Summary: | <dev-libs/openssl-1.0.2u: rsaz_512_sqr overflow bug on x86_64 (CVE-2019-1551) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | GLSAMaker/CVETool Bot <glsamaker> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | normal | CC: | base-system |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | https://www.openssl.org/news/secadv/20191206.txt | ||
Whiteboard: | A3 [glsa+ cve] | ||
Package list: | Runtime testing required: | --- |
Description
GLSAMaker/CVETool Bot
2019-12-06 16:54:22 UTC
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=c2b642ed1dfc7cb054380769761024dd73a768c6 commit c2b642ed1dfc7cb054380769761024dd73a768c6 Author: Thomas Deutschmann <whissi@gentoo.org> AuthorDate: 2019-12-21 20:30:14 +0000 Commit: Thomas Deutschmann <whissi@gentoo.org> CommitDate: 2019-12-21 20:30:27 +0000 dev-libs/openssl-compat: bump to v1.0.2u Bug: https://bugs.gentoo.org/702176 Package-Manager: Portage-2.3.82, Repoman-2.3.20 Signed-off-by: Thomas Deutschmann <whissi@gentoo.org> dev-libs/openssl-compat/Manifest | 1 + .../openssl-compat/openssl-compat-1.0.2u.ebuild | 246 +++++++++++++++++++++ 2 files changed, 247 insertions(+) https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=4ee264fd167eddcdc37f667af5b667a94ceaee8c commit 4ee264fd167eddcdc37f667af5b667a94ceaee8c Author: Thomas Deutschmann <whissi@gentoo.org> AuthorDate: 2019-12-21 20:28:27 +0000 Commit: Thomas Deutschmann <whissi@gentoo.org> CommitDate: 2019-12-21 20:30:26 +0000 dev-libs/openssl: bump to v1.0.2u Bug: https://bugs.gentoo.org/702176 Package-Manager: Portage-2.3.82, Repoman-2.3.20 Signed-off-by: Thomas Deutschmann <whissi@gentoo.org> dev-libs/openssl/Manifest | 1 + dev-libs/openssl/openssl-1.0.2u.ebuild | 308 +++++++++++++++++++++++++++++++++ 2 files changed, 309 insertions(+) The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=273422f6cae129a4a97402641e81b13db9461ec4 commit 273422f6cae129a4a97402641e81b13db9461ec4 Author: Thomas Deutschmann <whissi@gentoo.org> AuthorDate: 2020-01-01 21:24:50 +0000 Commit: Thomas Deutschmann <whissi@gentoo.org> CommitDate: 2020-01-01 21:25:12 +0000 dev-libs/openssl-compat: security cleanup (#702176) Bug: https://bugs.gentoo.org/702176 Package-Manager: Portage-2.3.84, Repoman-2.3.20 Signed-off-by: Thomas Deutschmann <whissi@gentoo.org> dev-libs/openssl-compat/Manifest | 1 - .../openssl-compat/openssl-compat-1.0.2t-r1.ebuild | 246 --------------------- 2 files changed, 247 deletions(-) https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=617d66b7f218311a247c1b8783d866e2d6325eac commit 617d66b7f218311a247c1b8783d866e2d6325eac Author: Thomas Deutschmann <whissi@gentoo.org> AuthorDate: 2020-01-01 21:23:57 +0000 Commit: Thomas Deutschmann <whissi@gentoo.org> CommitDate: 2020-01-01 21:25:10 +0000 dev-libs/openssl-compat: move stable keywords Bug: https://bugs.gentoo.org/702176 Package-Manager: Portage-2.3.84, Repoman-2.3.20 Signed-off-by: Thomas Deutschmann <whissi@gentoo.org> dev-libs/openssl-compat/openssl-compat-1.0.2u.ebuild | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=2fd3637f1b9e3cee6adf6b7c10d1ecc4ea08071e commit 2fd3637f1b9e3cee6adf6b7c10d1ecc4ea08071e Author: Thomas Deutschmann <whissi@gentoo.org> AuthorDate: 2020-01-01 21:22:39 +0000 Commit: Thomas Deutschmann <whissi@gentoo.org> CommitDate: 2020-01-01 21:25:09 +0000 dev-libs/openssl: security cleanup (#702176) Bug: https://bugs.gentoo.org/702176 Package-Manager: Portage-2.3.84, Repoman-2.3.20 Signed-off-by: Thomas Deutschmann <whissi@gentoo.org> dev-libs/openssl/Manifest | 1 - dev-libs/openssl/openssl-1.0.2t-r1.ebuild | 308 ------------------------------ 2 files changed, 309 deletions(-) https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=5d84fb00a536f5754b7ca8d253fb43c19e2a066d commit 5d84fb00a536f5754b7ca8d253fb43c19e2a066d Author: Thomas Deutschmann <whissi@gentoo.org> AuthorDate: 2020-01-01 21:21:43 +0000 Commit: Thomas Deutschmann <whissi@gentoo.org> CommitDate: 2020-01-01 21:25:08 +0000 dev-libs/openssl: move stable keywords Bug: https://bugs.gentoo.org/702176 Package-Manager: Portage-2.3.84, Repoman-2.3.20 Signed-off-by: Thomas Deutschmann <whissi@gentoo.org> dev-libs/openssl/openssl-1.0.2u.ebuild | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) Added to an existing GLSA request. This issue was resolved and addressed in GLSA 202004-10 at https://security.gentoo.org/glsa/202004-10 by GLSA coordinator Thomas Deutschmann (whissi). |