CVE-2014- and OpenSSL?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Subject: CVE-2014- and OpenSSL?
From: rsalz@xxxxxxxxxx (Salz, Rich)
Date: Tue, 9 Dec 2014 14:26:16 -0500
In-reply-to: <CAC1DtR=bjDOs+b8FiYqY8uF3hkrAriexkGmm7QcKtmB7t4awMg@mail.gmail.com>
References: <CAC1DtR=bjDOs+b8FiYqY8uF3hkrAriexkGmm7QcKtmB7t4awMg@mail.gmail.com>

> I also received a notification from Symantec's DeepSight, that states:
> "OpenSSL CVE-2014-8730 Man In The Middle Information Disclosure
> Vulnerability".

Did Symantic really label it an OpenSSL CVE?  That's wrong.

OpenSSL does not have this defect.

	/r$

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Follow-Ups:
- CVE-2014- and OpenSSL?
  - From: Amarendra Godbole
- CVE-2014- and OpenSSL?
  - From: Arthur Tsang
- CVE-2014- and OpenSSL?
  - From: Mitra, Rituparna (STSD)

References:
- CVE-2014- and OpenSSL?
  - From: Amarendra Godbole

Prev by Date: CVE-2014- and OpenSSL?
Next by Date: Help with using a dynamic engine with SSL_CTX
Previous by thread: CVE-2014- and OpenSSL?
Next by thread: CVE-2014- and OpenSSL?
Index(es):
- Date
- Thread

[Index of Archives] [Linux ARM Kernel] [Linux ARM] [Linux Omap] [Fedora ARM] [IETF Annouce] [Security] [Bugtraq] [Linux] [Linux OMAP] [Linux MIPS] [ECOS] [Asterisk Internet PBX] [Linux API]

Powered by Linux