Anonymous | Login | 2024-04-19 11:24 CEST |
Main | My View | View Issues |
Viewing Issue Simple Details [ Jump to Notes ] | [ View Advanced ] [ Issue History ] [ Print ] | ||||||
ID | Category | Severity | Reproducibility | Date Submitted | Last Update | ||
0005162 | [libssl1_0_0] | major | have not tried | 2014-04-08 16:05 | 2014-06-06 14:09 | ||
Reporter | briandking | View Status | public | ||||
Assigned To | yann | ||||||
Priority | normal | Resolution | fixed | ||||
Status | closed | ||||||
Summary | 0005162: OpenSSL "HeartBleed" vulnerability - http://www.kb.cert.org/vuls/id/720951 [^] | ||||||
Description |
OpenSSL 1.0.1f has a serious security flaw and requires immediate updating to 1.0.1g. References: http://www.openssl.org/news/secadv_20140407.txt [^] http://www.kb.cert.org/vuls/id/720951 [^] |
||||||
Additional Information | |||||||
Tags | No tags attached. | ||||||
Attached Files | |||||||
|
Notes | |
(0010794) maciej (reporter) 2014-04-08 16:11 |
First attempt failed: 1.0.1g does not build on Solaris. |
(0010795) yann (developer) 2014-04-08 19:00 |
Hi, The last openssl packages are already available in my experimental repository. You can grab them using the following line: pkgutil -t http://buildfarm.opencsw.org/opencsw/experimental/yann [^] -Uu I am currently making sure they work fine and I will then push them to unstable. Yann |
(0010796) yann (developer) 2014-04-08 19:38 |
The packages have just been uploaded in the unstable repository. They should be soon mirrored on all the mirrors. |
(0010797) briandking (reporter) 2014-04-10 01:59 |
Thanks for the quick response. We are testing the packages now and they seem fine. |
(0010798) yann (developer) 2014-04-10 21:22 |
The new version has been uploaded in all affected releases. I am closing this bug. |
Copyright © 2000 - 2008 Mantis Group |