream signature and add upstream pgp key.
   * Drop conflicts against openssh since we now on a released version again.


openssl (1.0.1e-6) unstable; urgency=medium

   * Add Breaks: openssh-client (<< 1:6.4p1-1.1), openssh-server (<<
     1:6.4p1-1.1).  This is to prevent people running into #732940.
     This Breaks can be removed again when we stop using a git snapshot.

openssl (1.0.1e-5) unstable; urgency=low

   * Change default digest to SHA256 instead of SHA1.  (Closes: #694738)
   * Drop support for multiple certificates in 1 file.  It never worked
     properly in the first place, and the only one shipping in
     ca-certificates has been split.
   * Fix libdoc-manpgs-pod-spell.patch to only fix spalling errors
   * Remove make-targets.patch.  It prevented the test dir from being cleaned.
   * Update to a git snapshot of the OpenSSL_1_0_1-stable branch.
     - Fixes CVE-2013-6449 (Closes: #732754)
     - Fixes CVE-2013-6450
     - Drop patches ssltest_no_sslv2.patch cpuid.patch aesni-mac.patch
       dtls_version.patch get_certificate.patch, since they where all
       already commited upstream.
     - adjust fix-pod-errors.patch for the reordering of items in the
       documentation they've done trying to fix those pod errors.
     - disable rdrand engine by default (Closes: #732710)
   * disable zlib support.  Fixes CVE-2012-4929 (Closes: #728055)
   * Add arm64 support (Closes: #732348)
   * Properly use the default number of bits in req when none are given

openssl (1.0.1e-4) unstable; urgency=low

   [ Peter Michael Green ]
   * Fix pod errors (Closes: #723954)
   * Fix clean target
   [ Kurt Roeckx ]
   * Add mipsn32 and mips64 targets.  Patch from Eleanor Chen
     <>  (Closes: #720654)
   * Add support for nocheck in DEB_BUILD_OPTIONS
   * Update Norwegian translation (Closes: #653574)
   * Update description of the packages.  Patch by Justin B Rye
     (Closes: #719262)
   * change to debhelper compat level 9:
     - change dh_strip call so only the files from libssl1.0.0 get debug
     - change dh_makeshlibs call so the engines don't get added to the
   * Update Standards-Version from 3.8.0 to 3.9.5.  No changes required.

openssl (1.0.1e-3) unstable; urgency=low

   * Move <openssl/opensslconf.h> to /usr/include/$(DEB_HOST_MULTIARCH), and
     mark libssl-dev Multi-Arch: same.
     Patch by Colin Watson <> (Closes: #689093)
   * Add Polish translation (Closes: #658162)
   * Add Turkish translation (Closes: #660971)
   * Enable assembler for the arm targets, and remove armeb.
     Patch by Riku Voipio <> (Closes: #676533)
   * Add support for x32 (Closes: #698406)
   * enable ec_nistp_64_gcc_128 on *-amd64 (Closes: #698447)

openssl (1.0.1e-2) unstable; urgency=high

   * Bump shlibs.  It's needed for the udeb.
   * Make cpuid work on cpu's that don't set ecx (Closes: #699692)
   * Fix problem with AES-NI causing bad record mac (Closes: #701868, #702635, #678353)
   * Fix problem with DTLS version check (Closes: #701826)
   * Fix segfault in SSL_get_certificate (Closes: #703031)

openssl (1.0.1e-1) unstable; urgency=high

   * New upstream version (Closes: #699889)
     - Fixes CVE-2013-0169, CVE-2012-2686, CVE-2013-0166
     - Drop renegiotate_tls.patch, applied upstream
     - Export new CRYPTO_memcmp symbol, update symbol file
   * Add ssltest_no_sslv2.patch so that "make test" works.


openssl (1.0.1c-5) unstable; urgency=low

   * Re-enable assembler versions on sparc.  They shouldn't have
     been disabled for sparc v9.  (Closes: #649841)

openssl (1.0.1c-4) unstable; urgency=low

   * Fix the configure rules for alpha (Closes: #672710)
   * Switch the postinst to sh again, there never was a reason to
     switch it to bash (Closes: #676398)
   * Fix pic.patch to not use #ifdef in x86cpuid.s, only .S files are
     preprocessed.  We generate the file again for pic anyway.
     (Closes: #677468)
   * Drop Breaks against openssh as it was only for upgrades
     between versions that were only in testing/unstable.
     (Closes: #668600)

openssl (1.0.1c-3) unstable; urgency=low

   * Disable padlock engine again, causes problems for hosts not supporting it.

openssl (1.0.1c-2) unstable; urgency=high

   * Fix renegiotation when using TLS > 1.0.  This breaks tor.  Patch from
     upstream.  (Closes: #675990)
   * Enable the padlock engine by default.
   * Change default bits from 1024 to 2048 (Closes: #487152)

openssl (1.0.1c-1) unstable; urgency=high

   * New upstream version
     - Fixes CVE-2012-2333 (Closes: #672452)

openssl (1.0.1b-1) unstable; urgency=high

   * New upstream version
     - Remaps SSL_OP_NO_TLSv1_1, so applications linked to 1.0.0
       can talk to servers supporting TLS 1.1 but not TLS 1.2
     - Drop rc4_hmac_md5.patch, applied upstream

openssl (1.0.1a-3) unstable; urgency=low

   * Use patch from upstream for the rc4_hmac_md5 issue.

openssl (1.0.1a-2) unstable; urgency=low

   * Fix rc4_hmac_md5 on non-i386/amd64 arches.

openssl (1.0.1a-1) unstable; urgency=high

   * New upstream version
     - Fixes CVE-2012-2110
     - Fix crash in rc4_hmac_md5 (Closes: #666405)
     - Fixes some issues with talking to other servers when TLS 1.1 and 1.2 is
     - Drop patches no_ssl2.patch vpaes.patch tls1.2_client_algorithms.patch,
       applied upstream.

openssl (1.0.1-4) unstable; urgency=low

   * Use official patch for the vpaes problem, also covering amd64.

openssl (1.0.1-3) unstable; urgency=high

   * Fix crash in vpaes (Closes: #665836)
   * use client version when deciding whether to send supported signature
     algorithms extension

openssl (1.0.1-2) unstable; urgency=low

   * Properly quote the new cflags in Configure

openssl (1.0.1-1) unstable; urgency=low

   * New upstream version
     - Remove kfreebsd-pipe.patch, fixed upstream
     - Update pic.patch, openssl-pod-misspell.patch and make-targets.patch
     - Add OPENSSL_1.0.1 to version-script.patch and libssl1.0.0.symbols for
       the new functions.
     - AES-NI support (Closes: #644743)
   * pic.patch: upstream made OPENSSL_ia32cap_P and OPENSSL_cpuid_setup
     hidden on amd64, no need to access it PIC anymore.
   * pic.patch: Make OPENSSL_ia32cap_P hidden on i386 too (Closes: #663977)
   * Enable hardening using dpkg-buildflags (Closes: #653495)
   * s_client and s_server were forcing SSLv3 only connection when SSLv2 was
     disabled instead of the SSLv2 with upgrade method.  (Closes: #664454)
   * Add Breaks on openssh < 1:5.9p1-4, it has a too strict version check.

openssl (1.0.0h-1) unstable; urgency=high

   * New upstream version
     - Fixes CVE-2012-0884
     - Fixes CVE-2012-1165
     - Properly fix CVE-2011-4619
     - pkg-config.patch applied upstream, remove it.
   * Enable assembler for all i386 arches.  The assembler does proper
     detection of CPU support, including cpuid support.
     This should fix a problem with AES 192 and 256 with the padlock
     engine because of the difference in NO_ASM between the between
     the i686 optimized library and the engine.

openssl (1.0.0g-1) unstable; urgency=high

   * New upstream version
     - Fixes CVE-2012-0050

openssl (1.0.0f-1) unstable; urgency=high

   * New upstream version
     - Fixes CVE-2011-4108, CVE-2011-4576, CVE-2011-4619, CVE-2012-0027,


openssl (1.0.0e-3) unstable; urgency=low

   * Don't build v8 and v9 variants of sparc anymore, they're older than
     the default.  (Closes: #649841)
   * Don't build i486 optimized version, that's the default anyway, and
     it uses assembler that doesn't always work on i486.

openssl (1.0.0e-2.1) unstable; urgency=high

   * Non-maintainer upload by the Security Team.
   * Block Malaysian's Digicert Sdn. Bhd. certificates by marking them
     as revoked.

openssl (1.0.0e-2) unstable; urgency=low

   * Add a missing $(DEB_HOST_MULTIARCH)

openssl (1.0.0e-1) unstable; urgency=low

   * New upstream version
     - Fix bug where CRLs with nextUpdate in the past are sometimes accepted
       by initialising X509_STORE_CTX properly. (CVE-2011-3207)
     - Fix SSL memory handling for (EC)DH ciphersuites, in particular
       for multi-threaded use of ECDH. (CVE-2011-3210)
     - Add protection against ECDSA timing attacks (CVE-2011-1945)
   * Block DigiNotar certifiates.  Patch from
     Raphael Geissert <>
   * Generate hashes for all certs in a file (Closes: #628780, #594524)
     Patch from Klaus Ethgen <>
   * Add multiarch support (Closs: #638137)
     Patch from Steve Langasek / Ubuntu
   * Symbols from the gost engine were removed because it didn't have
     a linker file.  Thanks to Roman I Khimov <>
     (Closes: #631503)
   * Add support for s390x.  Patch from Aurelien Jarno <>
     (Closes: #641100)
   * Add build-arch and build-indep targets to the rules file.

openssl (1.0.0d-3) unstable; urgency=low

   * Make it build on sparc64.  Patch from Aurelien Jarno.  (Closes: #626060)
   * Apply patches from Scott Schaefer <> to
     fix various pod and spelling errors. (Closes: #622820, #605561)
   * Add missing symbols for the engines (Closes: #623038)
   * More spelling fixes from Scott Schaefer (Closes: #395424)
   * Patch from Scott Schaefer to better document pkcs12 password options
     (Closes: #462489)
   * Document dgst -hmac option.  Patch by Thorsten Glaser <>
     (Closes: #529586)

openssl (1.0.0d-2) unstable; urgency=high

   * Make c_rehash also generate the old subject hash.  Gnutls applications
     seem to require it.  (Closes: #611102)

openssl (1.0.0d-1) unstable; urgency=low

   * New upstream version
     - Fixes CVE-2011-0014
   * Make libssl-doc Replaces/Breaks with old libssl-dev packages
     (Closes: #607609)
   * Only export the symbols we should, instead of all.
   * Add symbol file.
   * Upload to unstable


openssl (1.0.0c-2) experimental; urgency=low

   * Set $ in front of {sparcv9_asm} so that the sparc v9 variant builds.
   * Always define _GNU_SOURCE, not only for Linux.
   * Drop SSL2 support (Closes: #589706)

openssl (1.0.0c-1) experimental; urgency=low

   * New upstream version (Closes: #578376)
     - New soname: Rename library packages
     - Drop patch perl-path.diff, not needed anymore
     - Drop patches CVE-2010-2939.patch, CVE-2010-3864.patch
       and CVE-2010-4180.patch: applied upstream.
     - Update Configure for the new fields for the assembler options
       per arch.  alpha now makes use of assembler.
   * Move man3 manpages and demos to libssl-doc (Closes: #470594)
   * Drop .pod files from openssl package (Closes: #518167)
   * Don't use RC4_CHAR on amd64 and drop rc4-amd64.patch
   * Stop using BF_PTR2 on (kfreebd-)amd64.
   * Drop debian-arm from the list of arches.
   * Update arm arches to use BN_LLONG RC4_CHAR RC4_CHUNK DES_INT DES_UNROLL
     BF_PTR instead of BN_LLONG DES_RISC1
   * ia64: Drop RC4_CHAR, add DES_UNROLL DES_INT
   * powerpc: Use RC4_CHAR RC4_CHUNK DES_RISC1 instead
   * s390: Use RC4_CHAR RC4_CHUNK DES_INT DES_UNROLL instead of BN_LLONG

openssl (0.9.8o-4) unstable; urgency=low

   * Fix CVE-2010-4180 (Closes: #529221)

openssl (0.9.8o-3) unstable; urgency=high

   * Fix TLS extension parsing race condition (CVE-2010-3864) (Closes: #603709)
   * Re-add the engines.  They were missing since 0.9.8m-1.
     Patch by Joerg Schneider. (Closes: #603693)
   * Not all architectures were build using -g (Closes: #570702)
   * Add powerpcspe support (Closes: #579805)
   * Add armhf support (Closes: #596881)
   * Update translations:
     - Brazilian Portuguese (Closes: #592154)
     - Danish (Closes: #599459)
     - Vietnamese (Closes: #601536)
     - Arabic (Closes: #596166)
   * Generate the proper stamp file so that everything doesn't get build twice.

openssl (0.9.8o-2) unstable; urgency=high

   * Fix CVE-2010-2939: Double free using ECDH. (Closes: #594415)

openssl (0.9.8o-1) unstable; urgency=low

   * New upstream version
     - Add SHA2 algorithms to SSL_library_init().
     - is now PIC, update pic.patch.
   * Add sparc64 support (Closes: #560240)

openssl (0.9.8n-1) unstable; urgency=high

   * New upstream version.
     - Fixes CVE-2010-0740.
     - Drop cfb.patch, applied upstream.

openssl (0.9.8m-2) unstable; urgency=low

   * Revert CFB block length change preventing reading older files.
     (Closes: #571810, #571940)

openssl (0.9.8m-1) unstable; urgency=low

   * New upstream version
     - Implements RFC5746, reenables renegotiation but requires the extension.
     - Fixes CVE-2009-3245
     - Drop patches CVE-2009-4355.patch, CVE-2009-1378.patch,
       CVE-2009-1377.patch, CVE-2009-1379.patch, CVE-2009-3555.patch,
       CVE-2009-2409.patch, CVE-2009-1387.patch, tls_ext_v3.patch,
       no_check_self_signed.patch: applied upstream
     - pk7_mime_free.patch removed, code rewritten
     - ca.diff partially applied upstream
     - engines-path.patch adjusted, upstream made some minor changes to the
       build system.
     - some flags changed values, bump shlibs.
   * Switch to 3.0 (quilt) source package.
   * Make sure the package is properly cleaned.
   * Add ${misc:Depends} to the Depends on all packages.
   * Fix spelling of extension in the changelog file.

