openssl (1.0.1-4ubuntu5.3) precise-security; urgency=low
* SECURITY UPDATE: SSL_OP_ALL incorrectly disables TLS 1.1 (LP: #1018998)
- debian/patches/lp1018998.patch: change SSL_OP_NO_TLSv1_1 from
0x00000400L to 0x10000000L as in 1.0.1b to prevent applications
compiled with SSL_OP_ALL from incorrectly disabling TLS 1.1.
* debian/patches/lp1020621.patch: Make renegotiation work for TLS 1.2, 1.1
by not using a lower record version client hello workaround if
renegotiating. (LP: #1020621)
Date: 2012-07-03 20:10:57.390691+00:00
Changed-By: Marc Deslauriers <[email protected]>
Signed-By: Jamie Strandboge <[email protected]>
https://launchpad.net/ubuntu/precise/+source/openssl/1.0.1-4ubuntu5.3
Sorry, changesfile not available.
--
Precise-changes mailing list
[email protected]
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/precise-changes
