• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

OpenSSL DER_CHOP Insecure Temporary File Creation Vulnerability

Solution:
Red Hat has released advisory RHSA-2005:476-08 and fixes to address this issue on Red Hat Linux Enterprise platforms. Customers who are affected by this issue are advised to apply the appropriate updates. Customers subscribed to the Red Hat Network may apply the appropriate fixes using the Red Hat Update Agent (up2date). Please see referenced advisory for additional information.

Gentoo has released advisory GLSA 200411-15 and an updated eBuild to address this vulnerability and other issues. Users of the affected package are urged to execute the following commands with superuser privileges to install the update:
emerge --sync
emerge --ask --oneshot --verbose ">=dev-libs/openssl-0.9.7d-r2"

Trustix Linux has released an advisory (TSL-2004-0050) along with fixes dealing with this issue. Please see the referenced advisory for more information.

Ubuntu has released an advisory (USN-24-1) to address this issue. Please see the referenced advisory for more information.

Debian has released advisory DSA 603-1 along with fixes dealing with this issue. Please see the referenced advisory for more information.

MandrakeSoft has issued an advisory (MDKSA-2004:147) along with patched upgrades. Please see the referenced advisory for more information.

Turbolinux has released advisory Turbolinux Security Announcement 31/Jan/2005 to address various issues. Please see the referenced advisory for more information.

RedHat Fedora Linux has released advisory FEDORA-2005-389 addressing this issue for Fedora Core 3. Please see the referenced advisory for details on obtaining and applying the appropriate updates.

SGI has released advisory 20050602-01-U to address this, and other issues for SGI Advanced Linux Environment 3, and SGI ProPack 3 Service Pack 5. Please see the referenced advisory for further information.

Avaya has released advisory ASA-2005-170 detailing vulnerable Avaya products. Please see the referenced advisory for further information.


OpenSSL Project OpenSSL 0.9.6 c

• Debian libssl-dev_0.9.6c-2.woody.7_arm.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/o/openssl/libssl-dev_0.9. 6c-2.woody.7_arm.deb


• Debian libssl-dev_0.9.6c-2.woody.7_hppa.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/o/openssl/libssl-dev_0.9. 6c-2.woody.7_hppa.deb


• Debian libssl-dev_0.9.6c-2.woody.7_i386.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/o/openssl/libssl-dev_0.9. 6c-2.woody.7_i386.deb


• Debian libssl-dev_0.9.6c-2.woody.7_ia64.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/o/openssl/libssl-dev_0.9. 6c-2.woody.7_ia64.deb


• Debian libssl-dev_0.9.6c-2.woody.7_m68k.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/o/openssl/libssl-dev_0.9. 6c-2.woody.7_m68k.deb


• Debian libssl-dev_0.9.6c-2.woody.7_mips.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/o/openssl/libssl-dev_0.9. 6c-2.woody.7_mips.deb


• Debian libssl-dev_0.9.6c-2.woody.7_mipsel.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/o/openssl/libssl-dev_0.9. 6c-2.woody.7_mipsel.deb


• Debian libssl-dev_0.9.6c-2.woody.7_powerpc.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/o/openssl/libssl-dev_0.9. 6c-2.woody.7_powerpc.deb


• Debian libssl-dev_0.9.6c-2.woody.7_s390.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/o/openssl/libssl-dev_0.9. 6c-2.woody.7_s390.deb


• Debian libssl-dev_0.9.6c-2.woody.7_sparc.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/o/openssl/libssl-dev_0.9. 6c-2.woody.7_sparc.deb


• Debian libssl0.9.6_0.9.6c-2.woody.7_alpha.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/o/openssl/libssl0.9.6_0.9 .6c-2.woody.7_alpha.deb


• Debian libssl0.9.6_0.9.6c-2.woody.7_arm.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/o/openssl/libssl0.9.6_0.9 .6c-2.woody.7_arm.deb


• Debian libssl0.9.6_0.9.6c-2.woody.7_hppa.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/o/openssl/libssl0.9.6_0.9 .6c-2.woody.7_hppa.deb


• Debian libssl0.9.6_0.9.6c-2.woody.7_i386.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/o/openssl/libssl0.9.6_0.9 .6c-2.woody.7_i386.deb


• Debian libssl0.9.6_0.9.6c-2.woody.7_ia64.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/o/openssl/libssl0.9.6_0.9 .6c-2.woody.7_ia64.deb


