From owner-freebsd-security@freebsd.org  Mon Oct 10 09:47:01 2016
Return-Path: <owner-freebsd-security@freebsd.org>
Delivered-To: freebsd-security@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id B786CC060C5
 for <freebsd-security@mailman.ysv.freebsd.org>;
 Mon, 10 Oct 2016 09:47:01 +0000 (UTC)
 (envelope-from 000.fbsd@quip.cz)
Received: from elsa.codelab.cz (elsa.codelab.cz [94.124.105.4])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (Client did not present a certificate)
 by mx1.freebsd.org (Postfix) with ESMTPS id 7B1E7E;
 Mon, 10 Oct 2016 09:47:00 +0000 (UTC)
 (envelope-from 000.fbsd@quip.cz)
Received: from elsa.codelab.cz (localhost [127.0.0.1])
 by elsa.codelab.cz (Postfix) with ESMTP id 39821284A0;
 Mon, 10 Oct 2016 11:46:51 +0200 (CEST)
Received: from illbsd.quip.test (ip-86-49-16-209.net.upcbroadband.cz
 [86.49.16.209])
 (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
 (No client certificate requested)
 by elsa.codelab.cz (Postfix) with ESMTPSA id 4311928454;
 Mon, 10 Oct 2016 11:46:50 +0200 (CEST)
Subject: Re: FreeBSD Security Advisory FreeBSD-SA-16:27.openssl
To: freebsd-security@freebsd.org,
 FreeBSD Security Advisories <security-advisories@freebsd.org>
References: <20161010075144.E378416A3@freefall.freebsd.org>
From: Miroslav Lachman <000.fbsd@quip.cz>
Message-ID: <57FB6389.9080602@quip.cz>
Date: Mon, 10 Oct 2016 11:46:49 +0200
User-Agent: Mozilla/5.0 (X11; FreeBSD amd64; rv:42.0) Gecko/20100101
 Firefox/42.0 SeaMonkey/2.39
MIME-Version: 1.0
In-Reply-To: <20161010075144.E378416A3@freefall.freebsd.org>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
X-BeenThere: freebsd-security@freebsd.org
X-Mailman-Version: 2.1.23
Precedence: list
List-Id: "Security issues \[members-only posting\]"
 <freebsd-security.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/freebsd-security>, 
 <mailto:freebsd-security-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-security/>
List-Post: <mailto:freebsd-security@freebsd.org>
List-Help: <mailto:freebsd-security-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
 <mailto:freebsd-security-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 10 Oct 2016 09:47:01 -0000

FreeBSD Security Advisories wrote on 2016/10/10 09:51:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA512
>
> =============================================================================
> FreeBSD-SA-16:27.openssl                                    Security Advisory
>                                                            The FreeBSD Project
>
> Topic:          Regression in OpenSSL suite
>
> Category:       contrib
> Module:         openssl
> Announced:      2016-10-10
> Credits:        OpenSSL Project
> Affects:        All supported versions of FreeBSD.
> Corrected:      2016-09-26 14:30:19 UTC (stable/11, 11.0-STABLE)
>                  2016-09-26 20:26:19 UTC (releng/11.0, 11.0-RELEASE-p1)
> CVE Name:       CVE-2016-7052

I think it should be
Affects:        FreeBSD 11.x

Or should be other versions listed in "Corrected"?
But older FreeBSD versions does not have OpenSSL 1.0.2 in base.

Miroslav Lachman