Anonymous | Login | 2024-04-24 18:39 CEST |
Main | My View | View Issues |
Viewing Issue Simple Details [ Jump to Notes ] | [ View Advanced ] [ Issue History ] [ Print ] | ||||||
ID | Category | Severity | Reproducibility | Date Submitted | Last Update | ||
0005247 | [openssl_utils] upgrade | major | have not tried | 2015-07-09 19:42 | 2015-07-15 09:58 | ||
Reporter | briandking | View Status | public | ||||
Assigned To | jh | ||||||
Priority | normal | Resolution | fixed | ||||
Status | closed | ||||||
Summary | 0005247: Another OpenSSL vulnerability | ||||||
Description |
OpenSSL needs to be upgraded to 1.0.2d / 1.0.1p: http://openssl.org/news/secadv_20150709.txt [^] OpenSSL used as a client does not validate certificates properly. This would affect Apache used as a proxy/reverse proxy, curl, wget, etc. |
||||||
Additional Information | |||||||
Tags | No tags attached. | ||||||
Attached Files | |||||||
|
Notes | |
(0011041) jh (developer) 2015-07-10 11:16 |
new version already pushed to unstable |
(0011042) jh (developer) 2015-07-10 11:17 |
openssl updated to newest version |
Copyright © 2000 - 2008 Mantis Group |