• Debian libssl0.9.6_0.9.6c-2.woody.7_m68k.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/o/openssl/libssl0.9.6_0.9 .6c-2.woody.7_m68k.deb


• Debian libssl0.9.6_0.9.6c-2.woody.7_mips.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/o/openssl/libssl0.9.6_0.9 .6c-2.woody.7_mips.deb


• Debian libssl0.9.6_0.9.6c-2.woody.7_mipsel.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/o/openssl/libssl0.9.6_0.9 .6c-2.woody.7_mipsel.deb


• Debian libssl0.9.6_0.9.6c-2.woody.7_powerpc.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/o/openssl/libssl0.9.6_0.9 .6c-2.woody.7_powerpc.deb


• Debian libssl0.9.6_0.9.6c-2.woody.7_s390.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/o/openssl/libssl0.9.6_0.9 .6c-2.woody.7_s390.deb


• Debian libssl0.9.6_0.9.6c-2.woody.7_sparc.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/o/openssl/libssl0.9.6_0.9 .6c-2.woody.7_sparc.deb


• Debian openssl_0.9.6c-2.woody.7_alpha.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/o/openssl/openssl_0.9.6c- 2.woody.7_alpha.deb


• Debian openssl_0.9.6c-2.woody.7_arm.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/o/openssl/openssl_0.9.6c- 2.woody.7_arm.deb


• Debian openssl_0.9.6c-2.woody.7_hppa.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/o/openssl/openssl_0.9.6c- 2.woody.7_hppa.deb


• Debian openssl_0.9.6c-2.woody.7_i386.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/o/openssl/openssl_0.9.6c- 2.woody.7_i386.deb


• Debian openssl_0.9.6c-2.woody.7_ia64.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/o/openssl/openssl_0.9.6c- 2.woody.7_ia64.deb


• Debian openssl_0.9.6c-2.woody.7_m68k.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/o/openssl/openssl_0.9.6c- 2.woody.7_m68k.deb


• Debian openssl_0.9.6c-2.woody.7_mips.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/o/openssl/openssl_0.9.6c- 2.woody.7_mips.deb


• Debian openssl_0.9.6c-2.woody.7_mipsel.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/o/openssl/openssl_0.9.6c- 2.woody.7_mipsel.deb


• Debian openssl_0.9.6c-2.woody.7_powerpc.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/o/openssl/openssl_0.9.6c- 2.woody.7_powerpc.deb


• Debian openssl_0.9.6c-2.woody.7_s390.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/o/openssl/openssl_0.9.6c- 2.woody.7_s390.deb


• Debian openssl_0.9.6c-2.woody.7_sparc.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/o/openssl/openssl_0.9.6c- 2.woody.7_sparc.deb


• Debian ssleay_0.9.6c-2.woody.7_all.deb
  Debian GNU/Linux 3.0 alias woody
  http://security.debian.org/pool/updates/main/o/openssl/ssleay_0.9.6c-2 .woody.7_all.deb

OpenSSL Project OpenSSL 0.9.6

• Trustix openssl-0.9.6-17tr.i586.rpm
  Secure Linux 1.5
  ftp://ftp.trustix.org/pub/trustix/updates/


• Trustix openssl-devel-0.9.6-17tr.i586.rpm
  Trustix Secure Linux 1.5
  ftp://ftp.trustix.org/pub/trustix/updates/


• Trustix openssl-python-0.9.6-17tr.i586.rpm
  Trustix Secure Linux 1.5
  ftp://ftp.trustix.org/pub/trustix/updates/


• Trustix openssl-support-0.9.6-17tr.i586.rpm
  Trustix Secure Linux 1.5
  ftp://ftp.trustix.org/pub/trustix/updates/

OpenSSL Project OpenSSL 0.9.6 m

• TurboLinux openssl-0.9.6m-2.i586.rpm
  ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Server/7/upd ates/RPMS/openssl-0.9.6m-2.i586.rpm


• TurboLinux openssl-0.9.6m-2.i586.rpm
  ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Server/8/upd ates/RPMS/openssl-0.9.6m-2.i586.rpm


• TurboLinux openssl-0.9.6m-2.i586.rpm
  ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Workstation/ 7/updates/RPMS/openssl-0.9.6m-2.i586.rpm


• TurboLinux openssl-0.9.6m-2.i586.rpm
  ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Workstation/ 8/updates/RPMS/openssl-0.9.6m-2.i586.rpm


