Please read this before reporting a bug:
https://wiki.archlinux.org/title/Bug_reporting_guidelines
Do NOT report bugs when a package is just outdated, or it is in the AUR. Use the 'flag out of date' link on the package page, or the Mailing List.
REPEAT: Do NOT report bugs for outdated packages!
https://wiki.archlinux.org/title/Bug_reporting_guidelines
Do NOT report bugs when a package is just outdated, or it is in the AUR. Use the 'flag out of date' link on the package page, or the Mailing List.
REPEAT: Do NOT report bugs for outdated packages!
FS#8159 - security bug in openssl
Attached to Project:
Arch Linux
Opened by Hussam Al-Tayeb (hussam) - Saturday, 29 September 2007, 07:20 GMT
Last edited by Thomas Bächler (brain0) - Saturday, 29 September 2007, 15:22 GMT
Opened by Hussam Al-Tayeb (hussam) - Saturday, 29 September 2007, 07:20 GMT
Last edited by Thomas Bächler (brain0) - Saturday, 29 September 2007, 15:22 GMT
|
DetailsThe following link describes a security bug in latest openssl.
http://www.securityfocus.com/archive/1/archive/1/480855/100/0/threaded |
This task depends upon
Comment by Hussam Al-Tayeb (hussam) -
Saturday, 29 September 2007, 07:21 GMT
I attached a fix taken from ubuntu.
openssl.diff
(0.7 KiB)
Comment by Hussam Al-Tayeb (hussam) -
Saturday, 29 September 2007, 07:28 GMT
It seems I keep forgetting to change 'Category' to 'Security'. :-)
Comment by Thomas Bächler (brain0) -
Saturday, 29 September 2007, 15:00 GMT
http://cvs.openssl.org/chngview?cn=16587 Seems that this is the same patch.