Date: Wed, 17 Mar 2004 16:45:00 -0800 (PST) From: Rostislav Krasny <rosti_bsd@yahoo.com> To: freebsd-security@freebsd.org Subject: FreeBSD-SA-04:05.openssl question Message-ID: <20040318004500.39746.qmail@web14811.mail.yahoo.com>
next in thread | raw e-mail | index | archive | help
Hello there. The FreeBSD-SA-04:05.openssl Security Advisory announced a "null-pointer assignment during SSL handshake" DoS vulnerability. However, the OpenSSH Security Advisory of 17 March 2004 announced the same vulnerability with one more vulnerability. Look at http://www.openssl.org/news/secadv_20040317.txt Isn't FreeBSD vulnerable to the second "Out-of-bounds read affects Kerberos ciphersuites" security problem? Thanks __________________________________ Do you Yahoo!? Yahoo! Mail - More reliable, more storage, less spam http://mail.yahoo.com
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20040318004500.39746.qmail>