blob: 3235816304f8239a5a1d5a99d6a55029c71bffc0 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
|
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN">
<HTML>
<HEAD>
<TITLE> [Mageia-dev] Freeze push or not? openssl-1.0.1d
</TITLE>
<LINK REL="Index" HREF="index.html" >
<LINK REL="made" HREF="mailto:mageia-dev%40mageia.org?Subject=Re%3A%20%5BMageia-dev%5D%20Freeze%20push%20or%20not%3F%20openssl-1.0.1d&In-Reply-To=%3Cloom.20130206T204953-662%40post.gmane.org%3E">
<META NAME="robots" CONTENT="index,nofollow">
<META http-equiv="Content-Type" content="text/html; charset=us-ascii">
<LINK REL="Previous" HREF="022554.html">
<LINK REL="Next" HREF="022620.html">
</HEAD>
<BODY BGCOLOR="#ffffff">
<H1>[Mageia-dev] Freeze push or not? openssl-1.0.1d</H1>
<B>David Walser</B>
<A HREF="mailto:mageia-dev%40mageia.org?Subject=Re%3A%20%5BMageia-dev%5D%20Freeze%20push%20or%20not%3F%20openssl-1.0.1d&In-Reply-To=%3Cloom.20130206T204953-662%40post.gmane.org%3E"
TITLE="[Mageia-dev] Freeze push or not? openssl-1.0.1d">luigiwalser at yahoo.com
</A><BR>
<I>Wed Feb 6 20:50:52 CET 2013</I>
<P><UL>
<LI>Previous message: <A HREF="022554.html">[Mageia-dev] Freeze push or not? openssl-1.0.1d
</A></li>
<LI>Next message: <A HREF="022620.html">[Mageia-dev] Freeze push or not? openssl-1.0.1d
</A></li>
<LI> <B>Messages sorted by:</B>
<a href="date.html#22555">[ date ]</a>
<a href="thread.html#22555">[ thread ]</a>
<a href="subject.html#22555">[ subject ]</a>
<a href="author.html#22555">[ author ]</a>
</LI>
</UL>
<HR>
<!--beginarticle-->
<PRE>FundaWang <<A HREF="https://www.mageia.org/mailman/listinfo/mageia-dev">fundawang at ...</A>> writes:
><i> Hello, would pushing openssl 1.0.1d for three CVE security issues[1] a good
</I>idea?  FYI, currently
><i> openssl is listed as unmaintained in our packagers' database, but I've seen
</I>that guillomovitch are touch
><i> this package recently.
</I>><i> [1]: <A HREF="http://www.openssl.org/news/secadv_20130205.txt">http://www.openssl.org/news/secadv_20130205.txt</A>
</I>
Here's an article with more info on the first security issue fixed:
<A HREF="http://arstechnica.com/security/2013/02/lucky-thirteen-attack-snarfs-cookies-protected-by-ssl-encryption/">http://arstechnica.com/security/2013/02/lucky-thirteen-attack-snarfs-cookies-protected-by-ssl-encryption/</A>
</PRE>
<!--endarticle-->
<HR>
<P><UL>
<!--threads-->
<LI>Previous message: <A HREF="022554.html">[Mageia-dev] Freeze push or not? openssl-1.0.1d
</A></li>
<LI>Next message: <A HREF="022620.html">[Mageia-dev] Freeze push or not? openssl-1.0.1d
</A></li>
<LI> <B>Messages sorted by:</B>
<a href="date.html#22555">[ date ]</a>
<a href="thread.html#22555">[ thread ]</a>
<a href="subject.html#22555">[ subject ]</a>
<a href="author.html#22555">[ author ]</a>
</LI>
</UL>
<hr>
<a href="https://www.mageia.org/mailman/listinfo/mageia-dev">More information about the Mageia-dev
mailing list</a><br>
</body></html>
|
