Accepted openswan 1:2.4.12+dfsg-1.3+lenny2 (source all amd64)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.8
Date: Sat, 18 Jul 2009 19:18:12 +0200
Source: openswan
Binary: openswan openswan-modules-source linux-patch-openswan
Architecture: source all amd64
Version: 1:2.4.12+dfsg-1.3+lenny2
Distribution: stable-security
Urgency: high
Maintainer: Rene Mayrhofer <rmayr@debian.org>
Changed-By: Rene Mayrhofer <rmayr@debian.org>
Description:
linux-patch-openswan - IPSEC Linux kernel support for Openswan
openswan - IPSEC utilities for Openswan
openswan-modules-source - IPSEC kernel modules source for Openswan
Closes: 522112 533837
Changes:
openswan (1:2.4.12+dfsg-1.3+lenny2) stable-security; urgency=high
.
Maintainer-prepared security fix, using patch from Giuseppe Iuculano
<giuseppe@iuculano.it> (many thanks for preparing it!):
* Fix ASN.1 parser bug that allows remote attackers to cause a DoS via an
X.509 certificate with crafted Relative Distinguished Names (RDNs), a
crafted UTCTIME string, or a crafted GENERALIZEDTIME string.
04-CVE-2009-2185.dpatch also cherry-picks commit
483f6bfd4a1b9e900cb352bb4214ec1ce20016b7 from the openswan-2 git to
complete the CVE fix.
Fixes: CVE-2009-2185
Closes: #533837: two denial of service vulnerabilities
* Added patch to fix KLIPS compilation for kernel 2.6.26. Thanks to
Harald Jenny for providing this patch!
Closes: #522112: openswan-modules-source: Fails to build with kernel
2.6.26
Checksums-Sha1:
042d78408306eaf6798d8bb04e435cfe6ad7f46e 1315 openswan_2.4.12+dfsg-1.3+lenny2.dsc
4d2d49a0d6d8d4fee88173bf6adf8e14bf86899c 145354 openswan_2.4.12+dfsg-1.3+lenny2.diff.gz
1f5b8894a7e1a49cc58405e7f8ac2461b152d0e2 537728 openswan-modules-source_2.4.12+dfsg-1.3+lenny2_all.deb
dda6edf2ed7ac05dc8cf3a9fa6b41c74b568de51 613180 linux-patch-openswan_2.4.12+dfsg-1.3+lenny2_all.deb
1f7c1e1fa580c9ae30fabd6668b7460cedb2bf17 1767032 openswan_2.4.12+dfsg-1.3+lenny2_amd64.deb
Checksums-Sha256:
872a15530db35e95a3c17155c6a180aa88a52835b9b13f22322037872757680c 1315 openswan_2.4.12+dfsg-1.3+lenny2.dsc
6da4a777f8489b3ae20dfe16791c4f85837b2882e6fe3584bea03be58a42865e 145354 openswan_2.4.12+dfsg-1.3+lenny2.diff.gz
5891780556188e157bc02f0410acc421bcbb3ae69882da95059efc3491611a4b 537728 openswan-modules-source_2.4.12+dfsg-1.3+lenny2_all.deb
371cf2e6516abc213b6342751ed2d35c66fa4e667628bac42e957ce22bff0d79 613180 linux-patch-openswan_2.4.12+dfsg-1.3+lenny2_all.deb
f1f9c0f8971c5145753dc7b1e1824ff26fe6fda4e89ab5ea49a501c99263828f 1767032 openswan_2.4.12+dfsg-1.3+lenny2_amd64.deb
Files:
2eb502ff966ff81e9da9930889f6199c 1315 net optional openswan_2.4.12+dfsg-1.3+lenny2.dsc
d0ef8b06a64471210268de94f79bfcbe 145354 net optional openswan_2.4.12+dfsg-1.3+lenny2.diff.gz
e0f72fde54078d6fc805fe27f1a4c688 537728 net optional openswan-modules-source_2.4.12+dfsg-1.3+lenny2_all.deb
a589be2a64b1715d209f9c28a5654ea6 613180 net optional linux-patch-openswan_2.4.12+dfsg-1.3+lenny2_all.deb
12f084adacc24ebe4f03c6106b6ecc11 1767032 net optional openswan_2.4.12+dfsg-1.3+lenny2_amd64.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iEYEARECAAYFAkqSdA8ACgkQq7SPDcPCS95VvgCggVj8PWoQzONSARJQOwEjYkXw
ewEAnA2c69wcPmp5H/teIFRVIAWPdnaW
=ve41
-----END PGP SIGNATURE-----
Accepted:
linux-patch-openswan_2.4.12+dfsg-1.3+lenny2_all.deb
to pool/main/o/openswan/linux-patch-openswan_2.4.12+dfsg-1.3+lenny2_all.deb
openswan-modules-source_2.4.12+dfsg-1.3+lenny2_all.deb
to pool/main/o/openswan/openswan-modules-source_2.4.12+dfsg-1.3+lenny2_all.deb
openswan_2.4.12+dfsg-1.3+lenny2.diff.gz
to pool/main/o/openswan/openswan_2.4.12+dfsg-1.3+lenny2.diff.gz
openswan_2.4.12+dfsg-1.3+lenny2.dsc
to pool/main/o/openswan/openswan_2.4.12+dfsg-1.3+lenny2.dsc
openswan_2.4.12+dfsg-1.3+lenny2_amd64.deb
to pool/main/o/openswan/openswan_2.4.12+dfsg-1.3+lenny2_amd64.deb