https://bugzilla.novell.com/show_bug.cgi?id=803004 https://bugzilla.novell.com/show_bug.cgi?id=803004#c0 Summary: openSSL 1.0.1d breaks most, if not all, SSL connections Classification: openSUSE Product: openSUSE 12.1 Version: Final Platform: x86-64 OS/Version: Other Status: NEW Severity: Major Priority: P5 - None Component: Basesystem AssignedTo: bnc-team-screening@forge.provo.novell.com ReportedBy: lbeltrame@kde.org QAContact: qa-bugs@suse.de Found By: --- Blocker: --- User-Agent: Mozilla/5.0 (X11; Linux) KHTML/4.10.60 (like Gecko) Konqueror/4.10 With the update of openSSL to 1.0.1d, I found that most KDE applications were unable to use SSL because of spurious data being inserted into the data stream, causing malformed replies. Furthermore, deeper checking showed that ANY application using SSL was failing (tested with browsers such as lynx and links). Reverting to 1.0.1c fixed the issue. Reproducible: Always Steps to Reproduce: 1. Run "links https://bugs.kde.org" with openSSL 1.0.1d Actual Results: links displays garbage, unless openSSL is reverted to 1.0.1c Expected Results: links and SSL using applications should work correctly ( Running latest Factory -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.