Date: Wed, 21 Apr 2010 08:14:53 +0200 From: =?utf-8?Q?Dag-Erling_Sm=C3=B8rgrav?= <des@des.no> To: Tim Gustafson <tjg@soe.ucsc.edu> Cc: freebsd-security@freebsd.org Subject: Re: OpenSSL 0.9.8k -> 0.9.8l Message-ID: <86aasxl4bm.fsf@ds4.des.no> In-Reply-To: <258059512.789871271827382221.JavaMail.root@mail-01.cse.ucsc.edu> (Tim Gustafson's message of "Tue, 20 Apr 2010 22:23:02 -0700 (PDT)") References: <258059512.789871271827382221.JavaMail.root@mail-01.cse.ucsc.edu>
next in thread | previous in thread | raw e-mail | index | archive | help
Tim Gustafson <tjg@soe.ucsc.edu> writes: > "Dag-Erling Sm=C3=B8rgrav" <des@des.no> writes: > > RELENG_8_0 is 8.0 + critical bug fixes. > From what I gather, the exploits in 0.9.8k are pretty serious. :\ If you mean FreeBSD-SA-09:15.ssl, that's been fixed in 8.0, although the OpenSSL version number was not changed. I assume that you have read the handbook and are familiar with the concept of security advisories and how to patch your system using freebsd-update(8), so I won't waste your time with the details. > From what I gather, the exploits in 0.9.8k are pretty serious. :\ Heard you the first time. DES --=20 Dag-Erling Sm=C3=B8rgrav - des@des.no
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?86aasxl4bm.fsf>