[Pkg-openssl-devel] Bug#699889: Bug#699889: several issues in Security Advisory 5 Feb 2013
Kurt Roeckx
kurt at roeckx.be
Mon Feb 11 21:08:11 UTC 2013
On Wed, Feb 06, 2013 at 11:59:18AM +0100, Thijs Kinkhorst wrote:
>
> Hi,
>
> Several issues were announced in the OpenSSL security advisory of 05 Feb 2013
> (http://www.openssl.org/news/secadv_20130205.txt):
>
> SSL, TLS and DTLS Plaintext Recovery Attack (CVE-2013-0169)
> TLS 1.1 and 1.2 AES-NI crash (CVE-2012-2686) (does not affect stable)
> OCSP invalid key DoS issue (CVE-2013-0166)
>
> Can you see to it that these are addressed in unstable and testing, and also
> prepare an update to stable-security?
I've uploaded 0.9.8o-4squeeze14 to squeeze-security
Kurt
More information about the Pkg-openssl-devel
mailing list