OpenSSL SA
Piotr Kubaj
pkubaj at riseup.net
Sun Aug 31 19:05:49 UTC 2014
On 08/31/2014 17:07, Hassane HYJAZI wrote:
> security/openssl version : 1.0.1_15 ~= 1.01i (+2patch) fixing all of this.
> check commit history at http://www.freshports.org/security/openssl
>
>
>
> Le 30/08/2014 19:47, Piotr Kubaj a écrit :
>> Hello. According to https://www.openssl.org/news/secadv_20140806.txt
>> there's been a known SA in OpenSSL for 24 days. Since then
>> security/openssl has been updated and there have been updates to head
>> and stable{8,9,10} but there hasn't been any FreeBSD SA. Is it that so@
>> has somehow forgotten about it, or the vulnerable features are off in
>> base?
>>
>
I know about security/openssl and have written about it in my first
mail. What I was asking about was a patch to releng/.
On 08/31/2014 17:11, Brandon Vincent wrote:> On Sun, Aug 31, 2014 at
8:05 AM, Piotr Kubaj <pkubaj at riseup.net> wrote:
>> Yes, I wrote in the original mail that there have been updates to
stable/{8,9,10}. What I meant by the lack of SA is that there were no
updates to releng/.
>
> releng/10.1 will not be created until October 3rd. releng/10.0 is frozen.
>
> https://www.freebsd.org/releng/
>
> https://www.freebsd.org/releases/10.1R/schedule.html
>
> Brandon Vincent
>
I know what releng/ is, I have been using FreeBSD for 5 years now for
just about everything. Sure, some people here remember 3.x, but after 5
years I'm not a noob. I wasn't asking for a whole new version, although
they were such updates to releng, see
http://svnweb.freebsd.org/base?limit_changes=0&view=revision&revision=249029
. I was asking for just a simple patch like in
http://svnweb.freebsd.org/base?view=revision&revision=267104 . Such
patches used to be committed, when publishing SA's, but I guess
something (?) has changed for worse.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 801 bytes
Desc: OpenPGP digital signature
URL: <http://lists.freebsd.org/pipermail/freebsd-security/attachments/20140831/8d344856/attachment.sig>
More information about the freebsd-security
mailing list