[Pkg-openssl-devel] openssl advisory: CAN-2005-2969
Kurt Roeckx
kurt at roeckx.be
Wed Oct 12 21:41:29 UTC 2005
Hi,
openssl has released an advisory about CAN-2005-2969.
See: http://www.openssl.org/news/secadv_20051011.txt
I've uploaded versions of openssl097 0.9.7g-5
and openssl 0.9.8-3 to unstable with the patched mentioned by the
advisory, which is available at:
http://www.openssl.org/news/patch-CAN-2005-2969.txt
Other version in Debian that I'm aware of and should also get
fixed:
woody has openssl 0.9.6c-2.woody.7
sarge has openssl 0.9.7e-3
sarge has openssl096 0.9.6m-1
woody also seems to have those, atleast in oldstable-security,
they weren't in woody itself(?):
openssl094 0.9.4-6.woody.3
openssl095 0.9.5a-6.woody.5
But the advisory didn't mention those versions, and the patch
looked like it could apply to them too.
Kurt
More information about the Pkg-openssl-devel
mailing list