[Pkg-openssl-devel] Bug#747432: openssl: CVE-2014-0198 Null pointer dereference bug in OpenSSL 1.0.1g and earlier
Demetris Demetriou
mitsosgtir at gmail.com
Thu May 8 15:53:27 UTC 2014
Package: openssl
Version: 1.0.1e-2+deb7u7
Severity: important
Hello,
Please see this link:http://advisories.mageia.org/MGASA-2014-0204.html
Does this affect the version included in wheezy?
Thank you
-- System Information:
Debian Release: 7.5
APT prefers stable-updates
APT policy: (500, 'stable-updates'), (500, 'stable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 3.2.0-4-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Versions of packages openssl depends on:
ii libc6 2.13-38+deb7u1
ii libssl1.0.0 1.0.1e-2+deb7u7
ii zlib1g 1:1.2.7.dfsg-13
openssl recommends no packages.
Versions of packages openssl suggests:
ii ca-certificates 20130119
-- no debconf information
More information about the Pkg-openssl-devel
mailing list