The windows binaries do not appear to have been upgraded yet. It is possible that some of them are affected, I should think. Thanks.
> -----Original Message----- > From: owner-openssl-annou...@openssl.org [mailto:owner-openssl- > annou...@openssl.org] On Behalf Of OpenSSL > Sent: Wednesday, January 18, 2012 8:21 AM > To: openssl-annou...@master.openssl.org; openssl- > d...@master.openssl.org; openssl-us...@master.openssl.org > Subject: OpenSSL Security Advisory > > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > OpenSSL Security Advisory [18 Jan 2011] > ======================================= > > DTLS DoS attack (CVE-2012-0050) > ================================ > > A flaw in the fix to CVE-2011-4108 can be exploited in a denial of > service attack. Only DTLS applications using OpenSSL 1.0.0f and > 0.9.8s are affected. > > > Thanks to Antonio Martin, Enterprise Secure Access Research and > Development, Cisco Systems, Inc. for discovering this bug and > preparing a fix. > > Affected users should upgrade to OpenSSL 1.0.0g or 0.9.8t. > > References > ========== > > URL for this Security Advisory: > http://www.openssl.org/news/secadv_20120118.txt > > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.11 (GNU/Linux) > > iQEVAwUBTxbTZqLSm3vylcdZAQIVsgf/b+bSo2XrK9aWx1MCvgcz9Y1rJS8mOfLS > c1E9ZpIp2uXcHai9PNhtJ8MRW3pVpyHMxqNQ/9ULXYBjRwVl9YT2ipDBN4iZda9M > 3Rh3g6vuWwbpNDNnd9xiuTVq8y7cVk1U0VXoOZ9tXIkkKgEITXiAqH1qmo9nthkT > Rv/5cgWmfplnhz0gMANHreRh3cZr/BhQaKHZAZ8Fsa2EqRHdyZagGlwspGqQab85 > dT8jiNYABnQDWju28tjpMT/W8vnW0/zTXll21hbNj/R+D/L3lhLY8XNhYsoQrCZo > UIY+quRAsdggLWrFizDA3vxsEdtU1z/5yE+4bs5hzaJhTe0RJUieNw== > =Dkux > -----END PGP SIGNATURE----- > ______________________________________________________________________ > OpenSSL Project http://www.openssl.org > Announcement Mailing List openssl-annou...@openssl.org > Automated List Manager majord...@openssl.org ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org
