Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in
OpenSSL 1.0.1 and 1.0.2-beta1 SSL/TLS MITM vulnerability
View unanswered posts
View posts from last 24 hours

 
Reply to topic    Gentoo Forums Forum Index Networking & Security
View previous topic :: View next topic  
Author Message
freke
Guru
Guru


Joined: 23 Jan 2003
Posts: 402
Location: Somewhere in Denmark

PostPosted: Thu Jun 05, 2014 6:53 pm    Post subject: OpenSSL 1.0.1 and 1.0.2-beta1 SSL/TLS MITM vulnerability Reply with quote

This basically mean any modestly recent OpenSSL I imagine?

https://www.openssl.org/news/secadv_20140605.txt

Or does it mean it doesn't affect ie. 1.0.1[a-h]
Back to top
View user's profile Send private message
khayyam
Watchman
Watchman


Joined: 07 Jun 2012
Posts: 6228
Location: Room 101

PostPosted: Thu Jun 05, 2014 7:32 pm    Post subject: Re: OpenSSL 1.0.1 and 1.0.2-beta1 SSL/TLS MITM vulnerability Reply with quote

freke wrote:
This basically mean any modestly recent OpenSSL I imagine? Or does it mean it doesn't affect ie. 1.0.1[a-h]

freke ... no, that means that <1.0.1h is effected (along with <1.0.0m and <0.9.8za). There is a bug open, with 1.0.1h-r1 looking to be stablised.

best ... khay
Back to top
View user's profile Send private message
John R. Graham
Administrator
Administrator


Joined: 08 Mar 2005
Posts: 10157
Location: Somewhere over Atlanta, Georgia

PostPosted: Thu Jun 05, 2014 7:57 pm    Post subject: Reply with quote

1.0.1h is stable in the Portage tree as of now.

- John
_________________
I can confirm that I have received between 0 and 499 National Security Letters.
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index Networking & Security All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum