|
Viewing Issue Simple Details
[ Jump to Notes ]
|
[ View Advanced ]
[ Issue History ]
[ Print ]
|
|
ID |
Category |
Severity |
Reproducibility |
Date Submitted |
Last Update |
|
0005247 |
[openssl_utils] upgrade |
major |
have not tried |
2015-07-09 19:42 |
2015-07-15 09:58 |
|
|
Reporter |
briandking |
View Status |
public |
|
|
Assigned To |
jh |
|
Priority |
normal |
Resolution |
fixed |
|
|
Status |
closed |
|
|
|
|
|
Summary |
0005247: Another OpenSSL vulnerability |
|
Description |
OpenSSL needs to be upgraded to 1.0.2d / 1.0.1p:
http://openssl.org/news/secadv_20150709.txt [^]
OpenSSL used as a client does not validate certificates properly. This would affect Apache used as a proxy/reverse proxy, curl, wget, etc. |
|
Additional Information |
|
| Tags |
No tags attached. |
|
|
Attached Files |
|
|
|
Relationships 
