From owner-freebsd-security@FreeBSD.ORG Mon Apr 7 20:50:05 2014 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 453A7D05 for ; Mon, 7 Apr 2014 20:50:05 +0000 (UTC) Received: from mail.tyknet.dk (mail.tyknet.dk [IPv6:2a01:4f8:201:2327:144:76:253:226]) (using TLSv1 with cipher DHE-RSA-CAMELLIA256-SHA (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 041CFEC for ; Mon, 7 Apr 2014 20:50:05 +0000 (UTC) Received: from [IPv6:2a01:3a0:a:15::3] (unknown [IPv6:2a01:3a0:a:15::3]) (using TLSv1 with cipher DHE-RSA-AES128-SHA (128/128 bits)) (No client certificate requested) by mail.tyknet.dk (Postfix) with ESMTPSA id 2BCA41DEAD7 for ; Mon, 7 Apr 2014 20:49:53 +0000 (UTC) DKIM-Filter: OpenDKIM Filter v2.8.3 mail.tyknet.dk 2BCA41DEAD7 DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=gibfest.dk; s=default; t=1396903794; bh=rqLKpE80Ei3074iDUa6TQyqdzEjWsJ5FQ/C+B8ChkGA=; h=Date:From:To:Subject; b=clxOSwTCbRj4bLwMOt7vhexhVYP3XuE8dHNoSsQWTHApIEzBfHHhyINUmbgHikc+C t+/KThZ2oL+FCQCandnS42ZO7LSRdiKTuD/J3DUVJA3wQDHxXm4rC8RyLerWV53KYN rWhh7EqqedWGBizRIeglpg8byciDrAKuV4MGC1jQ075tfDj+9kvq7SJ16/827GXicO xz1bweHz/o3AlaY4blh0+EBJwTn/ZrbQQoKjfsvL9WTxTscddOFt1+ReDEPE0+cuWS WS9tKidSF8hTsQ/WV8SMngzWAe6/ruSZvsvN1aPbOnV8Sh+wBJhgvwz2ngI0dy1jIT PWpoJeDIsxxHQ== Message-ID: <53430F72.1040307@gibfest.dk> Date: Mon, 07 Apr 2014 22:49:54 +0200 From: Thomas Steen Rasmussen User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:24.0) Gecko/20100101 Thunderbird/24.4.0 MIME-Version: 1.0 To: freebsd-security@freebsd.org Subject: http://heartbleed.com/ X-Enigmail-Version: 1.6 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 07 Apr 2014 20:50:05 -0000 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hello, http://heartbleed.com/ describes an openssl vulnerability published today. We are going to need an advisory for the openssl in base in FreeBSD 10 and we are also going to need an updated port. The implications of this vulnerability are pretty massive, certificates will need to be replaced and so on. I don't want to repeat the page, so go read that. Best regards, /Thomas Steen Rasmussen ps. there is a bit on the openssl site too: https://www.openssl.org/news/secadv_20140407.txt -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.22 (MingW32) Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iQIcBAEBAgAGBQJTQw9yAAoJEHcv938JcvpYcFgP/iH3j6n7PgkCwSsN3qG9F37c A6TOGbKudIeJdO76YXiU2T+FjbMThB86KuSan2iTM4h5wTLENVLvafJmBJtIKRH8 bMZUqsUONYBSd4HpZKxbg9s8Yfy2gU0dTbs10OZ/dZw6qEr5Pd0WK6BDZ5h0ggTj 0gF4r+FHWAe/8GgxOnfVEcmyMa+VUB46ZMmpwlCC3SG0wMAs/LJHORyl283OqyT5 fwNfeDjInsPAgZORdR2+PZTgshwL0ogOINyGSKrLV1psQg2hEMgRT4GvO37IlhHS qstYleB0yLiq9ayRFyj3mg2/OMq7/26ft09fHeF19VjnysClxT7lwZEaPDkbxH7j qC1rpo1yeGuBPPdFnjbZVP5rxLR1jnQZFgTwOafjjock8ZW1ktUXOg1Upe276sv9 NrPmNzDUkuMp7tlYEuDC2MsxQNSjeCo86FdMGCH+/c+DbRqBidELFH8SYEgzK2kj TiT8tmBjdLC8PL+1SvBV4hLgapFJp2nvXsxyuJc2teRntKdgjFObQPEzb+iM/zFA mSOjuGUh28qABlqQ32B04VDBOQRUs6zWDe0cssspajqfx7T7wVaE1FGBDUUt0QkN B45cs2ql0OG5XB03GLsJv0tSdymzwohlBmoqmA08mKVWILFdkL/zzSY8Mw0oTfUa GWD5kOI/wytuF5svXFnP =gj4I -----END PGP SIGNATURE-----