openssl (0.9.8k-8) unstable; urgency=high

   * Clean up zlib state so that it will be reinitialized on next use and
     not cause a memory leak.  (CVE-2009-4355, CVE-2008-1678)


openssl (0.9.8k-7) unstable; urgency=low

   * Bump the shlibs to require 0.9.8k-1.  The following symbols
     to added between g and k: AES_wrap_key, AES_unwrap_key,
     ASN1_TYPE_set1, ASN1_STRING_set0, asn1_output_data_fn,
     SMIME_read_ASN1, BN_X931_generate_Xpq, BN_X931_derive_prime_ex,
     BN_X931_generate_prime_ex, COMP_zlib_cleanup, CRYPTO_malloc_debug_init,
     int_CRYPTO_set_do_dynlock_callback, CRYPTO_set_mem_info_functions,
     CRYPTO_strdup, CRYPTO_dbg_push_info, CRYPTO_dbg_pop_info,
     CRYPTO_dbg_remove_all_info, OPENSSL_isservice, OPENSSL_init,
     ENGINE_get_ssl_client_cert_function, ENGINE_load_ssl_client_cert,
     EVP_CIPHER_CTX_set_flags, EVP_CIPHER_CTX_clear_flags,
     EVP_CIPHER_CTX_test_flags, HMAC_CTX_set_flags, OCSP_sendreq_new
     OCSP_sendreq_nbio, OCSP_REQ_CTX_free, RSA_X931_derive_ex,
     RSA_X931_generate_key_ex, X509_ALGOR_set0, X509_ALGOR_get0,
     X509at_get0_data_by_OBJ, X509_get1_ocsp

openssl (0.9.8k-6) unstable; urgency=low

   * Disable SSL/TLS renegotiation (CVE-2009-3555) (Closes: #555829)

openssl (0.9.8k-5) unstable; urgency=low

   * Don't check self signed certificate signatures in X509_verify_cert()
     (Closes: #541735)

openssl (0.9.8k-4) unstable; urgency=low

   * Split all the patches into a separate files
   * Stop undefinging HZ, the issue on alpha should be fixed.
   * Remove MD2 from digest algorithm table.  (CVE-2009-2409) (Closes: #539899)

openssl (0.9.8k-3) unstable; urgency=low

   * Make rc4-x86_64 PIC.  Based on patch from Petr Salinger (Closes: #532336)
   * Add workaround for kfreebsd that can't see the different between
     two pipes.  Patch from Petr Salinger.

openssl (0.9.8k-2) unstable; urgency=low

   * Move libssl0.9.8-dbg to the debug section.
   * Use the rc4 assembler on kfreebsd-amd64 (Closes: #532336)
   * Split the line to generate md5-x86_64.s in the Makefile.  This will
     hopefully fix the build issue on kfreebsd that now outputs the file
     to stdout instead of the file.
   * Fix denial of service via an out-of-sequence DTLS handshake message
     (CVE-2009-1387) (Closes: #532037)

openssl (0.9.8k-1) unstable; urgency=low

   * New upstream release
     - 0.9.8i fixed denial of service via a DTLS ChangeCipherSpec packet
       that occurs before ClientHello (CVE-2009-1386)
   * Make use PIC.
   * Fix security issues (Closes: #530400)
     - "DTLS record buffer limitation bug." (CVE-2009-1377)
     - "DTLS fragment handling" (CVE-2009-1378)
     - "DTLS use after free" (CVE-2009-1379)
   * Fixed Configure for hurd: use -mtune=i486 instead of -m486
     Patch by Marc Dequènes (Duck) <> (Closes: #530459)
   * Add support for avr32 (Closes: #528648)

openssl (0.9.8g-16) unstable; urgency=high

   * Properly validate the length of an encoded BMPString and UniversalString
     (CVE-2009-0590)  (Closes: #522002)

openssl (0.9.8g-15) unstable; urgency=low

   * Internal calls to didn't properly check for errors which
     resulted in malformed DSA and ECDSA signatures being treated as
     a good signature rather than as an error.  (CVE-2008-5077)
   * ipv6_from_asc() could write 1 byte longer than the buffer in case
     the ipv6 address didn't have "::" part.  (Closes: #506111)


openssl (0.9.8g-14) unstable; urgency=low

   * Don't give the warning about security updates when upgrading
     from etch since it doesn't have any known security problems.
   * Automaticly use engines that succesfully initialised.  Patch
     from the 0.9.8h upstream version.  (Closes: #502177)

openssl (0.9.8g-13) unstable; urgency=low

   * Fix a problem with tlsext preventing firefox 3 from connection.
     Patch from upstream CVS and part of 0.9.8h.
     (Closes: #492758)

openssl (0.9.8g-12) unstable; urgency=low

   * add the changelog of the 10.1 NMU to make bugtracking happy

openssl (0.9.8g-11) unstable; urgency=low

   [ Christoph Martin ]
   * updated cs, gl, sv, ru, ro debconf translation (closes: #480926, #480967,
     #482465, #484324, #488595)
   * add Vcs-Svn header (closes: #481654)
   * fix debian-kfreebsd-i386 build flags (closes: #482275)
   * add stunnel4 to restart list (closes: #482111)
   * include fixes from 10.1 NMU by Security team
     - Fix double free in TLS server name extension which leads to a remote
       denial of service (CVE-2008-0891; Closes: #483379).
     - Fix denial of service if the 'Server Key exchange message'
       is omitted from a TLS handshake which could lead to a client
       crash (CVE-2008-1672; Closes: #483379).
       This only works if openssl is compiled with enable-tlsext which is
       done in Debian.
   * fix some lintian warnings
   * update to newest standards version

openssl (0.9.8g-10.1) unstable; urgency=high

   * Non-maintainer upload by the Security team.
   * Fix denial of service if the 'Server Key exchange message'
     is omitted from a TLS handshake which could lead to a client
     crash (CVE-2008-1672; Closes: #483379).
     This only works if openssl is compiled with enable-tlsext which is
     done in Debian.
   * Fix double free in TLS server name extension which leads to a remote
     denial of service (CVE-2008-0891; Closes: #483379).

openssl (0.9.8g-10) unstable; urgency=low

   * undefine HZ so that the code falls back to sysconf(_SC_CLK_TCK)
     to fix a build failure on alpha.

openssl (0.9.8g-9) unstable; urgency=high

   [ Christoph Martin ]
   * Include updated debconf translations (closes: #473477, #461597,
     #461880, #462011, #465517, #475439)
   [ Kurt Roeckx ]
   * ssleay_rand_add() really needs to call MD_Update() for buf.

openssl (0.9.8g-8) unstable; urgency=high

   * Don't add extensions to ssl v3 connections.  It breaks with some
     other software.  (Closes: #471681)

openssl (0.9.8g-7) unstable; urgency=low

   * Upload to unstable.

