Fedora Update Notification
2009-11-25 13:36:33

Name        : mingw32-openssl
Product     : Fedora 12
Version     : 1.0.0
Release     : 0.5.beta4.fc12
URL         : http://www.openssl.org/
Summary     : MinGW port of the OpenSSL toolkit
Description :
The OpenSSL toolkit provides support for secure communications between
machines. OpenSSL includes a certificate management tool and shared
libraries which provide various cryptographic algorithms and

This package contains Windows (MinGW) libraries and development tools.

Update Information:

Update to a current beta version.    The update also contains changes for
CVE-2009-3555, however it does not prevent the unsafe renegotiation for servers
which use SSL_OP_ALL. The majority of applications does this. Preventing the
unsafe renegotiation by default might break some protocols which depend on
working renegotiation.    The update also disables enforcement of the new safe
renegotiation extension on the client as the extension is not yet supported by
the deployed servers.    It still might break applications which need legacy
renegotiation to work but they should use SSL_OP_ALL option to allow this.

* Sun Nov 22 2009 Kalev Lember <ka...@smartlink.ee> - 1.0.0-0.5.beta4
- Updated to version 1.0.0 beta 4
- Merged patches from native Fedora openssl (up to 1.0.0-0.15.beta4)
- Added patch to fix build with fips disabled

This update can be installed with the "yum" update program.  Use 
su -c 'yum update mingw32-openssl' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at

Fedora-package-announce mailing list

Reply via email to