From owner-freebsd-security@freebsd.org Thu Jul 9 19:40:45 2015 Return-Path: Delivered-To: freebsd-security@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id E6308997156 for ; Thu, 9 Jul 2015 19:40:45 +0000 (UTC) (envelope-from peter@rulingia.com) Received: from vps.rulingia.com (vps.rulingia.com [103.243.244.15]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "vps.rulingia.com", Issuer "CAcert Class 3 Root" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id 60663186A for ; Thu, 9 Jul 2015 19:40:44 +0000 (UTC) (envelope-from peter@rulingia.com) Received: from server.rulingia.com (c220-239-242-83.belrs5.nsw.optusnet.com.au [220.239.242.83]) by vps.rulingia.com (8.14.9/8.14.9) with ESMTP id t69JeXBS072389 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=OK) for ; Fri, 10 Jul 2015 05:40:39 +1000 (AEST) (envelope-from peter@rulingia.com) X-Bogosity: Ham, spamicity=0.000000 Received: from server.rulingia.com (localhost.rulingia.com [127.0.0.1]) by server.rulingia.com (8.14.9/8.14.9) with ESMTP id t69JeRic082464 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=NO) for ; Fri, 10 Jul 2015 05:40:27 +1000 (AEST) (envelope-from peter@server.rulingia.com) Received: (from peter@localhost) by server.rulingia.com (8.14.9/8.14.9/Submit) id t69JeRjR082463 for freebsd-security@freebsd.org; Fri, 10 Jul 2015 05:40:27 +1000 (AEST) (envelope-from peter) Date: Fri, 10 Jul 2015 05:40:27 +1000 From: Peter Jeremy To: freebsd-security@freebsd.org Subject: Re: FreeBSD Security Advisory FreeBSD-SA-15:12.openssl Message-ID: <20150709194027.GA47053@server.rulingia.com> References: <20150709173219.647A7168C@freefall.freebsd.org> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha512; protocol="application/pgp-signature"; boundary="d6Gm4EdcadzBjdND" Content-Disposition: inline In-Reply-To: <20150709173219.647A7168C@freefall.freebsd.org> X-PGP-Key: http://www.rulingia.com/keys/peter.pgp User-Agent: Mutt/1.5.23 (2014-03-12) X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.20 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 09 Jul 2015 19:40:46 -0000 --d6Gm4EdcadzBjdND Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On 2015-Jul-09 17:32:19 +0000, FreeBSD Security Advisories wrote: >NOTE WELL: This issue does not affect earlier FreeBSD releases, including = the >supported 8.4, 9.3 and 10.1-RELEASE because the alternative certificate ch= ain >feature was not introduced in these releases. Only 10.1-STABLE after >2015-06-11 and prior to the correction date is affected. Since this only affects people who build from SVN, it would be useful to give affected revisions. Based on the given dates, I gather this was introduced in r284283/r284285 and doesn't affect releng/10.1 because it wasn't in the r284295 cherry-pick. --=20 Peter Jeremy --d6Gm4EdcadzBjdND Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iQJ8BAEBCgBmBQJVns4rXxSAAAAAAC4AKGlzc3Vlci1mcHJAbm90YXRpb25zLm9w ZW5wZ3AuZmlmdGhob3JzZW1hbi5uZXRFRUIyOTg2QzMwNjcxRTc0RTY1QzIyN0Ux NkE1OTdBMEU0QTIwQjM0AAoJEBall6Dkogs0a50P/i1NyckJI0i9zw7/dFfvVUI4 6QRNIzthxXVm8auFLC00Tbe5ixkxgXD0GO6kHDrLL8VE3DQ66SpIoOoRVW+xz5LB f7bEEsNnnk8EuksWHhvnKbxVrTgTJWRdxFW+PXCKwZ+Zd4dnJS0dAZOEIvHbdk95 4AhjR5ZYjjpsjEyOP3nh2UgpL2Se89Ux9JPhPOXM2S6hIcqsmepudihaMmHpw17T ref7DuxSawqD0CixTbHYSpBQzB22mQyY4n3DEeQ4ioh1MlZGZjEV1ERHEFv1dKkD sB2SgNxo56uv1ZlxoKkTNNxNSrgWKh0xRjdL0eh7CXF1zeu+vp+2W6gVtpVYFkgK qklGKXdI+IQNz91mKgQ6IND6IG2R8Y1eTIzWT1JrNN5jbXZLTk2Nnkx7GZTHb16o epvYvweQ1F8VK+HH2fSAQtIpqP194QH+dM4+vlL7iZPmwHSQ9SVxRYXaq2jVddke z/QYhPXEsrFxnTQ4CUgZH//Q6MF2bv2bN3UaT+OOBNHyLgtGJUBYW0l3QrjpUwU0 YU9sVGFmXo8FXsIOjFpdjxAbzMWEh7eKCVB3uWEV16NW/1ROlfwKIzWJnTTYfqIi kIBMOp0s5YX3XiIkMMG9VlURZYdcBnEkz39GmVAyuMi3n093utZn+AYCOyXaCQmk A/7I/d/yUZhQo+HnhCrF =iIPG -----END PGP SIGNATURE----- --d6Gm4EdcadzBjdND--