openssl (0.9.8g-6) experimental; urgency=low

   * Bump shlibs.

openssl (0.9.8g-5) experimental; urgency=low

   * Enable tlsext.  This changes the ABI, but should hopefully
     not cause any problems. (Closes: #462596)

openssl (0.9.8g-4) unstable; urgency=low

   * Fix aes ige test speed not to overwrite it's buffer and
     cause segfauls.  Thanks to Tim Hudson (Closes: #459619)
   * Mark some strings in the templates as non translatable.
     Patch from Christian Perrier <> (Closes: #450418)
   * Update Dutch debconf translation (Closes: #451290)
   * Update French debconf translation (Closes: #451375)
   * Update Catalan debconf translation (Closes: #452694)
   * Update Basque debconf translation (Closes: #457285)
   * Update Finnish debconf translation (Closes: #458261)


openssl (0.9.8g-3) unstable; urgency=low

   * push %ebx on the stack before we put some things on the
     stack and call a function, giving AES_decrypt() wrong values to work
     with.  (Closes: #449200)

openssl (0.9.8g-2) unstable; urgency=low

   * Avoid text relocations on i386 caused by the assembler versions:
     - Create a function_begin_B_static to create a
       static/local assembler function.
     - Use the function_begin_B_static for _x86_AES_decrypt
       so that it doesn't get exported and doesn't have any (text) relocations.
     - Set up ebx to point to the GOT and call AES_set_encrypt_key
       via the PLT to avoid a relocation.
     - Call the init function via the PLT, avoiding a relocation
       in case of a PIC object.
     - Call functions via the PLT.
     - Call DES_encrypt2 via the PLT.
   * should use the v3_ca extension when called with -newca
     (Closes: #428051)
   * Use -Wa,--noexecstack for all arches in Debian.  (Closes: #430583)
   * Convert the failure message when services fail restart to a debconf
   * To restart a service, just restart, instead of stop and start.
     Hopefully fixes #444946
   * Also remove igetest from the test dir in the clean target.
     (Closes: #424362)

openssl (0.9.8g-1) unstable; urgency=low

   * New upstream release
     - Fixes version number not to say it's a development version.

openssl (0.9.8f-1) unstable; urgency=low

   * New upstream release
     - Fixes DTLS issues, also fixes CVE-2007-4995 (Closes: #335703, #439737)
     - Proper inclusion of opensslconf.h in pq_compat.h (Closes: #408686)
     - New function SSL_set_SSL_CTX: bump shlibs.
   * Remove build dependency on gcc > 4.2
   * Remove the openssl preinst, it looks like a workaround
     for a change in 0.9.2b where config files got moved.  (Closes: #445095)
   * Update debconf translations:
     - Vietnamese (Closes: #426988)
     - Danish (Closes: #426774)
     - Slovak (Closes: #440723)
     - Finnish (Closes: #444258)

openssl (0.9.8e-9) unstable; urgency=high

   * CVE-2007-5135: Fix off by one error in SSL_get_shared_ciphers().
     (Closes: #444435)
   * Add postgresql-8.2 to the list of services to check.

openssl (0.9.8e-8) unstable; urgency=low

   * Fix another case of the "if this code is reached, the program will abort"
     (Closes: #429740)
   * Temporary force to build with gcc >= 4.2

openssl (0.9.8e-7) unstable; urgency=low

   * Fix problems with gcc-4.2 (Closes: #429740)
   * Stop using -Bsymbolic to create the shared library.
   * Make use PIC.

openssl (0.9.8e-6) unstable; urgency=high

   * Add fix for CVE-2007-3108 (Closes: #438142)

openssl (0.9.8e-5) unstable; urgency=low

   [ Christian Perrier ]
   * Debconf templates proofread and slightly rewritten by
     the debian-l10n-english team as part of the Smith Review Project.
     Closes: #418584
   * Debconf templates translations:
     - Arabic. Closes: #418669
     - Russian. Closes: #418670
     - Galician. Closes: #418671
     - Swedish. Closes: #418679
     - Korean. Closes: #418755
     - Czech. Closes: #418768
     - Basque. Closes: #418784
     - German. Closes: #418785
     - Traditional Chinese. Closes: #419915
     - Brazilian Portuguese. Closes: #419959
     - French. Closes: #420429
     - Italian. Closes: #420461
     - Japanese. Closes: #420482
     - Catalan. Closes: #420833
     - Dutch. Closes: #420925
     - Malayalam. Closes: #420986
     - Portuguese. Closes: #421032
     - Romanian. Closes: #421708
   [ Kurt Roeckx ]
   * Remove the Provides for the udeb. Patch from Frans Pop. (Closes: #419608)
   * Updated Spanish debconf template.  (Closes: #421336)
   * Do the header changes, changing those defines into real functions,
     and bump the shlibs to match.
   * Update Japanese debconf translation.  (Closes: #422270)

openssl (0.9.8e-4) unstable; urgency=low

   * openssl should depend on libssl0.9.8 0.9.8e-1 since it
     uses some of the defines that changed to functions.
     Other things build against libssl or libcrypto shouldn't
     have this problem since they use the old headers.
     (Closes: #414283)

openssl (0.9.8e-3) unstable; urgency=low

   * Add nagios-nrpe-server to the list of services to be checked
     (Closes: #391188)
   * EVP_CIPHER_CTX_key_length() should return the set key length in the
     EVP_CIPHER_CTX structure which may not be the same as the underlying
     cipher key length for variable length ciphers.
     From upstream CVS.  (Closes: #412979)

openssl (0.9.8e-2) unstable; urgency=low

   * Undo include changes that change defines into real functions,
     but keep the new functions in the library.

openssl (0.9.8e-1) unstable; urgency=low

   * New upstream release
     - Inludes security fixes for CVE-2006-2937, CVE-2006-2940,
       CVE-2006-3738, CVE-2006-4343 (Closes: #408902)
     - s_client now properly works with SMTP.  Also added support
       for IMAP.  (closes: #221689)
     - Load padlock modules (Closes: #345656, #368476)
   * Add clamav-freshclam and clamav-daemon to the list of service that
     need to be restarted.  (Closes: #391191)
   * Add armel support.  Thanks to Guillem Jover <>
     for the patch.  (Closes: #407196)
   * Add Portuguese translations.  Thanks to Carlos Lisboa.  (Closes: 408157)
   * Add Norwegian translations.  Thanks to Bjørn Steensrud
     <> (Closes: #412326)


openssl (0.9.8c-4) unstable; urgency=low

   * Add German debconf translation.  Thanks to
     Johannes Starosta <> (Closes: #388108)
   * Make c_rehash look for both .pem and .crt files.  Also make it support
     files in DER format.  Patch by "Yauheni Kaliuta" <>
     (Closes: #387089)
   * Use & instead of && to check a flag in the X509 policy checking.
     Patch from upstream cvs.  (Closes: #397151)
   * Also restart slapd for security updates (Closes: #400221)
   * Add Romanian debconf translation.  Thanks to
     stan ioan-eugen <> (Closes: #393507)

openssl (0.9.8c-3) unstable; urgency=low

   * Fix patch for CVE-2006-2940, it left ctx unintiliased.

