Hi, On Thu, Jun 05, 2014 at 11:54:40PM +0200, joerg jungermann wrote: > > > today appeared another serious vulnerability in openssl. More info is > > > here http://ccsinjection.lepidum.co.jp. Users are advised to update to > > > openssl 1.0.1h. > > Thank you for your patch, it was committed in r41026 and 41027. > Will there be a backport to AA 12.09?
Seconded - that would be very welcome (because OpenVPN is vulnerable to
CVE-2014-0224).
gert
--
USENET is *not* the non-clickable part of WWW!
//www.muc.de/~gert/
Gert Doering - Munich, Germany [email protected]
fax: +49-89-35655025 [email protected]
pgpKjTwnFL2Wa.pgp
Description: PGP signature
_______________________________________________ openwrt-devel mailing list [email protected] https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-devel
