Hi, On Thu, Jun 05, 2014 at 11:54:40PM +0200, joerg jungermann wrote: > > > today appeared another serious vulnerability in openssl. More info is > > > here http://ccsinjection.lepidum.co.jp. Users are advised to update to > > > openssl 1.0.1h. > > Thank you for your patch, it was committed in r41026 and 41027. > Will there be a backport to AA 12.09?
Seconded - that would be very welcome (because OpenVPN is vulnerable to
CVE-2014-0224).
gert
--
USENET is *not* the non-clickable part of WWW!
//www.muc.de/~gert/
Gert Doering - Munich, Germany g...@greenie.muc.de
fax: +49-89-35655025 g...@net.informatik.tu-muenchen.de
pgpKjTwnFL2Wa.pgp
Description: PGP signature
_______________________________________________ openwrt-devel mailing list openwrt-devel@lists.openwrt.org https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-devel