openssl (0.9.8c-2) unstable; urgency=high

   * Fix security vulnerabilities (CVE-2006-2937, CVE-2006-2940,
     CVE-2006-3738, CVE-2006-4343).  Urgency set to high.

openssl (0.9.8c-1) unstable; urgency=low

   * New upstream release
     - block padding bug with compression now fixed upstream, using
       their patch.
     - Includes the RSA Signature Forgery (CVE-2006-4339) patch.
     - New functions AES_bi_ige_encrypt and AES_ige_encrypt:
       bumping shlibs to require 0.9.8c-1.
   * Change the postinst script to check that ntp is installed instead
     of ntp-refclock and ntp-simple.  The binary is now in the ntp
   * Move the modified rand/md_rand.c file to the right place,
     really fixing #363516.
   * Add partimage-server conserver-server and tor to the list of service
     to check for restart.  Add workaround for openssh-server so it finds
     the init script.  (Closes: #386365, #386400, #386513)
   * Add manpage for c_rehash.
     Thanks to James Westby <> (Closes: #215618)
   * Add Lithuanian debconf translation.
     Thanks to Gintautas Miliauskas <>  (Closes: #374364)
   * Add m32r support.
     Thanks to Kazuhiro Inaoka <>
     (Closes: #378689)

openssl (0.9.8b-3) unstable; urgency=high

   * Fix RSA Signature Forgery (CVE-2006-4339) using patch provided
     by upstream.
   * Restart services using a smaller version that 0.9.8b-3, so
     they get the fixed version.
   * Change the postinst to check for postfix instead of postfix-tls.

openssl (0.9.8b-2) unstable; urgency=low

   * Don't call gcc with -mcpu on i386, we already use -march, so no need for
     -mtune either.
   * Always make all directories when building something:
     - The engines directory didn't get build for the static directory, so
       where missing in libcrypo.a
     - The apps directory didn't always get build, so we didn't have an openssl
       and a small part of the regression tests failed.
   * Make the package fail to build if the regression tests fail.

openssl (0.9.8b-1) unstable; urgency=low

   * New upstream release
     - New functions added (EVP_CIPHER_CTX_new, EVP_CIPHER_CTX_free), bump shlibs.
     - now calls openssl ca with -extensions v3_ca, setting CA:TRUE
       instead of FALSE.
     - creates crlnumber now.  (Closes: #347612)
   * Run debconf-updatepo, which really already was in the 0.9.8a-8 version
     as it was uploaded.
   * Add Galician debconf translation.  Patch from
     Jacobo Tarrio <>  (Closes: #361266)
   * libssl0.9.8.postinst makes uses of bashisms (local variables)
     so use #!/bin/bash
   * libssl0.9.8.postinst: Call set -e after sourcing the debconf
   * libssl0.9.8.postinst: Change list of service that may need
     to be restarted:
     - Replace ssh by openssh-server
     - Split postgresql in postgresql-7.4 postgresql-8.0 postgresql-8.1
     - Add: dovecot-common bind9 ntp-refclock ntp-simple openntpd clamcour
       fetchmail ftpd-ssl proftpd proftpd-ldap proftpd-mysql proftpd-pgsql
   * libssl0.9.8.postinst: The check to see if something was installed
     wasn't working.
   * libssl0.9.8.postinst: Add workaround to find the name of the init
     script for proftpd and dovecot.
   * libssl0.9.8.postinst: Use invoke-rc.d when it's available.
   * Change Standards-Version to 3.7.0:
     - Make use of invoke-rc.d
   * Add comment to README.Debian that rc5, mdc2 and idea have been
     disabled (since 0.9.6b-3)  (Closes: #362754)
   * Don't add uninitialised data to the random number generator.  This stop
     valgrind from giving error messages in unrelated code.
     (Closes: #363516)
   * Put the FAQ in the openssl docs.
   * Add russian debconf translations from Yuriy Talakan <>
     (Closes #367216)

openssl (0.9.8a-8) unstable; urgency=low

   * Call pod2man with the proper section.  Section changed
     from 1/3/5/7 to 1SSL/3SSL/5SSL/7SSL.  The name of the files
     already had the ssl in, the section didn't.  The references
     to other manpage is still wrong.
   * Don't install the LICENSE file, it's already in the copyright file.
   * Don't set an rpath on openssl to point to /usr/lib.
   * Add support for kfreebsd-amd64. (Closes: #355277)
   * Add udeb to the shlibs.  Patch from Frans Pop <>
     (Closes: #356908)

openssl (0.9.8a-7) unstable; urgency=high

   * Add italian debconf templates.  Thanks to Luca Monducci.
     (Closes: #350249)
   * Change the debconf question to use version 0.9.8-3
     instead of 0.9.8-1, since that's the last version
     with a security fix.
   * Call conn_state() if the BIO is not in the BIO_CONN_S_OK state
     (Closes: #352047).  RC bug affecting testing, so urgency high.

openssl (0.9.8a-6) unstable; urgency=low

   * Remove empty postinst/preinst/prerm scripts.  There is no need
     to have empty ones, debhelper will add them when needed.
   * Remove the static pic libraries.  Nobody should be linking
     it's shared libraries static to libssl or libcrypto.
     This was added for opensc who now links to it shared.
   * Do not assume that in case the sequence number is 0 and the
     packet has an odd number of bytes that the other side has
     the block padding bug, but try to check that it actually
     has the bug.  The wrong detection of this bug resulted
     in an "decryption failed or bad record mac" error in case
     both sides were using zlib compression.  (Closes: #338006)


openssl (0.9.8a-5) unstable; urgency=low

   * Stop ssh from crashing randomly on sparc (Closes: #335912)
     Patch from upstream cvs.

openssl (0.9.8a-4) unstable; urgency=low

   * Call dh_makeshlibs with the proper version instead of putting
     it in shlibs.local, which doesn't seem to do anything.  0.9.8a-1
     added symbol versioning, so it should have bumped the shlibs.
     (Closes: #338284)
   * The openssl package had a duplicate dependency on libssl0.9.8,
     only require the version as required by the shlibs.
   * Make libssl-dev depend on zlib1g-dev, since it's now required for
     static linking. (Closes: #338313)
   * Generate .pc files that make use of Libs.private, so things only
     link to the libraries they should when linking shared.
   * Use -m64 instead of -bpowerpc64-linux on ppc64. (Closes: #335486)
   * Make powerpc and ppc64 use the assembler version for bn.  ppc64
     had the location in the string wrong, powerpc had it missing.
   * Add includes for stddef to get size_t in md2.h, md4.h, md5.h,
     ripemd.h and sha.h.  (Closes: #333101)
   * Run make test for each of the versions we build, make it
     not fail the build process if an error is found.
   * Add build dependency on bc for the regression tests.

