regarding the vulnerability CVE-2015-1788

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Dear openssl users,

I have a question regarding the vulnerability CVE-2015-1788.

At http://openssl.org/news/secadv_20150611.txt, I would like to get the
clarification on the follwing statement.

This issue affects OpenSSL versions: 1.0.2 and 1.0.1. Recent 1.0.0 and
0.9.8 versions are not affected. 1.0.0d and 0.9.8r and below are affected.

I would like to know in which version of 0.9.8, this vulnerability is
fixed. I do not find the code changes related to this in 0.9.8zg that are
committed for 1.0.1n(
https://github.com/openssl/openssl/commit/4924b37ee01f71ae19c94a8934b80eeb2f677932)
for fixing the same. Is the fix different for 0.9.8 and 1.0.1 versions.
Please help me.


Regards,
-Jaya Nageswar.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mta.openssl.org/pipermail/openssl-users/attachments/20150702/f0c41ec7/attachment.html>


[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Index of Archives]     [Linux ARM Kernel]     [Linux ARM]     [Linux Omap]     [Fedora ARM]     [IETF Annouce]     [Security]     [Bugtraq]     [Linux]     [Linux OMAP]     [Linux MIPS]     [ECOS]     [Asterisk Internet PBX]     [Linux API]

  Powered by Linux