• TurboLinux openssl-devel-0.9.6m-2.i586.rpm
  ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Server/7/upd ates/RPMS/openssl-devel-0.9.6m-2.i586.rpm


• TurboLinux openssl-devel-0.9.6m-2.i586.rpm
  ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Server/8/upd ates/RPMS/openssl-devel-0.9.6m-2.i586.rpm


• TurboLinux openssl-devel-0.9.6m-2.i586.rpm
  ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Workstation/ 7/updates/RPMS/openssl-devel-0.9.6m-2.i586.rpm


• TurboLinux openssl-devel-0.9.6m-2.i586.rpm
  ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Workstation/ 8/updates/RPMS/openssl-devel-0.9.6m-2.i586.rpm

OpenSSL Project OpenSSL 0.9.6 i

• Mandrake libopenssl0-0.9.6i-1.7.M82mdk.i586.rpm
  Mandrake Multi Network Firewall 8.2
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake libopenssl0-0.9.6i-1.8.C21mdk.i586.rpm
  Mandrake Corporate Server 2.1
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake libopenssl0-0.9.6i-1.8.C21mdk.x86_64.rpm
  Mandrake Corporate Server 2.1/x86_64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake libopenssl0-devel-0.9.6i-1.7.C21mdk.x86_64.rpm
  Corporate Server 2.1/x86_64:
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake libopenssl0-devel-0.9.6i-1.8.C21mdk.i586.rpm
  Mandrake Corporate Server 2.1
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake libopenssl0-devel-0.9.6i-1.8.C21mdk.x86_64.rpm
  Mandrake Corporate Server 2.1/x86_64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake libopenssl0-static-devel-0.9.6i-1.7.C21mdk.x86_64.rpm
  Corporate Server 2.1/x86_64:
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake libopenssl0-static-devel-0.9.6i-1.8.C21mdk.i586.rpm
  Mandrake Corporate Server 2.1
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake libopenssl0-static-devel-0.9.6i-1.8.C21mdk.x86_64.rpm
  Mandrake Corporate Server 2.1/x86_64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake openssl-0.9.6i-1.7.M82mdk.i586.rpm
  Mandrake Multi Network Firewall 8.2
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake openssl-0.9.6i-1.8.C21mdk.i586.rpm
  Mandrake Corporate Server 2.1
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake openssl-0.9.6i-1.8.C21mdk.x86_64.rpm
  Mandrake Corporate Server 2.1/x86_64
  http://www.mandrakesecure.net/en/ftp.php

OpenSSL Project OpenSSL 0.9.7 c

• Mandrake lib64openssl0.9.7-0.9.7c-3.1.100mdk.amd64.rpm
  Mandrake Linux 10.0/AMD64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake lib64openssl0.9.7-devel-0.9.7c-3.1.100mdk.amd64.rpm
  Mandrake Linux 10.0/AMD64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake lib64openssl0.9.7-static-devel-0.9.7c-3.1.100mdk.amd64.rpm
  Mandrake Linux 10.0/AMD64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake libopenssl0.9.7-0.9.7c-3.1.100mdk.i586.rpm
  Mandrake Linux 10.0
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake libopenssl0.9.7-devel-0.9.7c-3.1.100mdk.i586.rpm
  Mandrake Linux 10.0
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake libopenssl0.9.7-static-devel-0.9.7c-3.1.100mdk.i586.rpm
  Mandrake Linux 10.0
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake openssl-0.9.7c-3.1.100mdk.amd64.rpm
  Mandrake Linux 10.0/AMD64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake openssl-0.9.7c-3.1.100mdk.i586.rpm
  Mandrake Linux 10.0
  http://www.mandrakesecure.net/en/ftp.php


• Trustix openssl-0.9.7c-14tr.i586.rpm
  Trustix Secure Linux 2.1 & Enterprise Server 2
  ftp://ftp.trustix.org/pub/trustix/updates/


• Trustix openssl-0.9.7c-3tr.i586.rpm
  Trustix Secure Linux 2.0
  ftp://ftp.trustix.org/pub/trustix/updates/


• Trustix openssl-devel-0.9.7c-14tr.i586.rpm
  Trustix Secure Linux 2.1 & Enterprise Server 2
  ftp://ftp.trustix.org/pub/trustix/updates/


• Trustix openssl-devel-0.9.7c-3tr.i586.rpm
  Trustix Secure Linux 2.0
  ftp://ftp.trustix.org/pub/trustix/updates/


• Trustix openssl-python-0.9.7c-14tr.i586.rpm
  Trustix Secure Linux 2.1 & Enterprise Server 2
  ftp://ftp.trustix.org/pub/trustix/updates/


• Trustix openssl-python-0.9.7c-3tr.i586.rpm
  Trustix Secure Linux 2.0
  ftp://ftp.trustix.org/pub/trustix/updates/


• Trustix openssl-support-0.9.7c-14tr.i586.rpm
  Trustix Secure Linux 2.1 & Enterprise Server 2
  ftp://ftp.trustix.org/pub/trustix/updates/


• Trustix openssl-support-0.9.7c-3tr.i586.rpm
  Trustix Secure Linux 2.0
  ftp://ftp.trustix.org/pub/trustix/updates/

OpenSSL Project OpenSSL 0.9.7 d

• Mandrake lib64openssl0.9.7-0.9.7d-1.1.101mdk.x86_64.rpm
  Mandrake Linux 10.1/x86_64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake lib64openssl0.9.7-devel-0.9.7d-1.1.101mdk.x86_64.rpm
  Mandrake Linux 10.1/x86_64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake lib64openssl0.9.7-static-devel-0.9.7d-1.1.101mdk.x86_64.rpm
  Mandrake Linux 10.1/x86_64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake libopenssl0.9.7-0.9.7d-1.1.101mdk.i586.rpm
  Mandrake Linux 10.1
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake libopenssl0.9.7-devel-0.9.7d-1.1.101mdk.i586.rpm
  Mandrake Linux 10.1
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake libopenssl0.9.7-static-devel-0.9.7d-1.1.101mdk.i586.rpm
  Mandrake Linux 10.1
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake openssl-0.9.7d-1.1.101mdk.i586.rpm
  Mandrake Linux 10.1
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake openssl-0.9.7d-1.1.101mdk.x86_64.rpm
  Mandrake Linux 10.1/x86_64
  http://www.mandrakesecure.net/en/ftp.php


• TurboLinux openssl-0.9.7d-2.i586.rpm
  ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Desktop/10/u pdates/RPMS/openssl-0.9.7d-2.i586.rpm


• TurboLinux openssl-0.9.7d-2.i586.rpm
  ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Server/10/up dates/RPMS/openssl-0.9.7d-2.i586.rpm


• TurboLinux openssl-compat-0.9.6m-2.i586.rpm
  ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Desktop/10/u pdates/RPMS/openssl-compat-0.9.6m-2.i586.rpm


• TurboLinux openssl-compat-0.9.6m-2.i586.rpm
  ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Server/10/up dates/RPMS/openssl-compat-0.9.6m-2.i586.rpm


• TurboLinux openssl-devel-0.9.7d-2.i586.rpm
  ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Desktop/10/u pdates/RPMS/openssl-devel-0.9.7d-2.i586.rpm


• TurboLinux openssl-devel-0.9.7d-2.i586.rpm
  ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Server/10/up dates/RPMS/openssl-devel-0.9.7d-2.i586.rpm


• Ubuntu libssl-dev_0.9.7d-3ubuntu0.1_amd64.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl-dev_0.9.7 d-3ubuntu0.1_amd64.deb


• Ubuntu libssl-dev_0.9.7d-3ubuntu0.1_i386.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl-dev_0.9.7 d-3ubuntu0.1_i386.deb


• Ubuntu libssl-dev_0.9.7d-3ubuntu0.1_powerpc.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl-dev_0.9.7 d-3ubuntu0.1_powerpc.deb


• Ubuntu libssl0.9.7_0.9.7d-3ubuntu0.1_amd64.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl0.9.7_0.9. 7d-3ubuntu0.1_amd64.deb


• Ubuntu libssl0.9.7_0.9.7d-3ubuntu0.1_i386.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl0.9.7_0.9. 7d-3ubuntu0.1_i386.deb


• Ubuntu libssl0.9.7_0.9.7d-3ubuntu0.1_powerpc.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl0.9.7_0.9. 7d-3ubuntu0.1_powerpc.deb


• Ubuntu openssl_0.9.7d-3ubuntu0.1_amd64.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl_0.9.7d-3 ubuntu0.1_amd64.deb


• Ubuntu openssl_0.9.7d-3ubuntu0.1_i386.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl_0.9.7d-3 ubuntu0.1_i386.deb


• Ubuntu openssl_0.9.7d-3ubuntu0.1_powerpc.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl_0.9.7d-3 ubuntu0.1_powerpc.deb