Mailinglist Archive: opensuse-security (334 mails)

< Previous Next >
Re: [suse-security] New Openssl Vulnerability
  • From: Sven 'Darkman' Michels <sven@xxxxxxxxxx>
  • Date: Wed, 01 Oct 2003 18:20:36 +0200
  • Message-id: <3F7AFED4.3060800@xxxxxxxxxx>
Ferdinand Schmid wrote:
HI,

Are SuSE versions of openssl vulnerable to this ASN.1 issue?

http://www.kb.cert.org/vuls/id/935264

I understand that SuSE backported the recent patches to 0.9.6 so we
may not be affected. However, like Roman said in a previous post - we
don't like to guess ;)

SuSE IS vulnerable but openssl fixes are on progress, expect
fresh rpm's soon :) (seems to be a good day for sec-announcements ;)

regards,
Sven



< Previous Next >
References