Fwd: [oss-security] OpenSSL 1.0.1 TLS/DTLS hearbeat information disclosure CVE-2014-0160
staticsafe
me-3ZSMZGRXU0K2dHQpreyxbg at public.gmane.org
Tue Apr 8 12:48:22 UTC 2014
Patch your boxes and remember to restart daemons/programs that use OpenSSL.
-------- Original Message --------
Subject: [oss-security] OpenSSL 1.0.1 TLS/DTLS hearbeat information
disclosure CVE-2014-0160
Date: Mon, 7 Apr 2014 21:43:46 +0200
From: Tomas Hoger <thoger-H+wXaHxf7aLQT0dZR+AlfA at public.gmane.org>
Reply-To: oss-security-ZwoEplunGu1jrUoiu81ncdBPR1lH4CV8 at public.gmane.org
To: oss-security-ZwoEplunGu1jrUoiu81ncdBPR1lH4CV8 at public.gmane.org
Hi!
There's a new OpenSSL release 1.0.1g that fixes information leak issue:
http://www.openssl.org/news/secadv_20140407.txt
http://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=96db902
http://heartbleed.com/
--
Tomas Hoger / Red Hat Security Response Team
--
The Toronto Linux Users Group. Meetings: http://gtalug.org/
TLUG requests: Linux topics, No HTML, wrap text below 80 columns
How to UNSUBSCRIBE: http://gtalug.org/wiki/Mailing_lists
More information about the Legacy
mailing list