The securty advisory talks about TLS clients "OpenSSL TLS clients enabling anonymous ECDH ciphersuites are subject to a denial of service attack."
Does that mean client using SSLv3 are not vulnerable? I tried the openssl ciphers listing but openssl ciphers -ssl3 and openssl ciphers -tls1 gives identical output so it didn't provide any clue. Thanks, /Leif