openssl (0.9.8a-3) unstable; urgency=high

   * Link to libz instead of dynamicly loading it.  It gets loaded
     at the moment the library is initialised, so there is no point
     in not linking to it.  It's now failing in some cases since
     it's not opened by it's soname, but by the symlink to it.
     This should hopefully solve most of the bugs people have reported
     since the move to libssl0.9.8.
     (Closes: #334180, #336140, #335271)
   * Urgency set to high because it fixes a grave bug affecting testing.

openssl (0.9.8a-2) unstable; urgency=low

   * Add Build-Dependency on m4, since sparc needs it to generate
     it's assembler files.  (Closes: #334542)
   * Don't use rc4-x86_64.o on amd64 for now, it seems to be broken
     and causes a segfault.  (Closes: #334501, #334502)

openssl (0.9.8a-1) unstable; urgency=low

   Christoph Martin:
   * fix asm entries for some architectures, fixing #332758 properly.
   * add noexecstack option to i386 subarch
   * include symbol versioning in Configure (closes: #330867)
   * include debian-armeb arch (closes: #333579)
   * include new upstream patches; includes some minor fixes
   * fix dh_shlibdeps line, removing the redundant dependency on
     libssl0.9.8 (closes: #332755)
   * add swedish debconf template (closes: #330554)
   Kurt Roeckx:
   * Also add noexecstack option for amd64, since it now has an
     executable stack with the assembler fixes for amd64.

openssl (0.9.8-3) unstable; urgency=low

   * Apply security fix for CAN-2005-2969. (Closes: #333500)
   * Change priority of -dbg package to extra.

openssl (0.9.8-2) unstable; urgency=low

   * Don't use arch specific assembler.  Should fix build failure on
     ia64, sparc and amd64. (Closes: #332758)
   * Add myself to the uploaders.

openssl (0.9.8-1) unstable; urgency=low

   * New upstream release (closes: #311826)

openssl (0.9.7g-3) unstable; urgency=low

   * change Configure line for debian-freebsd-i386 to debian-kfreebsd-i386
     (closes: #327692)
   * include -dbg version. That implies compiling with -g and without
     -fomit-frame-pointer (closes: #293823, #153811)

openssl (0.9.7g-2) unstable; urgency=low

   * really include nl translation
   * remove special ia64 code from rc4 code to make the abi compatible to
     older 0.9.7 versions (closes: #310489, #309274)
   * fix compile flag for debian-ppc64 (closes: #318750)
   * small fix in libssl0.9.7.postinst (closes: #239956)
   * fix pk7_mime.c to prevent garbled messages because of to early memory
     free (closes: #310184)
   * include vietnamese debconf translation (closes: #316689)
   * make optimized i386 libraries have non executable stack (closes:
   * remove leftover files from ssleay
   * move from dh_installmanpages to dh_installman
   * change Maintainer to

openssl (0.9.7g-1) unstable; urgency=low

   * New upstream release
     * Added support for proxy certificates according to RFC 3820.
       Because they may be a security thread to unaware applications,
       they must be explicitely allowed in run-time.  See
       docs/HOWTO/proxy_certificates.txt for further information.
     * Prompt for pass phrases when appropriate for PKCS12 input format.
     * Back-port of selected performance improvements from development
       branch, as well as improved support for PowerPC platforms.
     * Add lots of checks for memory allocation failure, error codes to indicate
       failure and freeing up memory if a failure occurs.
     * Perform some character comparisons of different types in X509_NAME_cmp:
       this is needed for some certificates that reencode DNs into UTF8Strings
       (in violation of RFC3280) and can't or wont issue name rollover
   * corrected watchfile
   * added upstream source url (closes: #292904)
   * fix typo in (closes: #290271)
   * change debian-powerpc64 to debian-ppc64 and adapt the configure
     options to be the same like upstream (closes: #289841)
   * include -signcert option in usage
   * compile with zlib-dynamic to use system zlib (closes: #289872)


openssl (0.9.7e-3) unstable; urgency=high

   * really fix der_chop. The fix from -1 was not really included (closes:
   * still fixes security problem CAN-2004-0975 etc.
     - tempfile raise condition in der_chop
     - Avoid a race condition when CRLs are checked in a multi threaded

openssl (0.9.7e-2) unstable; urgency=high

   * fix perl path in der_chop and c_rehash (closes: #281212)
   * still fixes security problem CAN-2004-0975 etc.
     - tempfile raise condition in der_chop
     - Avoid a race condition when CRLs are checked in a multi threaded

openssl (0.9.7e-1) unstable; urgency=high

   * SECURITY UPDATE: fix insecure temporary file handling
   * apps/der_chop:
     - replaced $$-style creation of temporary files with
     - removed unused temporary file name in do_certificate()
   * References:
     CAN-2004-0975 (closes: #278260)
   * fix ASN1_STRING_to_UTF8 with UTF8 (closes: #260357)
   * New upstream release with security fixes
     - Avoid a race condition when CRLs are checked in a multi threaded
     - Various fixes to s3_pkt.c so alerts are sent properly.
     - Reduce the chances of duplicate issuer name and serial numbers (in
       violation of RFC3280) using the OpenSSL certificate creation
   * depends openssl on perl-base instead of perl (closes: #280225)
   * support powerpc64 in Configure (closes: #275224)
   * include cs translation (closes: #273517)
   * include nl translation (closes: #272479)
   * Fix default dir of c_rehash (closes: #253126)

openssl (0.9.7d-5) unstable; urgency=low

   * Make S/MIME encrypt work again (backport from CVS) (closes: #241407,

openssl (0.9.7d-4) unstable; urgency=low

   * add Catalan translation (closes: #248749)
   * add Spanish translation (closes: #254561)
   * include NMU fixes: see below
   * decrease optimisation level for debian-arm to work around gcc bug
     (closes: #253848) (thanks to Steve Langasek and Thom May)
   * Add libcrypto0.9.7-udeb. (closes: #250010) (thanks to Bastian Blank)
   * Add watchfile

openssl (0.9.7d-3) unstable; urgency=low

   * rename -pic.a libraries to _pic.a (closes: #250016)

openssl (0.9.7d-2) unstable; urgency=low

   * include PIC libs (libcrypto-pic.a and libssl-pic.a) to libssl-dev
     (closes: #246928, #243999)
   * add racoon to restart list (closes: #242652)
   * add Brazilian, Japanese and Danish translations (closes: #242087,
     #241830, #241705)

openssl (0.9.7d-1) unstable; urgency=high

   * new upstream
   * fixes security holes (
     (closes: #238661)
   * includes support for debian-amd64 (closes: #235551, #232310)
   * fix typo in pem.pod (closes: #219873)
   * fix typo in libssl0.9.7.templates (closes: #224690)
   * openssl suggests ca-certificates (closes: #217180)
   * change debconf template to gettext format (closes: #219013)
   * include french debconf template (closes: #219014)


openssl (0.9.7c-5) unstable; urgency=low

   * include openssl.pc into libssl-dev (closes: #212545)

openssl (0.9.7c-4) unstable; urgency=low

   * change question to restart services to debconf (closes: #214840)
   * stop using dh_undocumented (closes: #214831)

openssl (0.9.7c-3) unstable; urgency=low

   * fix POSIX conformance for head in libssl0.9.7.postinst (closes:

