From owner-freebsd-security@FreeBSD.ORG  Thu Feb  7 18:24:59 2013
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Delivered-To: freebsd-security@freebsd.org
Received: from mx1.freebsd.org (mx1.FreeBSD.org [8.8.178.115])
 by hub.freebsd.org (Postfix) with ESMTP id 60B7C9B6
 for <freebsd-security@freebsd.org>; Thu,  7 Feb 2013 18:24:59 +0000 (UTC)
 (envelope-from delphij@delphij.net)
Received: from anubis.delphij.net (anubis.delphij.net [64.62.153.212])
 by mx1.freebsd.org (Postfix) with ESMTP id 500D9304
 for <freebsd-security@freebsd.org>; Thu,  7 Feb 2013 18:24:59 +0000 (UTC)
Received: from epsilon.delphij.net (drawbridge.ixsystems.com [206.40.55.65])
 (using TLSv1 with cipher ECDHE-RSA-AES256-SHA (256/256 bits))
 (No client certificate requested)
 by anubis.delphij.net (Postfix) with ESMTPSA id 703811CB20;
 Thu,  7 Feb 2013 10:24:58 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=delphij.net; s=anubis;
 t=1360261498; bh=W5Wf10Z4Otdp/fY9RIGYqeq3nOeIQZKN3yrG/3HlLZM=;
 h=Date:From:Reply-To:To:CC:Subject:References:In-Reply-To;
 b=x1qbYz9Gl0bT6vzLgsGYtLEGmOLvF1sXdkGpqBlJR91XEOrnMAwbgS6fesFfR3FZ4
 BnzmJzJdXjTU0W3TM8Bs97SyN4jc11PNHEnJyr6XoYenqN2kci8WqlGtFiZTCxH1h3
 Wa8a9qiHTW6F8tp2d0kHT9Vkk9H/7bVnXtQ4Yt+8=
Message-ID: <5113F179.4070503@delphij.net>
Date: Thu, 07 Feb 2013 10:24:57 -0800
From: Xin Li <delphij@delphij.net>
Organization: The FreeBSD Project
MIME-Version: 1.0
To: Mike Tancsa <mike@sentex.net>
Subject: Re: new OpenSSL security issues
References: <5113AD0F.7080909@sentex.net>
In-Reply-To: <5113AD0F.7080909@sentex.net>
X-Enigmail-Version: 1.4.6
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
Cc: "freebsd-security@freebsd.org" <freebsd-security@freebsd.org>
X-BeenThere: freebsd-security@freebsd.org
X-Mailman-Version: 2.1.14
Precedence: list
Reply-To: d@delphij.net
List-Id: "Security issues \[members-only posting\]"
 <freebsd-security.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/options/freebsd-security>, 
 <mailto:freebsd-security-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-security>
List-Post: <mailto:freebsd-security@freebsd.org>
List-Help: <mailto:freebsd-security-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
 <mailto:freebsd-security-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 07 Feb 2013 18:24:59 -0000

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Hi, Mike,

On 02/07/13 05:33, Mike Tancsa wrote:
> Three of them it seems
> 
> http://www.openssl.org/news/secadv_20130205.txt

Thanks, we are aware of this.  Jung-uk already have a patchset that is
pending review.

Note that it seems that the new OpenSSL version have introduced a
regression, by the way:

	http://www.mail-archive.com/openssl-dev@openssl.org/msg32009.html

Cheers,
- -- 
Xin LI <delphij@delphij.net>    https://www.delphij.net/
FreeBSD - The Power to Serve!           Live free or die
-----BEGIN PGP SIGNATURE-----

iQEcBAEBCgAGBQJRE/F5AAoJEG80Jeu8UPuzATkH/jojEHZID2IUDTpk45XFxmEJ
+yxkY6fKKGyGZWnJlEzlVloP+UHbOe64qj1JbV/izvN4Kz0bhMd1IbDf8FNm0wym
Ta94yc5gM2YLCcp6kbbvJci4b+YjRKCEj45hpbJVdY/KiBIfXe01/YFoANGuDDNs
0jgQOXNKnpV5ESv09o1yWeYy9hOThSAMyPMWg0/Eq+Li0t/lmQqJottrkkdkP5jM
CXEfHwyW0LrXLC+/tMEaQ54tbozfK2HLw2kI/5p9HXzJtYBV6UVM3YKaSXZSGu/r
p6b82tdnyaZb1lBdWEgy74AJ0fye50tHohusqeg6QBznyCAnppyiU5goJfT1oso=
=BQiP
-----END PGP SIGNATURE-----