It seems this bug report is invalid after all. While the main system
was fully updated, it appears the actual server was running in a
'debootstrap' generated chroot that, while updated regularly, was
missing security related entries from the sources.list inside the
chroot environment. Please
Also please note that the server code Tyler referenced to, as far as I
can determine, imports 'ssl' from the libpython2.7-minimal package.
This bug however seems to relate to the python-openssl package.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is
A stripped down version of the server code used. Using this code on a
fully patched Ubuntu 14.04 server, ssllabs will report:
This server is vulnerable to the OpenSSL CCS vulnerability (CVE-2014-0224) and
exploitable. Grade set to F.
** Attachment added: Demo server code
Public bug reported:
When creating a minimal https based server in python using 'from OpenSSL
import SSL' on a fully patched Ubuntu 14.04 system, the OpenSSL bug as
reported in CVE-2014-0224 seems to persist for that server. A C++
implementation with the same functionality on the same system
The source tree already contains packaging files for Ubuntu 64 bits
(jsonme++/DEBIAN/* ) and a package can be build after make by invoking
the script named makedepstuff.sh. So basically the bug 'needs packaging'
should be almost fixed. I could use some help in getting this issue
moved to the next
The source tree already contains packaging files for Ubuntu 64 bits ( )
and a package can be buikd after make by invoking the script named
makedepstuff.sh. So basically the bug 'needs packaging' should be
almost fixed. I could use some help in getting this issue moved to the
next stage of
As stated in the bug description, the source tree of this project
contains the script build.sh that makes an architecture independant
package using the files in dynr-pbrouting/DEBIAN. I could use some help
getting this bug from this package to the next stage.
** Changed in: ubuntu
Status:
Public bug reported:
The DynrLite-II project ( http://robklpd.github.com/dynrlite-ii/ ) allows
placing a so called dynamic router between a lan
that contains workstations and a lan that contains internet gateways. The
dynamic
router has a simple web interface that lets the users on the
Public bug reported:
The DynrLite-II project ( http://robklpd.github.com/dynrlite-ii/ ) allows
placing a so called dynamic router between a lan
that contains workstations and a lan that contains internet gateways. The
dynamic
router has a simple web interface that lets the users on the
Public bug reported:
JsonMe++ is a convenience C++ wrapper library for JSON-Glib providing
friendly syntactic sugar for parsing JSON
URL: https://github.com/pibara/jsonme--
License: LGPL
Note: The source tree already contains a script 'makedepstuff.sh' for building
a simple package from this.
Note: depends on 826613
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/826620
Title:
[needs-packaging] dynr-pbrouting
To manage notifications about this bug go to:
Public bug reported:
The DynrLite-II project allows placing a so called dynamic router between a lan
that contains workstations and a lan that contains internet gateways. The
dynamic
router has a simple web interface that lets the users on the workstations pick
or switch what gateway they want
** Tags added: needs-packaging
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/826620
Title:
[needs-packaging] dynr-pbrouting
To manage notifications about this bug go to:
** Tags added: needs-packaging
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/826613
Title:
[needs-packaging] JsonMe++
To manage notifications about this bug go to:
14 matches
Mail list logo