subject:"\[sage\-devel\] Re\: Heartbleed \-\- OpenSSL 1.0.1 security issue"

Re: [sage-devel] Re: Heartbleed -- OpenSSL 1.0.1 security issue

2014-04-09 Thread Michael Orlitzky

On 04/09/2014 03:26 PM, leif wrote: > kcrisman wrote: >> http://www.zdnet.com/heartbleed-serious-openssl-zero-day-vulnerability-revealed-728166/ >> >> Apparently this is a real vulnerability in OpenSSL. > > We should certainly update the optional OpenSSL spkg (last updated on > trac to 1.0.1c

[sage-devel] Re: Heartbleed -- OpenSSL 1.0.1 security issue

2014-04-09 Thread leif

kcrisman wrote: http://www.zdnet.com/heartbleed-serious-openssl-zero-day-vulnerability-revealed-728166/ Apparently this is a real vulnerability in OpenSSL. We should certainly update the optional OpenSSL spkg (last updated on trac to 1.0.1c, Volker upgraded it to 1.0.1e upon the switch to