[Pkg-openssl-devel] Bug#665452: SSL_OP_ALL option: status

ael law_ence.dev at ntlworld.com
Wed Apr 25 13:02:12 UTC 2012


> The problem is that openssl 1.0.0 turned on a non-existing
> option in SSL_OP_ALL, which the 1.0.1 version interpretes as
> disabling support for TLS 1.1.

Is this to be fixed (upstream?) soon? Or is a debian patch needed?
It is worrying to have to use an old version when several security fixes
have been subsequently applied.

Googleing suggests that they are many and various people hitting the
problem.

ael






More information about the Pkg-openssl-devel mailing list