openssl (0.9.7c-2) unstable; urgency=low

   * add filerc macro to libssl0.9.7.postinst (closes: #213906)
   * restart spamassassins spamd on upgrade (closes: #214106)
   * restart more services on upgrade
   * fix EVP_BytesToKey manpage (closes: #213715)

openssl (0.9.7c-1) unstable; urgency=high

   * upstream security fix (closes: #213451)
    - Fix various bugs revealed by running the NISCC test suite:
      Stop out of bounds reads in the ASN1 code when presented with
      invalid tags (CAN-2003-0543 and CAN-2003-0544).
      Free up ASN1_TYPE correctly if ANY type is invalid (CAN-2003-0545).
      If verify callback ignores invalid public key errors don't try to check
      certificate signature with the NULL public key.
    - In ssl3_accept() (ssl/s3_srvr.c) only accept a client certificate
      if the server requested one: as stated in TLS 1.0 and SSL 3.0
   * more minor upstream bugfixes
   * fix formatting in c_issuer (closes: #190026)
   * fix Debian-FreeBSD support (closes: #200381)
   * restart some services in postinst to make them use the new libraries
   * remove duplicated openssl.1, crypto.3 and ssl.3 (closes: #198594)

openssl (0.9.7b-2) unstable; urgency=high

   * fix permission of /etc/ssl/private to 700 again
   * change section of libssl-dev to libdevel

openssl (0.9.7b-1) unstable; urgency=high

   * upstream security fix
    - Countermeasure against the Klima-Pokorny-Rosa extension of
      Bleichbacher's attack on PKCS #1 v1.5 padding: treat
      a protocol version number mismatch like a decryption error
      in ssl3_get_client_key_exchange (ssl/s3_srvr.c). (CAN-2003-0131)
     (closes: #189087)
    - Turn on RSA blinding by default in the default implementation
      to avoid a timing attack. Applications that don't want it can call
      RSA_blinding_off() or use the new flag RSA_FLAG_NO_BLINDING.
      They would be ill-advised to do so in most cases. (CAN-2003-0147)
    - Change RSA blinding code so that it works when the PRNG is not
      seeded (in this case, the secret RSA exponent is abused as
      an unpredictable seed -- if it is not unpredictable, there
      is no point in blinding anyway).  Make RSA blinding thread-safe
      by remembering the creator's thread ID in rsa->blinding and
      having all other threads use local one-time blinding factors
      (this requires more computation than sharing rsa->blinding, but
      avoids excessive locking; and if an RSA object is not shared
      between threads, blinding will still be very fast).
     for more details see the CHANGES file

openssl (0.9.7a-1) unstable; urgency=high

   * upstream Security fix
     - In ssl3_get_record (ssl/s3_pkt.c), minimize information leaked
       via timing by performing a MAC computation even if incorrrect
       block cipher padding has been found.  This is a countermeasure
       against active attacks where the attacker has to distinguish
       between bad padding and a MAC verification error. (CAN-2003-0078)
     for more details see the CHANGES file

openssl (0.9.7-4) unstable; urgency=low

   * use DH_COMPAT=3 to build
   * move i686 to i686/cmov to fix problems on Via C3. For that to work we
     have to depend on the newest libc6 on i386 (closes: #177891)
   * fix bug in ui_util.c (closes: #177615)
   * fix typo in md5.h (closes: #178112)

openssl (0.9.7-3) unstable; urgency=low

   * enable build of ultrasparc code on non ultrasparc machines (closes:

openssl (0.9.7-2) unstable; urgency=low

   * include changes between 0.9.6g-9 and -10
     * fix problem in build-process on i386 with libc6 version number

openssl (0.9.7-1) unstable; urgency=low

   * new upstream
     * includes engine support
     * a lot of bugfixes and enhancements, see the CHANGES file
     * include AES encryption
     * makes preview of certificate configurable (closes: #176059)
     * fix x509 manpage (closes: #168070)
     * fix declaration of ERR_load_PEM_string in pem.h (closes: #141360)


openssl (0.9.6g-10) unstable; urgency=low

   * fix problem in build-process on i386 with libc6 version number
     (closes: #167096)

openssl (0.9.6g-9) unstable; urgency=low

   * fix typo in i386 libc6 depend (sigh) (closes: #163848)

openssl (0.9.6g-8) unstable; urgency=low

   * fix libc6 depends. Only needed for i386 (closes: #163701)
   * remove SHLIB section for bsds from Configure (closes: #163585)

openssl (0.9.6g-7) unstable; urgency=low

   * enable i686 optimisation and depend on fixed glibc (closes: #163500)
   * remove transition package ssleay
   * include optimisation vor sparcv8 (closes: #139996)
   * improve optimisation vor sparcv9

openssl (0.9.6g-6) unstable; urgency=low

   * temporarily disable i686 optimisation (See bug in glibc #161788)

openssl (0.9.6g-5) unstable; urgency=low

   * i486 can use i586 assembler
   * include set -xe in the for loops in the rules files to make it abort
     on error (closes: #161768)

openssl (0.9.6g-4) unstable; urgency=low

   * fix optimization for alpha and sparc
   * add optimization for i486

openssl (0.9.6g-3) unstable; urgency=low

   * add optimized libraries for i586, i686, ev4, ev5 and v9 (closes: #139783)

openssl (0.9.6g-2) unstable; urgency=low

   * fix manpage names (closes: #156717, #156718, #156719, #156721)

openssl (0.9.6g-1) unstable; urgency=low

   * new upstream version
   * Use proper error handling instead of 'assertions' in buffer
     overflow checks added in 0.9.6e.  This prevents DoS (the
     assertions could call abort()). (closes: #155985, #156495)
   * Fix ASN1 checks. Check for overflow by comparing with LONG_MAX
     and get fix the header length calculation.
   * include support for new sh* architectures (closes: #155117)

openssl (0.9.6e-1) unstable; urgency=high

   * fixes remote exploits (see DSA-136-1)

openssl (0.9.6d-1) unstable; urgency=low

   * new upstream (minor) version
   * includes Configure lines for debian-*bsd-* (closes: #130413)
   * fix wrong prototype for BN_pseudo_rand_range in BN_rand(3ssl) (closes:
   * fix typos in package description (closes: #141469)
   * fix typo in SSL_CTX_set_cert_store manpage (closes: #135297)

openssl (0.9.6c-2) unstable; urgency=low

   * moved from non-US to main

openssl (0.9.6c-1) unstable; urgency=low

   * new upstream version with a lot of bugfixes
   * remove directory /usr/include/openssl from openssl package (closes:
     bug #121226)
   * remove selfdepends from libssl0.9.6
   * link openssl binary shared again


openssl (0.9.6b-4) unstable; urgency=low

   * build with -D_REENTRANT for threads support on all architectures
     (closes: #112329, #119239)

openssl (0.9.6b-3) unstable; urgency=low

   * disable idea, mdc2 and rc5 because they are not free (closes: #65368)
   * ready to be moved from nonus to main

openssl (0.9.6b-2) unstable; urgency=high

   * fix definition of crypt in des.h (closes: #107533)
   * fix descriptions (closes: #109503)

