BugTraq
[slackware-security] openssl (SSA:2013-042-01) Feb 12 2013 07:49AM
Slackware Security Team (security slackware com)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

[slackware-security] openssl (SSA:2013-042-01)

New openssl packages are available for Slackware 14.0, and -current to
fix a bug in openssl-1.0.1d.

Here are the details from the Slackware 14.0 ChangeLog:
+--------------------------+
patches/packages/openssl-1.0.1e-i486-1_slack14.0.txz: Upgraded.
This release fixes a regression in openssl-1.0.1d, where the fix for
CVE-2013-0169 caused data corruption on CPUs with AES-NI support.
patches/packages/openssl-solibs-1.0.1e-i486-1_slack14.0.txz: Upgraded.
+--------------------------+

Where to find the new packages:
+-----------------------------+

Thanks to the friendly folks at the OSU Open Source Lab
(http://osuosl.org) for donating FTP and rsync hosting
to the Slackware project! :-)

Also see the "Get Slack" section on http://slackware.com for
additional mirror sites near you.

Updated packages for Slackware 14.0:
ftp://ftp.slackware.com/pub/slackware/slackware-14.0/patches/packages/op
enssl-1.0.1e-i486-1_slack14.0.txz
ftp://ftp.slackware.com/pub/slackware/slackware-14.0/patches/packages/op
enssl-solibs-1.0.1e-i486-1_slack14.0.txz

Updated packages for Slackware x86_64 14.0:
ftp://ftp.slackware.com/pub/slackware/slackware64-14.0/patches/packages/
openssl-1.0.1e-x86_64-1_slack14.0.txz
ftp://ftp.slackware.com/pub/slackware/slackware64-14.0/patches/packages/
openssl-solibs-1.0.1e-x86_64-1_slack14.0.txz

Updated packages for Slackware -current:
ftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/a/open
ssl-solibs-1.0.1e-i486-1.txz
ftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/n/open
ssl-1.0.1e-i486-1.txz

Updated packages for Slackware x86_64 -current:
ftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/a/
openssl-solibs-1.0.1e-x86_64-1.txz
ftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/n/
openssl-1.0.1e-x86_64-1.txz

MD5 signatures:
+-------------+

Slackware 14.0 packages:
4df2d704e649667ef04093faa6920bba openssl-1.0.1e-i486-1_slack14.0.txz
3525b7c4d2e1e54851080f731d70a835 openssl-solibs-1.0.1e-i486-1_slack14.0.txz

Slackware x86_64 14.0 packages:
1e1f09edce11cac2ffcff4b2324fb532 openssl-1.0.1e-x86_64-1_slack14.0.txz
23c1ff47378361c758fb49d1b005eb13 openssl-solibs-1.0.1e-x86_64-1_slack14.0.txz

Slackware -current packages:
1dce1d27bc6dba3f1acd61972b0f2c63 a/openssl-solibs-1.0.1e-i486-1.txz
3ef010a9da36b042d6724ebf00061192 n/openssl-1.0.1e-i486-1.txz

Slackware x86_64 -current packages:
9ef4661b4072028e2fe656d3ba3ed590 a/openssl-solibs-1.0.1e-x86_64-1.txz
0c3bbbb3a280a36081e50b619ae292e4 n/openssl-1.0.1e-x86_64-1.txz

Installation instructions:
+------------------------+

Upgrade the packages as root:
# upgradepkg openssl-1.0.1e-i486-1_slack14.0.txz openssl-solibs-1.0.1e-i486-1_slack14.0.txz

+-----+

Slackware Linux Security Team
http://slackware.com/gpg-key
security (at) slackware (dot) com [email concealed]

+-----------------------------------------------------------------------
-+
| To leave the slackware-security mailing list: |
+-----------------------------------------------------------------------
-+
| Send an email to majordomo (at) slackware (dot) com [email concealed] with this text in the body of |
| the email message: |
| |
| unsubscribe slackware-security |
| |
| You will get a confirmation message back containing instructions to |
| complete the process. Please do not reply to this email address. |
+-----------------------------------------------------------------------
-+
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)

iEYEARECAAYFAlEZqK0ACgkQakRjwEAQIjOiXgCfXxx04CTnV9OqndNkrCPth9kV
O/8An0QAJ7U0G/hKKJSyDpf4Vvc0tUaq
=nnRf
-----END PGP SIGNATURE-----

[ reply ]


 

Privacy Statement
Copyright 2010, SecurityFocus