From owner-freebsd-questions  Fri Aug  2 13:33:28 2002
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 6D3E937B400
	for <questions@FreeBSD.ORG>; Fri,  2 Aug 2002 13:33:24 -0700 (PDT)
Received: from smtp.infracaninophile.co.uk (happy-idiot-talk.infracaninophile.co.uk [81.2.69.218])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 8FEE543E3B
	for <questions@FreeBSD.ORG>; Fri,  2 Aug 2002 13:33:23 -0700 (PDT)
	(envelope-from m.seaman@infracaninophile.co.uk)
Received: from happy-idiot-talk.infracaninophile.co.uk ([IPv6:::1])
	by smtp.infracaninophile.co.uk (8.12.5/8.12.5) with ESMTP id g72KXMnJ054500;
	Fri, 2 Aug 2002 21:33:22 +0100 (BST)
	(envelope-from matthew@happy-idiot-talk.infracaninophile.co.uk)
Received: (from matthew@localhost)
	by happy-idiot-talk.infracaninophile.co.uk (8.12.5/8.12.5/Submit) id g72KXHOI054499;
	Fri, 2 Aug 2002 21:33:17 +0100 (BST)
Date: Fri, 2 Aug 2002 21:33:17 +0100
From: Matthew Seaman <m.seaman@infracaninophile.co.uk>
To: Oscar Ricardo Silva <oscars@mail.utexas.edu>
Cc: questions@FreeBSD.ORG
Subject: Re: openssl vulnerability, openssh trojan - will patches be incorporated in 4.6.1
Message-ID: <20020802203317.GB54353@happy-idiot-talk.infracaninophi>
References: <5.1.0.14.2.20020802113236.01a2ba58@mail.utexas.edu>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <5.1.0.14.2.20020802113236.01a2ba58@mail.utexas.edu>
User-Agent: Mutt/1.5.1i
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-questions.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-questions>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-questions>
X-Loop: FreeBSD.ORG

On Fri, Aug 02, 2002 at 11:37:46AM -0500, Oscar Ricardo Silva wrote:
 
> At the risk of advocating feature creep ... what about the recent openssl 
> vulnerability?  I know 4.6.1 hasn't been released yet (RC2 last I looked), 
> but might it be worthwhile to include latest openssl patches in 4.6.1?  Or 
> will there be a 4.6.2 (or some other number)?

4.6.1 has been cancelled in favour of 4.6.2:

http://www.freebsd.org/cgi/getmsg.cgi?fetch=422979+0+current/freebsd-stable

Partly because it was taking so long to get 4.6.1 out of the door, and
partly because of some recently discovered problems, including the
openssl hole.

	Cheers,

	Matthew

-- 
Dr Matthew J Seaman MA, D.Phil.                       26 The Paddocks
                                                      Savill Way
Tel: +44 1628 476614                                  Marlow
Fax: +44 0870 0522645                                 Bucks., SL7 1TH UK

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message