openssl (0.9.6b-1) unstable; urgency=medium

   * new upstream fixes some security issues (closes: #105835, #100146)
   * added support for s390 (closes: #105681)
   * added support for sh (closes: #100003)
   * change priority of libssl096 to standard as ssh depends on it (closes:
   * don't optimize for i486 to support i386. (closes: #104127, #82194)

openssl (0.9.6a-3) unstable; urgency=medium

   * add perl-base to builddeps
   * include static libraries in libssl-dev (closes: #93688)

openssl (0.9.6a-2) unstable; urgency=medium

   * change Architecture of ssleay from any to all (closes: #92913)
   * depend libssl-dev on the exact same version of libssl0.9.6 (closes:
   * remove lib{crypto,ssl}.a from openssl (closes: #93666)
   * rebuild with newer gcc to fix atexit problem (closes: #94036)

openssl (0.9.6a-1) unstable; urgency=medium

   * new upstream, fixes some security bugs (closes: #90584)
   * fix typo in s_server manpage (closes: #89756)

openssl (0.9.6-2) unstable; urgency=low

   * policy: reorganisation of package names: libssl096 -> libssl0.9.6,
     libssl096-dev -> libssl-dev (closes: #83426)
   * libssl0.9.6 drops replaces libssl09 (Closes: #83425)
   * install upstream CHANGES files (Closes: #83430)
   * added support for hppa and ia64 (Closes: #88790)
   * move man3 manpages to libssl-dev (Closes: #87546)
   * fix formating problem in rand_add(1) (Closes: #87547)
   * remove manpage duplicates (Closes: #87545, #74986)
   * make package descriptions clearer (Closes: #83518, #83444)
   * increase default emailAddress_max from 40 to 60 (Closes: #67238)
   * removed RSAREF warning (Closes: #84122)


openssl (0.9.6-1) unstable; urgency=low

   * New upstream version (Thanks to Enrique Zanardi <>)
     (closes: #72388)
   * Add support for debian-hurd (closes: #76032)

openssl (0.9.5a-5) unstable; urgency=low

   * move manpages in standard directories with section ssl (closes:
     #72152, #69809)

openssl (0.9.5a-4) unstable; urgency=low

   * include edg_rand_bytes patch from and for apache-ssl

openssl (0.9.5a-3) unstable; urgency=low

   * fix call to dh_makeshlibs to create correct shlibs file and make
     dependend programs link correctly (closes: Bug#61658)
   * include a note in README.debian concerning the location of the
     subcommand manpages (closes: Bug#69809)

openssl (0.9.5a-2) unstable; urgency=low

   * try to fix the sharedlib problem. change soname of library
   (closes: Bug#4622, #66102, #66538, #66123)

openssl (0.9.5a-1) unstable; urgency=low

   * new upstream version (major changes see file NEWS) (closes: Bug#63976,
     #65239, #65358)
   * new library package libssl095a because of probably changed library
     interface (closes: Bug#46222)
   * added architecture mips and mipsel (closes: Bug#62437, #60366)
   * provide shlibs.local file in build to help build if libraries are not
     yet installed (closes: Bug#63984)

openssl (0.9.4-5) frozen unstable; urgency=medium

   * cleanup of move of doc directories to /usr/share/doc (closes:
   * lintian issues (closes: Bug#49358)
   * move demos from openssl to libssl09-dev (closes: Bug#59201)
   * move to debhelpers

openssl (0.9.4-4) unstable; urgency=medium

   * Added 'debian-arm' in 'Configure'. (closes: Bug#54251, #54766)
   * Fixed Configure for 'debian-m68k' (closes: Bug#53636)


openssl (0.9.4-3) unstable; urgency=low

   * define symbol SSLeay_add_ssl_algorithms for backward compatibility
     (closes: Bug#46882)
   * remove manpages from /usr/doc/openssl (closes: Bug#46791)

openssl (0.9.4-2) unstable; urgency=low

   * include some more docu in pod format (Bug #43933)
   * removed -mv8 from sparc flags (Bug #44769)

openssl (0.9.4-1) unstable; urgency=low

   * new upstream version (Closes: #42926)

openssl (0.9.3a-1) unstable; urgency=low

   * new upstream version (Bug #38345, #38627)
   * sparc is big-endian (Bug #39973)

openssl (0.9.2b-3) unstable; urgency=low

   * correct move conffiles to /etc/ssl (Bug #38570)

openssl (0.9.2b-2) unstable; urgency=low

   * added convenience package ssleay to help upgrade to openssl (Bug
     #37185, #37623, #36326)
   * added some missing dependencies from libssl09 (Bug #36681, #35867,
   * move lib*.so to libssl09-dev (Bug #36761)
   * corrected version numbers of library files
   * introduce link from /usr/lib/ssl to /etc/ssl (Bug #36710)

openssl (0.9.2b-1) unstable; urgency=medium

   * First openssl version

ssleay (0.9.0b-2) unstable; urgency=low

   * Include message about the (not)usage of RSAREF (#24409)
   * Move configfiles from /usr/lib/ssl to /etc/ssl (#26406)
   * Change definitions for sparc (#26487)
   * Added missing dependency (#28591)
   * Make debian/libtool executable (#29708)
   * /etc/ssl/lib/ssleay.cnf is now a confile (#32624)


ssleay (0.9.0b-1) unstable; urgency=low

   * new upstream version (Bug #21227, #25971)
   * build shared libraries with -fPIC (Bug #20027)
   * support sparc architecture (Bug #28467)

ssleay (0.8.1-7) frozen unstable; urgency=high

   * security fix patch to 0.8.1b (bug #24022)

ssleay (0.8.1-6) frozen unstable; urgency=low

   * second try to fix bug #15235 (copyright was still missing)

ssleay (0.8.1-5) frozen unstable; urgency=high

   * changed /dev/random to /dev/urandom (Bug #23169, #17817)
   * copyright contains now the full licence (Bug #15235)
   * fixed bug #19410 (md5sums-lists-nonexisting-file)
   * added demos to /usr/doc (Bug #17372)
   * fixed type in package description (Bug #18969)
   * fixed bug in adding documentation (Bug #21463)
   * added patch for support of debian-powerpc (Bug #21579)


ssleay (0.8.1-4) unstable; urgency=low

   * purged dependency from libc5

ssleay (0.8.1-3) unstable; urgency=low

   * changed packagename libssl to libssl08 to get better dependancies

ssleay (0.8.1-2) unstable; urgency=low

   * linked shared libraries against libc6
   * use /dev/random for randomseed

ssleay (0.8.1-1) unstable; urgency=low

   * new upstream version

ssleay (0.6.6-2) unstable; urgency=low

   * cleanup in diffs
   * removed INSTALL from docs (bug #13205)
   * split libssl and libssl-dev (but #13735)

ssleay (0.6.6-1) unstable; urgency=low

   * New upstream version
   * added shared libraries for libcrypto and libssl

ssleay (0.6.4-2) unstable; urgency=low

   * changed doc filenames from .doc to .txt to be able to read them
     over with webbrowser


ssleay (0.6.4-1) unstable; urgency=low

   * Initial Release.