Date: Tue, 30 Jul 2002 15:43:50 +0200 From: =?iso-8859-1?Q?Geir_R=E5ness?= <pulz@pulz.no> To: <freebsd-security@freebsd.org> Subject: About the openssl hole Message-ID: <004001c237cf$23c00560$fa00a8c0@elixor>
next in thread | raw e-mail | index | archive | help
[-- Attachment #1 --] Shuld we start to edit the openssl port (I have emailed the maninter to update to 96.e, "or supply the patch from openssl" in the /usr/ports/security/openssl), or shuld we wait for an patch from the freebsd team ? If you look at bugtrac there are already romours about exploits flying around now. Read the Advisory from openssl here http://www.openssl.org/news/secadv_20020730.txt Best Regards Geir Råness [-- Attachment #2 --] <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN"> <HTML><HEAD> <META http-equiv=Content-Type content="text/html; charset=iso-8859-1"> <META content="MSHTML 6.00.2716.2200" name=GENERATOR> <STYLE></STYLE> </HEAD> <BODY bgColor=#ffffff> <DIV><FONT face=Arial size=2>Shuld we start to edit the openssl port (I have emailed the maninter to update to 96.e, "or supply the patch from openssl" in the /usr/ports/security/openssl), or shuld we wait for an patch from the freebsd team ?</FONT></DIV> <DIV><FONT face=Arial size=2></FONT> </DIV> <DIV><FONT face=Arial size=2>If you look at bugtrac there are already romours about exploits flying around now.</FONT></DIV> <DIV><FONT face=Arial size=2></FONT> </DIV> <DIV><FONT face=Arial size=2></FONT> </DIV> <DIV><FONT face=Arial size=2>Read the Advisory from openssl here</FONT></DIV> <DIV><FONT face=Arial size=2><A href="http://www.openssl.org/news/secadv_20020730.txt">http://www.openssl.org/news/secadv_20020730.txt</A></FONT></DIV>; <DIV><FONT face=Arial size=2></FONT> </DIV> <DIV><FONT face=Arial size=2></FONT> </DIV> <DIV><FONT face=Arial size=2>Best Regards</FONT></DIV> <DIV><FONT face=Arial size=2>Geir Råness</FONT></DIV></BODY></HTML>
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?004001c237cf$23c00560$fa00a8c0>