On 2014-03-05 21:03, Peter Wagner wrote:
> Update openssl to 1.0.1f
>
> This version includes this changes:
>
> Don't include gmt_unix_time in TLS server and client random values
> Fix for TLS record tampering bug CVE-2013-4353
> Fix for TLS version checking bug CVE-2013-6449
> Fi
Update openssl to 1.0.1f
This version includes this changes:
Don't include gmt_unix_time in TLS server and client random values
Fix for TLS record tampering bug CVE-2013-4353
Fix for TLS version checking bug CVE-2013-6449
Fix for DTLS retransmission bug CVE-2013-6450
Signed-off-
