Hi, Can a SSL client upgraded with patch for CVE-0224-2014 (say OpenSSL 0.9.8zb) talk to SSL server which does not have this patch (say OpenSSL 0.9.8u) ?
Problem I have - Server -Apache 2.2.22 with mod_ssl compiled with OpenSSL 0.9.8u Client - privately maintained PKI code based upon OpenSSL 0.9.8h to which we regularly backport OpenSSL patches. We have backported fix for cve 0224 to this code. This client is rejecting handshake from above Server with error that it received CCS byte early. How do I debug what is going on and solve this problem? Any help is appreciated. Thank you.
