Public bug reported: Problem Description: Loading and initializing the OpenSSL configuration twice causes ibmca to prematurely destroy global data. This then causes crashes in applications that do this. It might happen if an application first initializes OpenSSls libcrypto and then libssl.
Solution: Please backport https://github.com/juergenchrist/openssl-ibmca/commit/40928425d848827fa8427d677e37178ab3b57e50 to fix this problem. focal (20.04LTS) (libs): 2.1.0-0ubuntu1 [ports]: s390x groovy (20.10) (libs): 2.1.1-0ubuntu1 [ports]: s390x hirsute (21.04) (libs): 2.1.1-0ubuntu1 [ports]: s390x git commit applies here cleanly. impish (libs): 2.1.2-0ubuntu1 [ports]: s390x git commit should already be contained in this. So no need for another patch. ** Affects: openssl-ibmca (Ubuntu) Importance: Undecided Assignee: Skipper Bug Screeners (skipper-screen-team) Status: New ** Tags: architecture-s39064 bugnameltc-192575 severity-critical targetmilestone-inin2104 ** Tags added: architecture-s39064 bugnameltc-192575 severity-critical targetmilestone-inin2104 ** Changed in: ubuntu Assignee: (unassigned) => Skipper Bug Screeners (skipper-screen-team) ** Package changed: ubuntu => linux (Ubuntu) -- You received this bug notification because you are a member of Kernel Packages, which is subscribed to linux in Ubuntu. https://bugs.launchpad.net/bugs/1926960 Title: [Ubuntu 21.04] - OpenSSL 1.1.1g function EC_KEY_set_group() causes illegal instruction SIGILL in file crypto/ec/ec_key:477 (openssl- ibmca) Status in openssl-ibmca package in Ubuntu: New Bug description: Problem Description: Loading and initializing the OpenSSL configuration twice causes ibmca to prematurely destroy global data. This then causes crashes in applications that do this. It might happen if an application first initializes OpenSSls libcrypto and then libssl. Solution: Please backport https://github.com/juergenchrist/openssl-ibmca/commit/40928425d848827fa8427d677e37178ab3b57e50 to fix this problem. focal (20.04LTS) (libs): 2.1.0-0ubuntu1 [ports]: s390x groovy (20.10) (libs): 2.1.1-0ubuntu1 [ports]: s390x hirsute (21.04) (libs): 2.1.1-0ubuntu1 [ports]: s390x git commit applies here cleanly. impish (libs): 2.1.2-0ubuntu1 [ports]: s390x git commit should already be contained in this. So no need for another patch. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/openssl-ibmca/+bug/1926960/+subscriptions -- Mailing list: https://launchpad.net/~kernel-packages Post to : kernel-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~kernel-packages More help : https://help.launchpad.net/ListHelp
