OpenSSL heads-up
Jacques A. Vidrine
nectar at FreeBSD.org
Tue Sep 30 13:31:52 PDT 2003
Hello Everyone,
You may have seen the recent announcement regarding new OpenSSL
vulnerabilities. <URL: http://www.openssl.org/news/secadv_20030930.txt >
Just thought I'd drop a line to head off the usual questions. :-)
Don't panic. The vulnerability is denial-of-service.
OpenSSL 0.9.7c will be imported into -CURRENT and -STABLE over the
next couple of days, and included in 4.9-RELEASE.
Fixes for the security branches will be backported and incorporated
over the next week.
Don't expect to see a security advisory until most or all of the
commits have been made.
Cheers,
--
Jacques Vidrine . NTT/Verio SME . FreeBSD UNIX . Heimdal
nectar at celabo.org . jvidrine at verio.net . nectar at freebsd.org . nectar at kth.se
More information about the freebsd-security
mailing list