[Pkg-openssl-changes] r424 - in openssl/branches/lenny: crypto/evp debian ssl

Tue Aug 11 20:51:22 UTC 2009

Author: kroeckx
Date: 2009-08-11 20:51:22 +0000 (Tue, 11 Aug 2009)
New Revision: 424

Modified:
   openssl/branches/lenny/crypto/evp/c_alld.c
   openssl/branches/lenny/debian/changelog
   openssl/branches/lenny/ssl/ssl_algs.c
Log:
Remove MD2 from digest algorithm table.  (CVE-2009-2409) (Closes: #539899)


Modified: openssl/branches/lenny/crypto/evp/c_alld.c
===================================================================

--- openssl/branches/lenny/crypto/evp/c_alld.c	2009-08-11 20:50:39 UTC (rev 423)
+++ openssl/branches/lenny/crypto/evp/c_alld.c	2009-08-11 20:51:22 UTC (rev 424)
@@ -64,9 +64,6 @@
 
 void OpenSSL_add_all_digests(void)
 	{
-#ifndef OPENSSL_NO_MD2
-	EVP_add_digest(EVP_md2());
-#endif
 #ifndef OPENSSL_NO_MD4
 	EVP_add_digest(EVP_md4());
 #endif

Modified: openssl/branches/lenny/debian/changelog
===================================================================
--- openssl/branches/lenny/debian/changelog	2009-08-11 20:50:39 UTC (rev 423)
+++ openssl/branches/lenny/debian/changelog	2009-08-11 20:51:22 UTC (rev 424)
@@ -1,3 +1,9 @@
+openssl (0.9.8g-15+lenny4) stable-security; urgency=low
+
+  * Remove MD2 from digest algorithm table.  (CVE-2009-2409) (Closes: #539899)
+
+ -- Kurt Roeckx <kurt at roeckx.be>  Tue, 11 Aug 2009 22:48:02 +0200
+
 openssl (0.9.8g-15+lenny3) stable-security; urgency=low
 
   * Fix DoS via a DTLS ChangeCipherSpec packet that occurs before ClientHello

Modified: openssl/branches/lenny/ssl/ssl_algs.c
===================================================================
--- openssl/branches/lenny/ssl/ssl_algs.c	2009-08-11 20:50:39 UTC (rev 423)
+++ openssl/branches/lenny/ssl/ssl_algs.c	2009-08-11 20:51:22 UTC (rev 424)
@@ -92,9 +92,6 @@
 	EVP_add_cipher(EVP_seed_cbc());
 #endif
 
-#ifndef OPENSSL_NO_MD2
-	EVP_add_digest(EVP_md2());
-#endif
 #ifndef OPENSSL_NO_MD5
 	EVP_add_digest(EVP_md5());
 	EVP_add_digest_alias(SN_md5,"ssl2-md5");


