OpenCSW Bug Tracker

Viewing Issue Simple Details Jump to Notes ] View Advanced ] Issue History ] Print ]
ID Category Severity Reproducibility Date Submitted Last Update
0005197 [openssl_utils] upgrade major have not tried 2014-08-07 20:28 2014-08-09 00:38
Reporter briandking View Status public  
Assigned To yann
Priority normal Resolution fixed  
Status closed  
Summary 0005197: More OpenSSL Security Vulnerabilities require updating to 1.0.1i
Description National Cyber Awareness System:
Open SSL Patches Nine Vulnerabilities
08/07/2014 01:19 PM EDT

Original release date: August 07, 2014
OpenSSL has released updates patching nine vulnerabilities, some of which may allow an attacker to cause a Denial of Service (DoS) condition or force the client to revert to a less secure Transport Layer Security (TLS) 1.0 protocol. The following updates are available:
    -OpenSSL 0.9.8 users should upgrade to 0.9.8zb
   - OpenSSL 1.0.0 users should upgrade to 1.0.0n
   - OpenSSL 1.0.1 users should upgrade to 1.0.1i
US-CERT recommends users and administrators review the OpenSSL Security Advisory for additional information and apply the necessary updates.
Additional Information
Tags No tags attached.
Attached Files

- Relationships

-  Notes
yann (developer)
2014-08-09 00:38

Done :)

Copyright © 2000 - 2008 Mantis Group
Powered by Mantis Bugtracker